Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa
File: 3231382e3130302e37342e302f32342d3234203d3e203535363539.roa (raw, json)
Hash identifier: f4mlj6WVkyFeaaLH9aybOm9Xb5biRZ9xz41w+irFc4Y=
Subject key identifier: 0A:75:C3:0C:68:0A:4B:D2:F5:62:B0:82:C4:42:53:E7:0C:9F:20:44
Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25
Certificate serial: 0BDD20C3DC59D1A246BFDBF953614962F36C774C
Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa
Signing time: Mon 10 Jun 2024 07:45:45 +0000
ROA not before: Mon 10 Jun 2024 07:40:45 +0000
ROA not after: Mon 09 Jun 2025 07:45:45 +0000
asID: 55659
IP address blocks: 218.100.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:dd:20:c3:dc:59:d1:a2:46:bf:db:f9:53:61:49:62:f3:6c:77:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25
Validity
Not Before: Jun 10 07:40:45 2024 GMT
Not After : Jun 9 07:45:45 2025 GMT
Subject: CN=0A75C30C680A4BD2F562B082C44253E70C9F2044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:82:e1:ca:20:c1:4a:88:f3:87:ed:c9:b2:26:
46:d9:a3:0b:2e:5f:ef:3e:3d:bf:35:42:13:c9:2b:
56:54:9e:0b:ba:39:a3:73:d2:c6:f9:98:bc:9a:db:
a0:48:26:eb:43:a9:c9:c8:ff:02:b5:50:a8:84:0c:
2a:6e:00:9c:ab:dc:22:87:ef:34:97:5d:f7:9e:ae:
8c:45:7b:ee:6e:22:f2:fc:6b:6a:b5:f1:79:96:59:
e2:95:24:70:9e:72:ce:88:0d:03:9e:03:01:b4:0f:
db:8c:7e:59:5d:da:a3:6a:18:ac:fc:b4:c3:40:54:
82:79:a0:bc:09:e4:79:49:e6:fe:8b:be:c0:46:84:
f4:88:58:4b:da:77:e8:3c:45:04:dc:33:d6:da:76:
db:9f:08:a8:46:f0:75:86:54:be:70:5a:fc:58:c2:
10:4d:0d:d5:34:8c:43:55:fc:b4:f8:b6:75:72:eb:
14:70:85:02:58:24:71:ff:9d:40:fa:64:40:2c:c3:
db:fb:1b:7c:c0:e5:95:90:bd:9f:3f:74:cd:2b:67:
a7:8f:d8:93:a7:2b:4b:8f:4b:69:33:22:5b:41:58:
96:73:4e:eb:4f:68:6f:b4:53:3f:d2:0e:3a:80:c3:
68:36:b1:e9:f6:bf:e1:c5:9b:df:3e:85:6e:e8:46:
bd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:75:C3:0C:68:0A:4B:D2:F5:62:B0:82:C4:42:53:E7:0C:9F:20:44
X509v3 Authority Key Identifier:
keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3231382e3130302e37342e302f32342d3234203d3e203535363539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
218.100.74.0/24
Signature Algorithm: sha256WithRSAEncryption
74:10:cf:37:26:20:26:0d:e8:02:79:cc:38:cc:57:29:ec:f4:
21:a1:4e:e9:a8:32:5f:fc:7d:0d:c4:30:f9:f8:4f:fa:3a:16:
6f:67:b3:2a:40:de:a0:16:89:a4:14:66:12:b8:6a:30:a9:38:
84:f6:7b:f2:c4:a7:bc:c7:a8:85:87:39:09:66:89:e4:f7:c0:
ef:df:80:90:7f:30:e6:dc:9d:6d:38:65:e9:9d:9c:5c:91:4d:
b5:a6:09:77:de:9b:9d:cd:03:55:78:4f:6a:e7:d9:65:d1:7a:
2b:b3:e0:0e:77:13:81:ea:5d:44:3b:05:cd:f0:ed:5a:3d:5f:
d1:33:5c:58:f1:8a:0b:73:38:ae:73:cf:4c:c7:c1:a8:f4:87:
58:22:6e:8a:de:3f:80:41:fb:cd:6e:ea:a1:87:00:83:ca:5c:
3d:26:06:1e:bb:df:a8:ed:a2:b3:d9:19:9b:0b:8d:17:dd:cc:
db:dd:5c:2e:75:c6:d5:08:47:91:03:45:66:dd:57:9e:de:07:
d3:f6:2a:25:a8:7f:9c:5d:59:20:b4:c6:dc:48:77:b7:cc:9b:
39:a0:38:03:30:e6:1f:04:dd:85:52:ab:45:af:ef:87:4b:08:
3e:a3:80:47:4b:3e:b8:79:e4:ee:8a:bf:1f:74:98:5f:bb:f1:
3f:83:6e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:06:59 2025 by rpki-client