Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38332e302f32342d3234203d3e20313338303839.roa
File: 32372e3132342e38332e302f32342d3234203d3e20313338303839.roa (raw, json)
Hash identifier: cFWTol/CGdV3jUHZ5dc68YGpwQn+RBpTU9GYjL2xl74=
Subject key identifier: 90:17:D6:8E:6E:BC:C6:36:EE:B3:1D:97:5C:DC:D1:DD:EF:FB:2D:CE
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 40EC86B5946FD158B543A6E4E697581623987E34
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38332e302f32342d3234203d3e20313338303839.roa
Signing time: Thu 09 Jan 2025 13:00:02 +0000
ROA not before: Thu 09 Jan 2025 12:55:02 +0000
ROA not after: Thu 08 Jan 2026 13:00:02 +0000
asID: 138089
IP address blocks: 27.124.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:ec:86:b5:94:6f:d1:58:b5:43:a6:e4:e6:97:58:16:23:98:7e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Jan 9 12:55:02 2025 GMT
Not After : Jan 8 13:00:02 2026 GMT
Subject: CN=9017D68E6EBCC636EEB31D975CDCD1DDEFFB2DCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d2:5f:94:28:b9:33:0f:9a:c0:54:33:d7:75:
71:82:dc:eb:01:38:1e:1b:f3:73:48:f5:70:8d:c2:
52:f3:d3:6d:34:b3:21:ee:96:f3:67:97:c4:24:0a:
5b:4d:88:f4:7a:5e:47:c7:01:ac:dd:43:2f:df:0c:
55:7a:0d:0b:95:aa:e0:2f:4f:8a:13:a9:9f:75:ed:
66:50:f0:42:3a:28:ec:bd:0c:18:93:9c:a6:93:7d:
6c:98:99:60:fe:c6:c3:5c:d1:81:0d:a9:f7:60:44:
b4:ff:37:8a:ec:43:09:3d:32:dc:b7:00:73:3a:9f:
7b:70:fb:9e:6e:1c:97:8c:59:e5:f9:5f:be:2a:57:
ab:a2:38:13:39:2e:04:51:08:6e:25:9a:73:0a:28:
27:ea:2d:ac:83:a1:2d:79:97:c3:40:ca:1a:25:50:
4f:05:69:bd:dc:9f:45:92:62:ab:ff:4e:2d:d7:70:
ae:83:dc:67:9f:ef:75:28:de:10:39:b1:82:20:95:
96:b7:4e:ba:50:f5:72:70:db:22:80:d6:9e:3b:eb:
88:65:f8:ad:ce:6e:26:f0:eb:0f:e3:83:bf:24:85:
c2:2d:20:09:2d:d8:b7:c5:0f:d5:da:af:17:87:8e:
1b:14:d7:ed:db:52:98:5b:8d:27:62:e8:b7:60:4d:
68:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:17:D6:8E:6E:BC:C6:36:EE:B3:1D:97:5C:DC:D1:DD:EF:FB:2D:CE
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38332e302f32342d3234203d3e20313338303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.83.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:26:50:26:11:50:54:01:c6:9f:89:50:bd:11:1d:d6:bb:41:
98:ae:77:59:96:a6:b9:ba:5a:31:f2:e8:0c:34:37:af:98:60:
0c:6c:36:52:86:83:4c:fc:d0:71:74:2b:ff:fe:71:86:b1:48:
0a:e9:44:7c:93:49:fb:55:1a:3f:e3:92:db:00:ad:9a:04:4b:
e6:0e:2a:4e:e6:2c:6b:2d:c6:a3:0c:0a:5d:fc:b2:d2:33:ea:
c5:a5:0c:48:09:07:2a:2f:4b:9e:07:14:df:cf:6a:f8:e0:bd:
e9:95:88:38:81:59:87:22:48:2b:c9:2d:06:b1:bc:37:0d:cb:
64:6d:83:1b:47:04:c1:97:43:ba:eb:12:4b:3d:28:93:e6:db:
51:82:ba:8a:d7:a7:3b:a5:4e:8c:fe:c7:26:b3:3d:cb:e5:fb:
32:c6:26:21:a2:40:69:bb:91:bc:32:c9:6f:e9:a6:b6:bc:c1:
d4:13:5f:8d:43:0d:e7:74:f2:16:13:1e:df:87:fb:74:1f:0b:
19:bf:d6:43:cf:f2:5d:cc:49:bc:dc:da:f6:d5:77:5f:b4:52:
e5:6b:2a:0c:4e:b5:a5:12:68:34:5c:52:b9:88:04:93:20:c7:
58:fa:f3:a3:a1:d9:b3:a2:56:e6:c6:11:7c:f2:20:a0:0e:62:
09:03:31:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:34:39 2025 by rpki-client