Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32332d3234203d3e20313431363037.roa
File: 3231302e37392e3134322e302f32332d3234203d3e20313431363037.roa (raw, json)
Hash identifier: 2z5796EleJnilMU0FLojzkS/vK51uqD5/u1kXEKOaNc=
Subject key identifier: 22:83:BA:9D:49:6E:4C:8E:FA:8B:0A:B1:39:EE:3E:BA:01:04:2E:38
Certificate issuer: /CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313
Certificate serial: 32A4F2204715B4DBAD8F485E47EBA2FBEF9EB863
Authority key identifier: C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32332d3234203d3e20313431363037.roa
Signing time: Wed 05 Feb 2025 04:00:02 +0000
ROA not before: Wed 05 Feb 2025 03:55:02 +0000
ROA not after: Wed 04 Feb 2026 04:00:02 +0000
asID: 141607
IP address blocks: 210.79.142.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:a4:f2:20:47:15:b4:db:ad:8f:48:5e:47:eb:a2:fb:ef:9e:b8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313
Validity
Not Before: Feb 5 03:55:02 2025 GMT
Not After : Feb 4 04:00:02 2026 GMT
Subject: CN=2283BA9D496E4C8EFA8B0AB139EE3EBA01042E38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cb:90:22:b6:28:a3:de:83:b0:48:2b:f2:64:
6c:64:f8:0d:39:34:0d:76:55:c5:08:b0:4a:b1:60:
ee:c2:f7:21:4a:4b:6e:d7:64:a8:de:f9:89:80:f6:
a5:8b:8a:3f:aa:97:19:92:dd:d6:b3:21:e6:59:40:
e8:7f:1d:0f:d0:c0:bc:7e:a5:2c:c8:ff:35:39:4a:
30:52:7b:de:5f:e8:aa:95:b6:39:de:90:b6:b0:5f:
b9:ef:16:cf:b1:b3:81:ad:40:a5:1a:ce:e6:36:f7:
e3:84:95:8b:49:a8:a5:ca:df:a4:90:7b:d1:12:92:
64:89:e1:3d:e4:b9:2f:fe:d3:3e:03:7a:c5:5b:e4:
72:c2:d0:e7:fa:e6:d9:e2:07:65:86:d3:16:a4:4d:
b4:64:1e:e1:c2:0b:8b:3e:b3:dd:60:ce:4a:cd:c6:
1c:77:39:28:0a:6a:bc:2f:14:1e:15:f2:14:46:db:
25:6a:e9:02:93:bb:0f:2a:fa:99:b9:77:52:fe:df:
c1:de:3c:c7:64:45:b6:d3:ca:e8:3e:31:f5:71:1c:
ea:c0:ba:b5:a1:42:97:db:3e:be:77:10:50:53:90:
2d:4d:22:42:a1:ea:97:00:ff:e7:81:5e:be:6f:c0:
fb:3e:b3:2d:34:f7:97:a5:02:2d:a6:85:02:af:5e:
ef:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:83:BA:9D:49:6E:4C:8E:FA:8B:0A:B1:39:EE:3E:BA:01:04:2E:38
X509v3 Authority Key Identifier:
keyid:C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32332d3234203d3e20313431363037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.79.142.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:05:86:93:0c:eb:4e:db:c7:c5:76:1b:fb:84:1f:1d:46:f2:
74:8d:e7:0c:67:7f:c5:06:16:ee:da:da:b2:71:24:a9:59:7b:
da:65:d1:08:d7:1b:4f:15:f1:4e:37:db:d0:cc:5b:ac:e5:07:
90:88:1a:01:30:38:3e:4c:0d:9b:40:85:0d:d2:a0:8c:18:16:
89:50:47:5d:88:3f:dc:c5:a9:93:a3:cc:68:83:a4:82:32:3e:
2d:07:17:b2:74:cb:ea:69:a9:22:48:47:99:d0:5a:15:5e:a6:
20:93:c8:36:81:8d:b5:a4:bd:ba:97:4c:e4:dd:be:c6:40:aa:
7c:81:61:c3:05:00:26:29:ba:44:89:86:38:22:58:e8:9c:82:
9c:1d:9b:20:42:1a:d7:03:0c:2b:e9:ad:e1:00:07:52:6b:42:
d1:be:e5:60:13:41:7b:5b:ca:d0:d4:1a:49:0c:c1:2b:10:fc:
1c:a6:c6:68:0c:3c:4c:7e:84:f6:7a:d7:5e:f1:23:10:4a:ee:
9f:f7:f5:24:2e:2e:c5:b8:0d:1e:6c:84:5b:1c:43:96:ad:71:
1b:99:b0:3f:87:b5:4a:d8:c5:2d:a0:42:4e:fa:0a:4b:79:b8:
89:64:59:84:2b:ad:f2:49:92:a0:75:fb:14:7e:77:28:84:4b:
5c:d9:37:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:02:03 2025 by rpki-client