Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32342d3234203d3e20313339393532.roa
File: 3230332e3137352e3132342e302f32342d3234203d3e20313339393532.roa (raw, json)
Hash identifier: H2J4JSb5UH/5sePhesBbTP5rDy1+Emy+Jg2bpdpPsu0=
Subject key identifier: B7:89:27:0A:8C:DA:E0:BE:AC:66:2B:19:4D:F2:12:D2:6F:81:1B:13
Certificate issuer: /CN=4E4C9A47789406B9086713C5B821524B664E7C90
Certificate serial: 42D3DF7C7C051DF9A6FB4E56DAD2558B8A00DEF4
Authority key identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32342d3234203d3e20313339393532.roa
Signing time: Wed 27 Nov 2024 00:00:02 +0000
ROA not before: Tue 26 Nov 2024 23:55:02 +0000
ROA not after: Wed 26 Nov 2025 00:00:02 +0000
asID: 139952
IP address blocks: 203.175.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:d3:df:7c:7c:05:1d:f9:a6:fb:4e:56:da:d2:55:8b:8a:00:de:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E4C9A47789406B9086713C5B821524B664E7C90
Validity
Not Before: Nov 26 23:55:02 2024 GMT
Not After : Nov 26 00:00:02 2025 GMT
Subject: CN=B789270A8CDAE0BEAC662B194DF212D26F811B13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6f:37:ea:2f:cc:fc:6a:c0:41:16:8c:95:5a:
02:30:3f:1e:d5:56:52:a7:b2:f4:6f:2f:6d:1a:68:
b6:56:49:c3:2d:96:e0:cf:34:55:0a:65:2d:cd:f5:
1c:65:4c:7f:2b:4d:65:3b:73:3c:1c:05:e0:8f:f1:
43:18:c4:8d:77:e5:27:15:d5:a4:70:09:3e:26:96:
d2:d4:1d:8b:6c:36:7c:21:de:d4:0b:04:39:b8:e1:
74:be:3f:d1:9f:48:e4:d6:31:b3:d0:3b:d2:b7:1d:
5a:ae:60:1e:5a:0b:e1:8f:19:f4:39:45:2c:e4:75:
dc:57:63:dd:f9:a0:0c:7d:c0:ce:3c:cd:fa:c3:19:
35:25:bc:a0:83:39:6a:38:e4:b0:9f:c1:a7:c6:f1:
18:64:06:51:88:8f:51:32:32:dd:6c:b7:15:1a:d2:
f3:03:ff:fc:99:a4:48:4e:c1:3a:b2:0a:f2:77:a7:
a5:16:78:fe:30:a3:61:82:2d:9a:f3:67:1b:3e:91:
2e:75:38:90:bd:2d:1d:32:3d:b1:96:6e:c4:d6:1a:
b4:89:1f:f9:2f:31:96:2e:b7:44:fb:b5:0b:12:4b:
6c:ad:dd:ce:f4:b5:25:7a:9a:06:2d:28:1b:e4:61:
eb:4e:1c:dd:63:e4:16:35:9e:0c:b6:7c:e6:2b:d1:
c5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:89:27:0A:8C:DA:E0:BE:AC:66:2B:19:4D:F2:12:D2:6F:81:1B:13
X509v3 Authority Key Identifier:
keyid:4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132342e302f32342d3234203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.175.124.0/24
Signature Algorithm: sha256WithRSAEncryption
21:01:21:13:a1:4f:50:df:fe:92:d4:96:fb:1c:23:59:df:3d:
66:b0:91:11:de:e4:f9:59:b5:af:ee:13:13:f8:7d:91:85:04:
c0:96:8c:75:10:0c:26:56:c2:e1:c6:ec:7f:c9:c4:c2:3c:50:
84:19:59:1c:f9:40:18:c4:8f:c9:c4:79:ff:02:e4:59:73:1b:
93:20:b1:91:99:b3:bc:ad:f3:2c:19:d4:4f:09:07:52:15:c4:
60:38:97:3d:aa:a0:b5:bd:f9:43:96:3b:eb:21:ac:0c:d3:9f:
b2:81:50:72:71:e0:1c:f3:5a:a1:f5:a6:96:c2:46:ab:41:08:
8e:df:25:0c:2d:c2:e7:1f:1c:63:c2:02:c4:d3:b9:bd:f6:4f:
66:f9:af:27:b7:61:d9:0f:3a:32:6c:04:18:3c:7f:da:4c:6c:
dd:1a:90:f9:d0:9b:ab:4c:d6:2e:4d:82:90:1f:80:2d:35:ff:
55:42:b6:99:4a:d4:dd:eb:be:16:9a:07:a3:02:b7:6e:9e:90:
af:f6:ca:fb:da:df:50:aa:99:f5:04:2d:39:e0:2b:c5:91:6a:
25:58:a5:25:dc:46:f0:d6:ac:49:48:13:19:7d:41:7d:38:de:
31:ff:d1:be:a7:81:6f:bb:40:23:e2:29:eb:4b:59:ff:f7:07:
da:ee:ce:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:23 2025 by rpki-client