Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa
File: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (raw, json)
Hash identifier: OI9Dbbh3AxBZ/lUfEAmwLldVzXyZ0yA+CnQ3viXQgc8=
Subject key identifier: EE:86:65:B6:CE:1B:71:E2:DB:A8:4A:4D:B0:1C:A8:1A:58:6E:78:C5
Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD
Certificate serial: 74A910588E5C98F9796162E7542B2C9467B0F6E4
Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa
Signing time: Mon 04 Nov 2024 08:00:01 +0000
ROA not before: Mon 04 Nov 2024 07:55:01 +0000
ROA not after: Mon 03 Nov 2025 08:00:01 +0000
asID: 142327
IP address blocks: 124.40.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:a9:10:58:8e:5c:98:f9:79:61:62:e7:54:2b:2c:94:67:b0:f6:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD
Validity
Not Before: Nov 4 07:55:01 2024 GMT
Not After : Nov 3 08:00:01 2025 GMT
Subject: CN=EE8665B6CE1B71E2DBA84A4DB01CA81A586E78C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d9:d3:7d:80:c2:76:5d:2f:cd:47:ce:79:e4:
fc:48:9f:9a:ef:23:e7:73:73:ee:df:75:6b:29:e8:
10:4a:fb:98:34:17:25:f9:ca:b9:6b:66:12:42:3b:
b4:b2:bd:0d:1f:50:22:80:2b:c2:25:da:22:92:a5:
44:a9:aa:b4:b0:61:b3:9d:29:13:8e:f3:cc:9b:1e:
33:3b:d4:97:ec:6f:cf:13:f1:24:88:e7:72:d5:88:
ae:96:76:b6:35:ab:30:42:43:6f:ff:f5:5f:6c:a5:
e8:20:47:89:d3:ba:1f:f0:1e:6f:38:e7:47:0c:bd:
97:e6:0c:4a:b0:9c:95:aa:90:57:09:ff:f9:6b:56:
1b:d0:a9:b6:f0:01:45:59:7f:2e:ce:36:59:a8:84:
1a:b1:21:06:53:2b:0c:b9:20:7e:58:05:3a:bf:c7:
77:94:55:f0:3d:9b:05:12:3c:57:b3:59:0e:6e:e7:
65:28:10:3f:49:c4:c1:aa:6e:f7:ee:8c:06:25:b2:
4e:95:cd:f7:90:e7:92:e9:14:82:98:c9:8e:ee:7f:
19:79:fc:11:10:0d:e9:78:d2:78:6e:73:3d:03:8f:
ac:58:31:74:f5:42:92:82:59:1f:3b:42:b8:42:b6:
b7:ae:7a:4e:b4:6a:4a:3b:56:d5:ba:06:90:73:3a:
39:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:86:65:B6:CE:1B:71:E2:DB:A8:4A:4D:B0:1C:A8:1A:58:6E:78:C5
X509v3 Authority Key Identifier:
keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.40.253.0/24
Signature Algorithm: sha256WithRSAEncryption
73:5f:35:a5:67:07:05:f7:11:90:53:20:fd:da:bb:92:a3:7c:
c0:30:99:80:a6:6a:78:fd:75:59:59:c3:49:72:84:b9:3a:51:
6a:df:45:23:10:75:b2:92:46:0a:be:36:62:94:a9:8c:9a:25:
6d:3c:18:b6:e8:2a:a7:98:62:74:53:e3:b7:48:3a:2b:e6:94:
ef:09:96:fd:82:ed:f1:9e:9b:3d:6f:aa:60:b6:83:fa:fc:f6:
97:af:08:1d:41:27:9d:18:77:d7:a4:8d:e6:0e:2e:fe:9e:06:
f3:c1:e7:2c:c1:80:40:ea:ac:7f:d9:95:f4:d3:4a:7e:9f:ec:
e0:52:32:b4:cb:2e:40:de:ba:cc:62:2d:91:58:4c:26:5b:ea:
47:90:f1:98:8b:a1:67:6a:8e:8a:07:70:a3:d3:e3:34:39:a8:
b3:be:99:cd:63:50:06:ab:fe:0b:b2:89:41:fe:fb:23:6b:af:
a2:a8:e8:c1:d2:4b:51:3b:1c:b9:97:80:ae:8c:a2:c4:e4:3d:
19:df:f2:b0:12:9a:63:e3:b5:cc:3c:56:b6:2c:74:25:c8:e9:
99:c9:e4:52:e2:b2:f0:04:fb:c2:ba:84:27:d6:1c:c5:2e:cb:
4e:93:59:45:d5:61:28:67:da:07:3c:00:18:b3:e5:cd:cf:49:
36:4b:ab:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:39:07 2025 by rpki-client