Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa
File: 3231302e35372e3231362e302f32342d3234203d3e203338313432.roa (raw, json)
Hash identifier: GSwWK5SKTFAU7AOJ/9DuPKdDxhcqh8eUZIsdCou3WA4=
Subject key identifier: 87:83:A0:C0:84:FD:DD:40:C8:86:65:61:06:A3:AB:09:30:39:F3:FE
Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511
Certificate serial: 50BB92B9FCD3B8766AFEF34EE172511C8A3827FA
Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa
Signing time: Mon 21 Oct 2024 13:00:02 +0000
ROA not before: Mon 21 Oct 2024 12:55:02 +0000
ROA not after: Mon 20 Oct 2025 13:00:02 +0000
asID: 38142
IP address blocks: 210.57.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:bb:92:b9:fc:d3:b8:76:6a:fe:f3:4e:e1:72:51:1c:8a:38:27:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511
Validity
Not Before: Oct 21 12:55:02 2024 GMT
Not After : Oct 20 13:00:02 2025 GMT
Subject: CN=8783A0C084FDDD40C886656106A3AB093039F3FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:98:c5:e1:1b:b7:35:a8:d4:ad:81:79:41:d7:
0d:eb:43:ad:85:64:08:2d:40:af:1d:82:0c:ba:4f:
9a:fe:87:c5:08:da:ad:a5:73:20:a0:f8:62:b9:52:
ca:70:43:77:da:1c:ec:5f:b1:c7:9a:6d:7c:79:bb:
b0:f6:d0:87:ee:5d:42:d1:54:04:0c:78:03:2b:f8:
2e:e5:d9:da:ad:a4:1d:7f:2d:c9:07:f9:56:aa:9e:
f1:f8:73:ac:d7:77:57:dd:be:ba:9b:0b:83:91:51:
e4:66:df:56:b5:0c:63:9f:e2:ab:ca:9f:d8:8b:29:
b6:d5:d0:84:c4:79:0e:f5:0e:d3:cf:4b:78:44:17:
47:50:a9:9c:33:f2:ba:2b:de:ad:17:a4:97:24:31:
54:3d:46:af:43:60:e0:6a:f8:c5:78:ac:6b:0c:c0:
b8:a5:69:08:4e:ef:09:4a:0d:15:e4:ec:70:17:93:
75:68:40:32:cc:1a:fd:c4:16:ab:59:e1:1e:08:c1:
ad:4b:70:20:0c:a7:16:29:8d:36:cd:58:11:67:a4:
27:15:34:29:93:17:28:9e:eb:ac:d3:65:2e:95:e6:
c0:73:fd:a3:e8:47:cf:36:d1:14:09:34:9f:85:77:
64:e0:cf:72:a3:65:e0:13:ef:6a:fc:86:28:95:b8:
b3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:83:A0:C0:84:FD:DD:40:C8:86:65:61:06:A3:AB:09:30:39:F3:FE
X509v3 Authority Key Identifier:
keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3231362e302f32342d3234203d3e203338313432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.57.216.0/24
Signature Algorithm: sha256WithRSAEncryption
94:b5:a9:39:1a:09:64:61:f1:6c:97:79:50:b0:8e:34:83:e8:
a8:fd:53:13:0d:fc:f4:08:c1:cd:30:be:b9:84:49:a6:16:d4:
5d:9b:56:6d:0a:57:4b:f8:d7:97:27:85:6d:d8:fc:0e:ec:f7:
b8:bf:ba:5c:27:10:09:2f:bf:8c:36:2d:f6:cf:03:a0:a5:ce:
22:19:4d:ee:e3:56:30:35:68:91:24:3f:c6:f8:77:44:f9:82:
51:48:a0:ba:e7:ed:66:af:10:98:9c:6f:bd:64:e3:a5:c7:5e:
94:b3:05:ad:ca:8b:8d:d5:7f:1b:20:34:37:54:0a:2e:d2:f5:
cd:33:b3:ea:73:ff:a3:0a:f5:d5:30:31:69:3c:32:fa:24:c1:
51:fe:4c:29:60:21:0d:95:d9:4f:87:4c:64:2e:28:75:de:00:
6a:16:d5:a1:ca:40:9f:4c:1a:94:39:c5:cc:32:20:e2:7e:53:
b6:9f:bf:18:8c:d2:fa:51:71:5c:50:d1:b3:bc:fc:65:2a:69:
76:d5:c1:2d:e1:ef:3a:7e:3d:84:c0:54:e2:01:2e:53:b7:6d:
9e:1f:55:3e:eb:e9:2d:95:3c:0b:52:4d:38:d5:54:fa:67:a7:
3d:c2:8a:16:71:fe:86:09:53:1b:14:11:41:97:8d:e2:f7:a0:
f0:b9:4f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:08:07 2025 by rpki-client