Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa
File: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (raw, json)
Hash identifier: OT+Mk5WwssGJkg82hSQpE4gvwieaMEJQhhjdSn/cLTY=
Subject key identifier: 44:D5:B0:C0:77:DD:AE:AA:3C:88:5B:74:5B:2B:E3:BE:66:4C:85:25
Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD
Certificate serial: 10A40A98658D6C99B9476D975741A8838FFD7DE4
Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa
Signing time: Mon 04 Nov 2024 08:00:01 +0000
ROA not before: Mon 04 Nov 2024 07:55:01 +0000
ROA not after: Mon 03 Nov 2025 08:00:01 +0000
asID: 142327
IP address blocks: 124.40.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:a4:0a:98:65:8d:6c:99:b9:47:6d:97:57:41:a8:83:8f:fd:7d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD
Validity
Not Before: Nov 4 07:55:01 2024 GMT
Not After : Nov 3 08:00:01 2025 GMT
Subject: CN=44D5B0C077DDAEAA3C885B745B2BE3BE664C8525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a6:a7:25:92:75:82:b5:68:53:72:7e:a9:af:
1e:6c:4e:e3:1a:70:8f:f2:11:46:fc:14:22:3a:3a:
ff:1e:90:82:13:3e:9b:7e:5b:03:74:dc:7c:32:0f:
f0:78:c4:8a:7d:a7:34:0c:ff:c0:1f:d9:ee:34:0b:
c9:c5:c7:99:6c:77:17:8b:05:03:c6:c6:4f:1b:9f:
08:0a:f6:2b:d2:19:b7:c2:0d:50:99:23:6a:1a:b1:
71:96:59:b8:85:52:46:7d:c1:8c:f0:5a:82:3a:13:
f1:b1:48:f2:8f:db:60:80:4d:c8:47:48:d3:66:c8:
87:a7:7a:64:6d:f6:25:fc:71:9e:80:59:b0:8d:83:
b0:6d:37:96:e5:99:a6:aa:6e:a3:67:29:22:7f:01:
3a:d4:a4:fb:4f:3b:bc:af:be:d3:86:8a:38:cb:09:
61:23:17:ea:bf:4d:39:db:73:92:97:d3:e0:5e:d5:
7a:d1:af:03:a8:6e:32:da:3d:49:f0:eb:10:6a:7e:
28:61:f0:27:24:32:d7:5e:82:90:c3:52:e7:5d:f1:
9f:68:dc:ae:45:2f:d1:5d:5d:89:2b:f7:4a:87:6b:
80:ca:ab:d4:50:a3:86:9a:a5:56:41:a5:63:33:e8:
a9:40:cc:6f:b2:90:45:12:d5:0e:2e:2d:65:27:63:
b9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D5:B0:C0:77:DD:AE:AA:3C:88:5B:74:5B:2B:E3:BE:66:4C:85:25
X509v3 Authority Key Identifier:
keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.40.248.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:cd:42:39:3c:dd:fa:3a:0e:2a:c4:35:82:9d:31:82:6d:05:
41:67:60:fb:0e:15:28:da:32:35:b3:40:f4:9b:dc:e3:2b:9e:
9e:04:b8:e5:de:11:1d:16:dd:4a:5a:e6:9a:70:e1:ce:3c:ad:
7b:f8:bf:2f:ed:65:0a:a8:3b:c4:46:ce:8f:3d:9d:c3:d5:6e:
a6:2e:69:61:69:c7:5e:36:3b:c5:ae:78:a6:3e:05:79:1c:57:
a4:53:8f:99:15:85:c5:83:3a:ca:e2:c7:8d:9e:31:c2:4e:92:
f8:3f:91:dd:c4:fc:0d:f9:e4:53:0e:db:b0:7c:3e:57:83:54:
b5:bb:34:14:e2:ea:81:a6:f6:af:48:43:d9:97:5e:84:36:b0:
84:9f:86:bd:53:71:fc:85:06:fa:1f:b6:8c:24:01:6e:bc:46:
51:17:e1:dd:e5:4a:b4:fa:3a:79:7e:65:ad:ff:18:d3:d8:ce:
6d:22:bf:4a:be:fd:f3:0f:bb:08:b1:80:27:38:32:f3:c2:67:
5b:47:06:6d:27:db:ea:6e:b1:ae:5b:bc:68:49:ed:3c:0e:fe:
5a:1b:bc:21:bb:9a:e5:9c:30:d8:e2:cf:6b:51:91:32:d5:56:
31:0d:42:85:23:31:27:b4:1e:35:15:7e:f2:5f:e1:ae:07:f5:
74:cf:98:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:21:45 2025 by rpki-client