Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa
File: 3231302e35372e3232302e302f32342d3234203d3e203338313432.roa (raw, json)
Hash identifier: 2/Cw3A1dSRg+Ts21fc2NwcUb6gMHV9LcM0XWFRm53vo=
Subject key identifier: EF:A6:C0:1B:75:80:39:4A:12:90:05:EE:88:2C:12:D9:E7:B6:40:73
Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511
Certificate serial: 5B94D9290F20DF4491BE5EC01226410E0A8D1D3A
Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa
Signing time: Mon 21 Oct 2024 13:00:01 +0000
ROA not before: Mon 21 Oct 2024 12:55:01 +0000
ROA not after: Mon 20 Oct 2025 13:00:01 +0000
asID: 38142
IP address blocks: 210.57.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:94:d9:29:0f:20:df:44:91:be:5e:c0:12:26:41:0e:0a:8d:1d:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511
Validity
Not Before: Oct 21 12:55:01 2024 GMT
Not After : Oct 20 13:00:01 2025 GMT
Subject: CN=EFA6C01B7580394A129005EE882C12D9E7B64073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d4:1c:90:0a:ab:af:8e:87:36:94:6d:01:7b:
d3:60:6a:4c:0d:14:4f:0f:40:1e:23:c9:0e:0f:1c:
83:d1:5c:c6:3d:0f:1d:52:8c:da:85:e1:41:e2:73:
e8:a0:a4:55:d7:24:b5:3e:31:d4:64:b1:95:be:3d:
a8:94:82:e9:4e:eb:b7:de:e8:11:29:f8:fb:23:cd:
73:bb:bd:57:f8:6c:f5:c2:59:83:9d:96:6b:0e:cf:
c3:5e:78:71:fb:4b:92:9a:fb:05:03:5e:9e:61:13:
94:13:2d:0c:44:dd:5a:0f:a3:38:5c:a6:3b:26:7e:
9b:cf:91:48:ab:e8:50:09:48:79:da:2f:f2:3f:37:
d6:3c:cd:e7:64:46:fd:8e:58:00:d3:3f:3d:a9:1e:
14:af:2e:2d:34:5c:94:79:09:ee:ce:7d:06:a4:83:
80:e8:94:c7:1a:41:31:02:6d:57:24:1c:92:a1:9c:
1c:e2:90:3c:4f:62:8b:c1:bc:b3:6b:1e:02:88:6b:
43:44:cc:0a:94:e5:7c:08:18:9c:9c:02:ae:86:61:
b8:d2:c8:af:f2:4c:fc:ca:64:0b:d1:e4:f1:5f:42:
d8:94:4c:76:3c:d5:97:ea:2e:39:b5:87:ef:4f:a5:
52:df:1b:84:42:af:b7:51:f1:f1:db:e1:15:90:57:
94:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A6:C0:1B:75:80:39:4A:12:90:05:EE:88:2C:12:D9:E7:B6:40:73
X509v3 Authority Key Identifier:
keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232302e302f32342d3234203d3e203338313432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.57.220.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:cc:2e:6d:65:17:da:37:b1:c0:43:a3:44:da:01:21:8e:8a:
37:47:5b:2b:cf:bf:8f:24:28:e7:53:ae:88:b5:13:b8:02:46:
09:07:ac:b5:72:7b:25:96:80:41:af:a9:a1:fc:5b:d1:7e:44:
2d:3e:0a:db:39:be:74:3e:94:cd:07:2d:4a:04:78:70:32:2a:
68:0d:51:69:1a:3b:93:65:23:d3:ea:95:81:60:3b:ac:a4:9f:
fc:74:8a:b5:d8:0c:4f:b6:10:a5:06:ef:e1:fb:72:32:5b:08:
db:aa:45:a3:dc:6f:f8:e2:04:d4:53:4f:c2:8d:1b:a5:f4:29:
65:0a:3c:66:7b:d3:bf:ec:a4:a0:3e:ef:0b:db:6a:d5:56:84:
5c:12:db:8c:ee:c7:6e:c6:9a:ae:63:80:f8:f6:20:00:e7:0e:
61:bb:3d:f5:e9:22:ee:07:02:61:d5:64:6c:d1:1f:c9:4a:85:
0c:ba:aa:15:8b:cc:3d:ff:6a:ae:4e:95:37:4c:12:d5:86:3c:
1c:38:c3:43:6b:73:78:34:58:30:78:c0:0d:c4:eb:30:db:9e:
20:7e:71:68:c3:a1:2a:d9:28:fe:1d:d5:4f:f1:92:eb:c5:83:
27:63:df:10:61:18:8a:23:2c:f9:05:f4:1d:c8:05:09:9f:63:
9b:f4:f8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:02:46 2025 by rpki-client