Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/3231302e37392e3134362e302f32342d3234203d3e20313532303435.roa
File: 3231302e37392e3134362e302f32342d3234203d3e20313532303435.roa (raw, json)
Hash identifier: N74dfLFvl7eNsa07RKUrhClkbMWl/o482r/Gpd8s/i0=
Subject key identifier: 28:5F:C5:0A:14:F4:CC:75:D5:D2:4C:A7:58:24:1B:D1:ED:73:CE:BD
Certificate issuer: /CN=98BF0C90429CA12CE1425374F5765263297D61F1
Certificate serial: 3A7F958454FC236396613D34BCC9B79EC761A5BA
Authority key identifier: 98:BF:0C:90:42:9C:A1:2C:E1:42:53:74:F5:76:52:63:29:7D:61:F1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98BF0C90429CA12CE1425374F5765263297D61F1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/3231302e37392e3134362e302f32342d3234203d3e20313532303435.roa
Signing time: Fri 13 Dec 2024 08:00:33 +0000
ROA not before: Fri 13 Dec 2024 07:55:33 +0000
ROA not after: Fri 12 Dec 2025 08:00:33 +0000
asID: 152045
IP address blocks: 210.79.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:7f:95:84:54:fc:23:63:96:61:3d:34:bc:c9:b7:9e:c7:61:a5:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98BF0C90429CA12CE1425374F5765263297D61F1
Validity
Not Before: Dec 13 07:55:33 2024 GMT
Not After : Dec 12 08:00:33 2025 GMT
Subject: CN=285FC50A14F4CC75D5D24CA758241BD1ED73CEBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:55:cf:79:f5:72:7c:f5:6b:c5:81:9d:45:2d:
2f:f2:1d:45:ca:b7:ed:d2:84:da:24:d6:d5:07:4a:
3b:42:ed:05:fc:47:7c:f3:ee:81:5f:aa:88:92:ee:
10:00:7a:3a:22:12:11:51:61:42:40:01:08:48:33:
06:ee:0d:49:4f:74:34:47:3d:14:ca:88:31:b5:ef:
f3:39:66:74:ce:4f:84:60:9f:3b:75:15:e5:cd:d5:
83:53:37:1c:57:5c:c8:90:5d:43:b3:81:aa:89:22:
96:6f:2e:ec:29:f5:93:1a:26:6e:3e:65:fd:85:95:
03:e2:67:06:3d:97:0d:d1:9d:82:ee:ca:27:74:c1:
82:0b:66:be:31:79:f1:4f:f0:50:90:5c:ba:1a:26:
a7:c7:71:36:b6:f3:38:a6:a9:76:be:39:fe:65:e4:
f9:0e:29:49:4f:d3:83:86:6e:8d:52:93:e7:fa:e5:
0c:8e:dc:64:3b:dc:22:87:1e:cf:52:36:e9:23:0e:
0b:e9:a5:2d:59:22:6c:e0:10:81:5e:26:e6:80:68:
b4:f0:8c:15:ea:e3:1b:df:de:d5:1d:0e:77:c7:89:
f2:fc:1e:92:96:14:eb:96:07:a3:5a:d6:af:06:da:
c5:64:06:d3:3b:b5:b3:97:62:6f:40:99:34:ce:00:
0c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:5F:C5:0A:14:F4:CC:75:D5:D2:4C:A7:58:24:1B:D1:ED:73:CE:BD
X509v3 Authority Key Identifier:
keyid:98:BF:0C:90:42:9C:A1:2C:E1:42:53:74:F5:76:52:63:29:7D:61:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/98BF0C90429CA12CE1425374F5765263297D61F1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98BF0C90429CA12CE1425374F5765263297D61F1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31bb66d0-a933-4110-a093-038da9ec8b7e/0/3231302e37392e3134362e302f32342d3234203d3e20313532303435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.79.146.0/24
Signature Algorithm: sha256WithRSAEncryption
62:88:5e:f5:3f:31:47:f3:cf:a6:28:96:30:43:f6:ad:93:aa:
84:8d:55:20:ba:16:49:9f:d7:1e:a9:4c:cb:20:b9:8d:09:40:
05:37:72:5d:42:fc:ad:4d:a9:86:4d:57:5e:11:e5:97:73:11:
21:57:12:34:ed:be:a9:5b:74:be:ef:bf:e8:bd:9a:85:48:28:
c8:54:e7:ac:6c:49:5c:d7:26:a6:72:2e:57:ed:6f:e1:11:a5:
ea:c9:26:b0:7a:a4:9c:27:a2:ed:b9:c7:25:48:d7:66:04:51:
68:4f:f8:7c:1d:1e:94:d3:68:ad:e8:ce:4d:3c:41:90:1e:bd:
22:f0:6b:1f:88:b5:c2:85:ef:1d:83:55:1e:0b:da:5d:fb:9f:
ff:fd:07:7f:28:ad:04:67:78:d3:c2:9e:03:24:15:0e:60:75:
81:ff:fa:f6:96:fa:a9:f0:30:7d:58:99:6c:84:3a:58:3b:1d:
d3:60:46:4f:42:4b:5f:70:86:8e:ac:30:65:69:e3:63:72:69:
db:dc:af:83:c3:22:a0:89:3b:f3:e5:28:88:8c:5c:fd:de:0e:
65:de:c8:3a:77:0c:66:56:e3:ad:4c:85:92:16:df:f7:d9:49:
93:4f:0c:b7:7c:d7:0f:de:f3:57:50:c3:d8:2d:07:e4:46:39:
59:33:28:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:29:54 2025 by rpki-client