Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa
File: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (raw, json)
Hash identifier: C8mpthKpYoXubM6q6uGalmKMPilhsW9s24BUFwWotXs=
Subject key identifier: 5E:2E:DB:54:F3:6B:2F:FE:C0:4A:CA:DC:5E:56:BB:74:52:BA:8E:C6
Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39
Certificate serial: 7D6B87E1E0D218230FAF4247BD30748AB5085386
Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa
Signing time: Mon 01 Jul 2024 01:04:24 +0000
ROA not before: Mon 01 Jul 2024 00:59:24 +0000
ROA not after: Mon 30 Jun 2025 01:04:24 +0000
asID: 24204
IP address blocks: 203.80.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:6b:87:e1:e0:d2:18:23:0f:af:42:47:bd:30:74:8a:b5:08:53:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39
Validity
Not Before: Jul 1 00:59:24 2024 GMT
Not After : Jun 30 01:04:24 2025 GMT
Subject: CN=5E2EDB54F36B2FFEC04ACADC5E56BB7452BA8EC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:27:f8:96:4c:2d:b1:d0:08:b8:29:fe:24:d7:
1a:fd:9e:6a:f9:4f:79:10:9f:a3:e6:53:23:b0:e0:
24:f8:93:cc:c6:26:11:de:ae:bd:93:85:b7:d6:05:
ed:10:e7:5c:50:7f:da:dc:60:19:a8:28:a3:89:e9:
c0:21:29:fd:7b:1e:3d:d9:6b:0b:b3:1c:21:5c:13:
75:22:59:cf:ac:9d:07:5f:45:3a:24:e9:1c:26:4e:
b9:22:4e:a1:bf:e5:c1:c6:9c:9c:e0:59:2e:0d:cb:
76:5b:e0:1a:b6:8a:47:27:80:fb:95:f6:13:f8:9f:
eb:6e:b0:d2:5f:a8:82:55:2c:72:22:8c:74:0b:f5:
80:d5:3b:ba:a5:54:e7:ec:eb:2a:f6:7d:36:0f:e4:
5b:82:f5:c6:59:d3:65:2c:d4:d1:81:85:dd:ef:48:
07:5b:36:94:0e:f5:4f:af:dd:6b:1c:d5:1f:c8:f5:
91:c0:a8:ca:de:ee:06:ce:7a:31:11:c2:86:22:3b:
cc:17:71:04:fd:59:cc:2c:d5:95:ca:fb:ba:6e:a3:
e0:17:32:fc:37:c5:10:18:06:90:12:07:d3:c9:4f:
4c:f2:1c:3b:4b:61:a3:77:30:6b:67:ab:06:19:6b:
35:ff:b6:09:44:c1:c9:ba:dd:17:33:b2:cf:07:18:
d6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2E:DB:54:F3:6B:2F:FE:C0:4A:CA:DC:5E:56:BB:74:52:BA:8E:C6
X509v3 Authority Key Identifier:
keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/3230332e38302e31302e302f32342d3234203d3e203234323034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.80.10.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:f3:11:50:1a:b6:d7:70:fc:e7:f4:bb:0d:07:c3:d6:69:70:
c2:fa:86:13:39:1c:80:84:b1:36:5e:f9:13:52:c6:a8:4f:1e:
7f:f8:81:b0:e3:91:d1:74:7d:96:aa:09:a3:d6:81:0e:f2:ad:
48:41:02:17:45:8e:62:a9:28:75:e8:d2:8e:be:ad:aa:f5:1b:
e6:9a:03:6e:19:c7:e1:6b:48:04:9f:29:46:4d:1d:0a:26:0e:
52:9e:2c:79:ea:cb:82:8f:89:9f:a8:8d:70:38:14:7f:af:e4:
0a:45:e4:87:70:c7:19:5d:be:21:e3:48:12:3e:e5:f9:b2:55:
23:2a:03:02:4e:25:db:d7:58:55:69:ac:1a:95:46:86:28:b3:
9d:28:0e:46:29:ae:ea:96:a8:9b:f2:d2:49:71:cd:14:bd:d4:
f3:9e:04:1a:69:d8:94:c0:86:2f:2c:27:62:3c:fe:30:54:0d:
ef:9d:81:38:a4:87:a9:8f:7b:ca:b9:fc:69:7f:d9:48:c1:d2:
fd:86:40:0d:5f:35:26:30:d2:c3:4e:6c:d4:d5:ff:06:94:54:
2b:50:63:9d:14:89:d5:0a:c7:9d:87:46:9c:0b:7c:39:db:2f:
9f:62:94:df:4a:f0:29:f5:75:eb:96:0b:4c:d6:68:b2:b8:7e:
1a:20:31:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:27 2025 by rpki-client