Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa
File: 3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa (raw, json)
Hash identifier: Hi9atmKGqBLh80IcI4YfkhZtw64e+ySR+ExhE9rM6A4=
Subject key identifier: 6D:FE:6D:E2:91:93:56:87:72:BA:70:7B:3C:98:BA:34:F9:B0:12:BE
Certificate issuer: /CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313
Certificate serial: 46B35BDBA2722C042122A23865AF7F9849083394
Authority key identifier: C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa
Signing time: Wed 05 Feb 2025 05:00:02 +0000
ROA not before: Wed 05 Feb 2025 04:55:02 +0000
ROA not after: Wed 04 Feb 2026 05:00:02 +0000
asID: 141607
IP address blocks: 210.79.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:b3:5b:db:a2:72:2c:04:21:22:a2:38:65:af:7f:98:49:08:33:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3359BEBF0C15C9D4739CE88BFB2142D15A99313
Validity
Not Before: Feb 5 04:55:02 2025 GMT
Not After : Feb 4 05:00:02 2026 GMT
Subject: CN=6DFE6DE29193568772BA707B3C98BA34F9B012BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:11:1f:b7:ee:ee:2b:d4:f5:1d:7c:17:6f:1a:
f9:37:01:71:b2:36:3c:8f:7c:7c:90:5f:5d:31:45:
f4:b5:3e:57:97:62:fa:b5:9c:fb:01:e5:d0:af:00:
6f:5c:57:f7:cc:e1:84:26:2a:e9:08:8a:ad:10:d0:
79:74:3c:f8:03:0f:b9:ea:7b:27:26:de:04:6c:51:
57:fb:9a:fb:2e:35:32:61:39:f3:d9:3a:da:e0:f5:
48:1f:98:f6:6c:b8:5b:95:95:55:4b:2f:f7:e0:c1:
09:cf:f1:6f:a9:81:74:a1:42:0e:be:09:cb:4a:d8:
f6:5f:6a:a0:d5:28:3a:af:b7:3a:3a:0a:3f:e9:ac:
ec:40:32:18:8c:f0:71:2b:67:b4:7c:e2:ca:40:0f:
dc:86:f5:29:c4:76:83:f4:85:c0:f0:a2:97:8f:1f:
db:65:80:5d:e1:8a:0d:31:60:84:d3:a6:76:8d:37:
f6:d6:26:5f:4a:f4:97:3d:84:6c:0f:b9:1b:7b:cf:
81:07:61:23:c0:e8:41:62:a7:21:e9:65:b1:ca:7e:
b5:6b:10:a3:35:57:fc:d5:d8:63:b3:84:77:0b:89:
c6:19:97:99:04:dd:5b:3e:df:a3:a6:d1:ea:0a:73:
72:52:74:37:5b:41:b6:40:56:d1:f5:3d:59:fe:6e:
4d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:FE:6D:E2:91:93:56:87:72:BA:70:7B:3C:98:BA:34:F9:B0:12:BE
X509v3 Authority Key Identifier:
keyid:C3:35:9B:EB:F0:C1:5C:9D:47:39:CE:88:BF:B2:14:2D:15:A9:93:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3359BEBF0C15C9D4739CE88BFB2142D15A99313.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5438f6aa-f27d-4906-951e-f02d891bf1ed/0/3231302e37392e3134322e302f32342d3234203d3e20313431363037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.79.142.0/24
Signature Algorithm: sha256WithRSAEncryption
22:46:47:12:d0:ea:78:61:28:82:16:d5:9f:66:c9:15:71:72:
50:19:35:af:ad:68:d7:7b:64:9e:99:e0:ce:a6:33:83:aa:7e:
83:96:5c:45:48:16:62:45:39:10:c5:d1:3d:06:10:e7:4f:ce:
38:dd:26:30:40:c8:23:f7:5c:29:c2:81:80:87:f3:f8:fe:75:
b3:72:ea:84:a2:96:98:2a:bb:9c:00:48:c3:97:2f:ba:99:43:
c3:d7:87:bc:14:87:34:e3:43:1a:23:fd:86:9b:ce:4b:fc:a2:
34:71:10:4a:eb:89:18:16:06:79:91:fa:70:4d:13:29:90:7b:
62:49:ec:fb:22:d9:4f:f0:76:6f:63:5a:b7:2a:bd:96:77:b8:
06:d0:e4:2d:ea:66:3c:5e:a8:a0:7d:69:71:65:9d:c1:be:98:
30:a5:b8:77:52:ad:ae:db:09:70:de:63:2e:e3:cb:0f:ce:4c:
bd:45:f4:36:b4:57:c9:5d:3e:e6:2a:40:cf:1f:1d:b3:55:e9:
fa:df:4a:b1:32:85:63:26:2f:87:a2:9b:3c:94:a3:83:8d:08:
dc:36:e9:58:88:51:b7:0f:f2:ec:aa:56:70:70:0b:fd:27:67:
96:7f:2a:7c:9d:13:ad:e1:ba:35:7a:3f:d3:e7:d2:9f:ef:27:
e6:97:bf:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:42:48 2025 by rpki-client