Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa
File: 3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa (raw, json)
Hash identifier: 6++ZieIwa3uSozZCgkOKKp7p30r/ihEDLaswCcTnNnQ=
Subject key identifier: 65:46:84:95:3F:2E:7B:4C:00:64:92:B3:78:FE:8E:0E:D5:CB:13:8F
Certificate issuer: /CN=4E4C9A47789406B9086713C5B821524B664E7C90
Certificate serial: 3C824EA0110C058B07F4BCE6B8B7C76F3B3FA6BD
Authority key identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa
Signing time: Wed 27 Nov 2024 00:00:02 +0000
ROA not before: Tue 26 Nov 2024 23:55:02 +0000
ROA not after: Wed 26 Nov 2025 00:00:02 +0000
asID: 139952
IP address blocks: 203.175.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:82:4e:a0:11:0c:05:8b:07:f4:bc:e6:b8:b7:c7:6f:3b:3f:a6:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E4C9A47789406B9086713C5B821524B664E7C90
Validity
Not Before: Nov 26 23:55:02 2024 GMT
Not After : Nov 26 00:00:02 2025 GMT
Subject: CN=654684953F2E7B4C006492B378FE8E0ED5CB138F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9b:3a:79:fa:b5:d6:9a:7b:fb:c7:71:be:8b:
2a:bf:e4:53:d8:71:44:c8:bf:54:f1:57:1a:c9:ad:
b1:88:f6:14:22:e5:03:ee:9f:08:a8:99:cb:0e:bd:
d0:f0:ce:e4:e9:fd:7c:ed:ef:8e:76:50:64:ed:2a:
b6:8f:50:9c:fb:04:d0:52:74:85:6b:bd:08:0d:e4:
03:69:63:32:ea:d6:32:d6:c1:27:3f:6d:f2:02:97:
40:49:3b:ef:58:d4:c4:18:d0:6e:5c:4f:92:e2:df:
c2:bd:78:97:9f:d2:8c:38:71:93:c9:5a:da:84:41:
94:71:f4:1c:e0:01:16:5f:21:ea:e1:d4:e1:bf:64:
1b:82:c2:b0:de:e0:64:7c:30:8c:18:63:d6:8a:a1:
b9:59:cf:36:50:0a:0a:d7:20:24:a1:0e:5b:9e:5f:
5d:8c:97:23:21:ca:82:ee:0a:95:2d:17:e3:fe:b1:
77:2a:8c:b9:ef:d4:86:0a:a3:22:15:22:78:cf:15:
1f:b8:6f:87:70:46:1a:4f:dc:01:88:4f:1d:c3:e8:
91:e5:eb:8f:1a:f5:c2:72:dc:59:f3:c3:9a:63:ce:
bb:e9:04:ce:83:fc:76:09:8f:f5:8b:c7:3f:a3:af:
99:2a:16:31:a2:6f:f7:12:0f:28:3c:9f:87:fa:4e:
4e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:46:84:95:3F:2E:7B:4C:00:64:92:B3:78:FE:8E:0E:D5:CB:13:8F
X509v3 Authority Key Identifier:
keyid:4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/3230332e3137352e3132352e302f32342d3234203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.175.125.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:e6:bf:e8:35:b7:d9:02:c3:45:b7:3e:82:d5:5b:f0:d2:9b:
12:82:74:f2:55:57:ee:60:2b:84:c2:5e:06:99:fd:3e:ca:fa:
d6:28:88:7a:4d:74:c5:57:f9:0e:21:b9:73:56:a9:50:d6:ae:
