Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa
File: 3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa (raw, json)
Hash identifier: isz2YGXKdH3CoS6seuLskOM5snl6AbuWPIK57wv9RRw=
Subject key identifier: EE:80:E4:50:7A:CD:2A:44:D8:BF:11:8B:9F:66:34:A1:DB:34:C6:17
Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B
Certificate serial: 2E23672C0AAA47860666E34A7ACCE96C1CB5FCD9
Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa
Signing time: Mon 01 Jul 2024 01:03:19 +0000
ROA not before: Mon 01 Jul 2024 00:58:19 +0000
ROA not after: Mon 30 Jun 2025 01:03:19 +0000
asID: 133841
IP address blocks: 123.231.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:23:67:2c:0a:aa:47:86:06:66:e3:4a:7a:cc:e9:6c:1c:b5:fc:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B
Validity
Not Before: Jul 1 00:58:19 2024 GMT
Not After : Jun 30 01:03:19 2025 GMT
Subject: CN=EE80E4507ACD2A44D8BF118B9F6634A1DB34C617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4d:d5:f4:33:df:c1:c1:80:55:fb:22:13:bb:
46:f7:8d:15:93:4d:02:62:22:b4:49:f3:3b:dc:5b:
1e:53:24:7e:5b:0e:df:fe:f6:71:60:c2:15:bc:05:
ce:4b:10:9c:15:2b:10:9d:f3:23:cf:6e:72:6f:4a:
49:fb:0c:3e:c5:58:36:77:c9:32:46:ea:4d:c1:f2:
a0:7b:c7:2f:1a:f5:73:87:3e:f1:b4:e9:48:53:35:
79:4f:39:16:f5:77:e3:5e:05:a6:8f:bf:b5:5c:51:
d7:85:60:ce:89:5b:e1:43:0f:fc:5a:6e:f4:13:60:
87:2a:1d:9e:df:6d:ee:73:67:35:48:3a:94:d6:5d:
71:ae:30:45:4a:42:2d:8f:6d:9c:fc:94:8f:02:2b:
02:3a:1c:9f:9b:05:3a:a6:c5:cb:1f:5c:a7:02:c0:
22:fe:8e:72:14:d8:1f:a4:05:e1:58:1f:b6:65:f4:
1a:16:4f:30:60:d9:e1:84:ea:cf:58:9d:32:b3:c7:
b3:10:2f:5e:73:5f:3c:9f:e7:dc:af:5d:57:f2:27:
16:b5:f3:d4:de:2d:1c:15:b2:10:2c:49:6b:41:39:
7b:30:aa:cd:67:04:a9:de:f1:c5:c4:06:e1:78:67:
33:c9:25:81:5d:b5:b5:1f:3c:a4:66:6e:fd:07:51:
33:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:80:E4:50:7A:CD:2A:44:D8:BF:11:8B:9F:66:34:A1:DB:34:C6:17
X509v3 Authority Key Identifier:
keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/3132332e3233312e3230392e302f32342d3234203d3e20313333383431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
123.231.209.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:8b:93:ca:7e:bf:0b:a0:a5:a2:fd:48:24:12:4d:f0:4a:c8:
2b:e3:b4:1d:89:20:5e:a3:95:24:69:c1:ae:6a:c1:dc:93:3d:
c9:55:fa:83:e9:bd:e5:93:48:4c:80:80:e3:fb:38:e3:f6:db:
9e:79:f2:c6:6e:e1:79:73:11:95:ac:02:ad:14:75:44:2f:71:
e4:d2:38:1c:12:17:4c:32:26:a6:d4:5a:ce:4c:6c:54:16:3c:
03:ea:76:c9:0b:32:e6:7f:7a:b2:98:f7:5e:d7:9a:4f:17:51:
89:ce:a0:64:ae:0e:f9:f9:78:ca:cf:af:ab:96:9f:93:b7:86:
80:2d:48:ac:a6:68:a5:42:3e:20:65:2a:e6:7e:48:f4:1c:0a:
47:1d:9a:c7:3d:1e:2f:93:2a:a0:4d:b0:28:c9:79:65:4e:f1:
11:92:f1:ba:77:9b:a2:28:2b:6d:58:1a:e9:3d:e4:ff:97:c1:
50:22:02:a0:3d:de:46:4c:49:3d:13:e1:39:55:7b:f8:91:2e:
3e:c9:b0:31:5c:18:53:3e:49:20:d5:3f:1a:f7:8e:0f:d6:5d:
46:de:57:c9:01:42:e2:aa:09:ad:98:b0:0b:e2:8d:af:e2:a5:
75:56:da:4b:7f:8f:c8:2c:fa:cb:fb:b0:84:4d:1c:74:26:60:
99:d9:00:80
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIULiNnLAqqR4YGZuNKeszpbBy1/NkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD
RjY2NzUyQjAeFw0yNDA3MDEwMDU4MTlaFw0yNTA2MzAwMTAzMTlaMDMxMTAvBgNV
BAMTKEVFODBFNDUwN0FDRDJBNDREOEJGMTE4QjlGNjYzNEExREIzNEM2MTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTTdX0M9/BwYBV+yITu0b3jRWT
TQJiIrRJ8zvcWx5TJH5bDt/+9nFgwhW8Bc5LEJwVKxCd8yPPbnJvSkn7DD7FWDZ3
yTJG6k3B8qB7xy8a9XOHPvG06UhTNXlPORb1d+NeBaaPv7VcUdeFYM6JW+FDD/xa
bvQTYIcqHZ7fbe5zZzVIOpTWXXGuMEVKQi2PbZz8lI8CKwI6HJ+bBTqmxcsfXKcC
wCL+jnIU2B+kBeFYH7Zl9BoWTzBg2eGE6s9YnTKzx7MQL15zXzyf59yvXVfyJxa1
89TeLRwVshAsSWtBOXswqs1nBKne8cXEBuF4ZzPJJYFdtbUfPKRmbv0HUTNzAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQU7oDkUHrNKkTYvxGLn2Y0ods0xhcwHwYDVR0j
BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2
QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2
NzUyQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04
NDk3LTI5ODdkOTA5NTQzZS8wLzMxMzIzMzJlMzIzMzMxMmUzMjMwMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzODM0MzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB759EwDQYJ
KoZIhvcNAQELBQADggEBAKWLk8p+vwugpaL9SCQSTfBKyCvjtB2JIF6jlSRpwa5q
wdyTPclV+oPpveWTSEyAgOP7OOP225558sZu4XlzEZWsAq0UdUQvceTSOBwSF0wy
JqbUWs5MbFQWPAPqdskLMuZ/erKY917Xmk8XUYnOoGSuDvn5eMrPr6uWn5O3hoAt
SKymaKVCPiBlKuZ+SPQcCkcdmsc9Hi+TKqBNsCjJeWVO8RGS8bp3m6IoK21YGuk9
5P+XwVAiAqA93kZMST0T4TlVe/iRLj7JsDFcGFM+SSDVPxr3jg/WXUbeV8kBQuKq
Ca2YsAvija/ipXVW2kt/j8gs+sv7sIRNHHQmYJnZAIA=
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:14:59 2025 by rpki-client