Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38332e302f32342d3234203d3e20313439343039.roa
File: 32372e3132342e38332e302f32342d3234203d3e20313439343039.roa (raw, json)
Hash identifier: ArbJjYu5thYVcTZlpxbtFWhvtqqsI4lH8rKC1gB8oNc=
Subject key identifier: 8C:38:52:45:52:B3:A8:DB:DB:7B:4A:A8:89:22:2B:75:E4:D6:67:E8
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 4CE42AA32E13787C1C346C4D0EFBAD5E8504B9EA
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38332e302f32342d3234203d3e20313439343039.roa
Signing time: Thu 13 Mar 2025 13:54:46 +0000
ROA not before: Thu 13 Mar 2025 13:49:46 +0000
ROA not after: Thu 12 Mar 2026 13:54:46 +0000
asID: 149409
IP address blocks: 27.124.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:e4:2a:a3:2e:13:78:7c:1c:34:6c:4d:0e:fb:ad:5e:85:04:b9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 13 13:49:46 2025 GMT
Not After : Mar 12 13:54:46 2026 GMT
Subject: CN=8C38524552B3A8DBDB7B4AA889222B75E4D667E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c9:45:ca:d5:6e:6c:54:4c:c3:e5:9e:69:8b:
1a:9f:08:95:69:d8:92:a6:ff:43:90:ca:9f:73:62:
bc:4c:13:80:49:74:db:8f:44:e0:e7:01:09:29:99:
77:da:8c:f7:79:f4:26:88:e4:9b:03:65:0e:0b:df:
b7:58:5c:fd:bc:13:34:2d:20:57:bf:f6:a8:ef:19:
18:b9:1c:3f:ee:c2:0e:83:0d:65:df:c6:4d:d0:f1:
da:49:90:15:1c:b4:bb:fc:c9:b2:dc:43:26:d8:f9:
b0:72:36:f6:db:67:3c:a6:45:1a:90:d0:1e:eb:08:
19:b8:ea:d3:4c:e6:e7:05:d5:62:5c:c5:36:a8:15:
9b:75:0f:98:8b:ac:73:9f:22:c4:72:c1:a4:8e:4b:
cd:2c:6d:b6:8a:8e:b7:8b:8b:03:c3:ab:f2:40:bf:
65:12:97:35:80:f6:cf:71:5b:57:16:4e:cf:8a:fb:
5f:a1:8f:40:2e:b3:6c:cd:99:f5:e5:dd:ba:4a:73:
91:6e:58:37:69:11:73:cb:95:30:1f:0f:bb:a0:0a:
d2:0e:26:24:90:b3:ee:fd:12:f6:f5:06:37:f7:1e:
7b:cc:85:58:5f:bf:9c:66:fa:05:1a:ce:aa:5d:04:
a9:25:5f:d4:87:f7:27:40:8c:93:67:61:57:e2:49:
d9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:38:52:45:52:B3:A8:DB:DB:7B:4A:A8:89:22:2B:75:E4:D6:67:E8
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38332e302f32342d3234203d3e20313439343039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.83.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:f8:d9:3d:09:90:ea:05:42:76:68:42:46:00:a0:0b:bc:68:
ee:26:f4:3e:0f:6f:fa:61:52:da:00:38:35:1f:99:9c:b1:c3:
1b:b4:fe:de:be:74:c5:75:77:b8:d3:66:42:e6:79:c0:35:de:
19:2f:6d:85:4c:f4:4f:8a:52:30:f2:b7:d0:91:4a:6c:b4:05:
43:aa:10:57:8e:74:9d:4e:ed:94:65:70:d2:cc:0d:80:b1:b4:
c2:dd:21:92:0c:50:1b:87:0a:27:d8:57:72:29:e7:4c:fc:61:
40:e3:2f:66:40:fc:86:d0:0c:b6:61:07:d1:77:05:99:ce:75:
4e:09:41:ef:69:72:ae:37:92:c3:e5:66:f7:fd:76:9b:36:8b:
50:c4:71:22:ac:41:89:7c:07:47:e0:6b:9c:12:bd:06:4a:fc:
9f:11:cd:05:9a:7d:61:61:22:28:1e:28:dc:4e:97:95:14:c0:
86:7a:06:10:87:fd:fc:c2:54:cc:21:5d:17:31:23:b1:be:6e:
40:48:cc:23:a6:b7:3c:8a:67:10:12:b6:c6:97:e0:61:54:1d:
8f:50:74:0e:d5:14:d5:c7:b2:15:81:af:6f:8f:2d:25:1f:07:
e2:6c:a4:c6:27:63:53:43:b2:d8:60:03:06:dc:82:24:54:a8:
df:d7:cd:b0
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUTOQqoy4TeHwcNGxNDvutXoUEueowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD
RjlBNjQ3MzAeFw0yNTAzMTMxMzQ5NDZaFw0yNjAzMTIxMzU0NDZaMDMxMTAvBgNV
BAMTKDhDMzg1MjQ1NTJCM0E4REJEQjdCNEFBODg5MjIyQjc1RTRENjY3RTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdyUXK1W5sVEzD5Z5pixqfCJVp
2JKm/0OQyp9zYrxME4BJdNuPRODnAQkpmXfajPd59CaI5JsDZQ4L37dYXP28EzQt
IFe/9qjvGRi5HD/uwg6DDWXfxk3Q8dpJkBUctLv8ybLcQybY+bByNvbbZzymRRqQ
0B7rCBm46tNM5ucF1WJcxTaoFZt1D5iLrHOfIsRywaSOS80sbbaKjreLiwPDq/JA
v2USlzWA9s9xW1cWTs+K+1+hj0Aus2zNmfXl3bpKc5FuWDdpEXPLlTAfD7ugCtIO
JiSQs+79Evb1Bjf3HnvMhVhfv5xm+gUazqpdBKklX9SH9ydAjJNnYVfiSdktAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUjDhSRVKzqNvbe0qoiSIrdeTWZ+gwHwYDVR0j
BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG
QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB
NjQ3My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05
NzBmLWY2OTlkZmY5N2RlNS8wLzMyMzcyZTMxMzIzNDJlMzgzMzJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMxMzQzOTM0MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABt8UzANBgkqhkiG
9w0BAQsFAAOCAQEAs/jZPQmQ6gVCdmhCRgCgC7xo7ib0Pg9v+mFS2gA4NR+ZnLHD
G7T+3r50xXV3uNNmQuZ5wDXeGS9thUz0T4pSMPK30JFKbLQFQ6oQV450nU7tlGVw
0swNgLG0wt0hkgxQG4cKJ9hXcinnTPxhQOMvZkD8htAMtmEH0XcFmc51TglB72ly
rjeSw+Vm9/12mzaLUMRxIqxBiXwHR+BrnBK9Bkr8nxHNBZp9YWEiKB4o3E6XlRTA
hnoGEIf9/MJUzCFdFzEjsb5uQEjMI6a3PIpnEBK2xpfgYVQdj1B0DtUU1ceyFYGv
b48tJR8H4mykxidjU0Oy2GADBtyCJFSo39fNsA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 23:53:54 2025 by rpki-client