3e:a6:b1:f4:cf:e5:e4:83:7f:c5:c9:4d:d6:65:ef:12:24:25:
2d:b4:c1:c2:a2:7c:bc:48:a8:ac:49:7e:f6:93:e9:1f:73:35:
b3:c4:b8:fa:a6:97:d3:c5:1f:ce:62:ab:b3:38:cb:4c:9f:b9:
b5:c3:7f:c2:c3:ed:58:6c:b0:75:64:e1:29:28:08:39:58:f7:
8a:fb:ad:12:c7:5e:f3:46:a6:8c:51:78:9b:43:88:14:0a:96:
00:45:e6:58:ac:57:8c:74:b8:82:57:06:63:bc:85:7b:52:8a:
f7:ec:de:dc:cc:a1:0d:42:19:4f:41:c0:da:fc:c4:6f:c9:42:
5d:3c:c6:0d:40:e9:01:c7:0d:d5:af:89:51:32:e5:dc:47:05:
e9:fb:ed:15:9a:4b:5b:b9:2d:a4:1d:ad:06:62:af:a5:15:62:
7a:42:06:60:e6:c5:7c:92:9b:a2:db:ae:d8:40:24:13:36:df:
89:7c:c2:00:6b:4d:83:18:13:36:da:25:b9:b4:a1:e2:59:ea:
4b:56:c1:a5
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUPIJOoBEMBYsH9LzmuLfHbzs/pr0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2
NjRFN0M5MDAeFw0yNDExMjYyMzU1MDJaFw0yNTExMjYwMDAwMDJaMDMxMTAvBgNV
BAMTKDY1NDY4NDk1M0YyRTdCNEMwMDY0OTJCMzc4RkU4RTBFRDVDQjEzOEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBmzp5+rXWmnv7x3G+iyq/5FPY
cUTIv1TxVxrJrbGI9hQi5QPunwiomcsOvdDwzuTp/Xzt7452UGTtKraPUJz7BNBS
dIVrvQgN5ANpYzLq1jLWwSc/bfICl0BJO+9Y1MQY0G5cT5Li38K9eJef0ow4cZPJ
WtqEQZRx9BzgARZfIerh1OG/ZBuCwrDe4GR8MIwYY9aKoblZzzZQCgrXICShDlue
X12MlyMhyoLuCpUtF+P+sXcqjLnv1IYKoyIVInjPFR+4b4dwRhpP3AGITx3D6JHl
648a9cJy3Fnzw5pjzrvpBM6D/HYJj/WLxz+jr5kqFjGib/cSDyg8n4f6Tk67AgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUZUaElT8ue0wAZJKzeP6ODtXLE48wHwYDVR0j
BBgwFoAUTkyaR3iUBrkIZxPFuCFSS2ZOfJAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
MmIzOGY3OS0yNmQzLTQ0ODktYTQ3ZC0wYTg4MDViNDQ4YWUvMC80RTRDOUE0Nzc4
OTQwNkI5MDg2NzEzQzVCODIxNTI0QjY2NEU3QzkwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNEU0QzlBNDc3ODk0MDZCOTA4NjcxM0M1QjgyMTUyNEI2NjRF
N0M5MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5LTI2ZDMtNDQ4OS1h
NDdkLTBhODgwNWI0NDhhZS8wLzMyMzAzMzJlMzEzNzM1MmUzMTMyMzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLr30wDQYJ
KoZIhvcNAQELBQADggEBAIrmv+g1t9kCw0W3PoLVW/DSmxKCdPJVV+5gK4TCXgaZ
/T7K+tYoiHpNdMVX+Q4huXNWqVDWrj6msfTP5eSDf8XJTdZl7xIkJS20wcKifLxI
qKxJfvaT6R9zNbPEuPqml9PFH85iq7M4y0yfubXDf8LD7VhssHVk4SkoCDlY94r7
rRLHXvNGpoxReJtDiBQKlgBF5lisV4x0uIJXBmO8hXtSivfs3tzMoQ1CGU9BwNr8
xG/JQl08xg1A6QHHDdWviVEy5dxHBen77RWaS1u5LaQdrQZir6UVYnpCBmDmxXyS
m6LbrthAJBM234l8wgBrTYMYEzbaJbm0oeJZ6ktWwaU=
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:18 2025 by rpki-client