Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa
File: 3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa (raw, json)
Hash identifier: 0ZjaCSDkZE3toJj3VnmydduiyMvKfnmcf5gcKOlye10=
Subject key identifier: EF:84:BE:74:BA:A6:76:D7:32:1A:88:3C:47:D9:2D:BF:26:5F:95:D7
Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B
Certificate serial: 13074353DE615A1B0488C79B4E3B7440FD64201E
Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa
Signing time: Mon 01 Jul 2024 01:03:20 +0000
ROA not before: Mon 01 Jul 2024 00:58:20 +0000
ROA not after: Mon 30 Jun 2025 01:03:20 +0000
asID: 133841
IP address blocks: 123.231.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:07:43:53:de:61:5a:1b:04:88:c7:9b:4e:3b:74:40:fd:64:20:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B
Validity
Not Before: Jul 1 00:58:20 2024 GMT
Not After : Jun 30 01:03:20 2025 GMT
Subject: CN=EF84BE74BAA676D7321A883C47D92DBF265F95D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1e:1f:af:1c:23:63:b3:21:e2:0b:75:ac:ce:
32:3c:aa:bf:e3:5c:e4:a6:42:d3:48:df:7e:c5:81:
b5:7f:30:6e:65:e5:b0:f7:dc:fa:d8:9a:96:bb:90:
62:13:2e:2f:60:16:83:60:25:e0:c7:fe:55:4f:f7:
ee:53:93:4b:30:cb:05:40:7a:95:ba:9d:96:74:32:
1b:32:dc:38:74:6d:61:9f:77:20:b6:e9:d2:3d:3b:
b1:2e:79:09:b2:fd:4e:57:54:f9:ec:41:d2:21:be:
e5:49:52:6d:de:20:fe:46:75:e5:5a:f1:25:2f:d3:
26:09:67:0c:7d:0f:42:f0:0d:f5:d2:93:3b:b9:fa:
9d:af:cd:da:da:21:16:39:df:20:24:2d:58:72:59:
2f:85:55:76:90:e3:d5:4b:22:06:bd:53:99:8f:95:
be:3b:3e:89:a2:6c:fc:d3:c4:66:a0:da:d3:aa:07:
18:a6:f1:b5:e7:3b:4a:63:4a:6a:6b:38:d8:1c:46:
e9:27:e8:c8:c3:fc:cc:4e:c8:d0:69:54:a0:f9:2f:
88:dd:04:02:64:3d:e7:5a:dc:f8:27:ec:7c:49:aa:
02:d4:95:ed:dd:c5:65:89:a3:c9:fc:0f:76:c3:6f:
13:72:bf:b9:75:54:27:a1:cb:fd:a8:d2:32:e9:3a:
da:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:84:BE:74:BA:A6:76:D7:32:1A:88:3C:47:D9:2D:BF:26:5F:95:D7
X509v3 Authority Key Identifier:
keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3139322e302f32342d3234203d3e20313333383431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
123.231.192.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:87:70:94:94:d2:c3:58:28:1a:ad:2f:4e:18:88:29:3f:3a:
cf:0c:be:9d:d6:a0:f4:36:1d:87:81:26:e0:fe:3d:45:ea:bc:
ab:e1:00:28:ec:98:ff:41:7b:7b:45:d0:a7:b7:6b:8f:44:f5:
67:cc:c9:ae:5d:08:ef:c1:11:ed:44:07:fd:9f:c7:0d:66:ea:
72:5a:dd:5d:5a:8c:bc:30:c3:9c:de:b1:e9:f4:b0:9a:ad:45:
92:e2:eb:c6:ad:c8:29:e1:5a:8d:51:50:cd:78:b2:b7:72:1b:
af:ab:ec:2d:90:09:0e:54:b8:e3:b9:d8:f3:79:e7:d8:65:d6:
be:06:7b:63:fa:6b:6a:5e:30:e1:a2:ef:1a:60:c8:3b:65:f9:
d0:d3:29:70:34:26:68:d2:4e:7f:c2:d5:e2:19:b2:89:26:b5:
2a:c0:9d:74:0b:1c:5d:2c:24:4d:ac:2c:d8:ff:36:8e:c2:a4:
fe:7b:29:9a:ed:b5:21:87:83:d7:91:7d:3d:1c:ff:07:d8:b4:
87:1d:36:fc:53:ee:06:5b:1f:18:62:b1:b1:af:52:b6:e3:0a:
c7:81:ff:fb:62:de:cc:45:86:a6:33:ae:07:6a:58:a0:ba:d0:
fc:27:91:bb:45:40:6f:22:6e:88:2a:f7:3f:23:69:cc:21:1e:
b9:92:bb:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:00:13 2025 by rpki-client