Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa
File: 3138302e3231312e38382e302f32312d3234203d3e203435373235.roa (raw, json)
Hash identifier: E/UKnr86zLsQEyoibRocTofq4+NWel7/5QD1XKQKqEc=
Subject key identifier: EA:1D:B1:C2:1B:F8:0A:E1:A2:E0:63:F3:B5:B7:6D:5C:59:AC:51:D3
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 4C3ACE780092A3379478BE8CD967BF8D28DDAEC2
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa
Signing time: Tue 25 Jun 2024 10:00:00 +0000
ROA not before: Tue 25 Jun 2024 09:55:00 +0000
ROA not after: Tue 24 Jun 2025 10:00:00 +0000
asID: 45725
IP address blocks: 180.211.88.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:3a:ce:78:00:92:a3:37:94:78:be:8c:d9:67:bf:8d:28:dd:ae:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Jun 25 09:55:00 2024 GMT
Not After : Jun 24 10:00:00 2025 GMT
Subject: CN=EA1DB1C21BF80AE1A2E063F3B5B76D5C59AC51D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e4:78:46:b6:46:78:0f:67:21:fb:3e:94:a6:
05:cf:ec:d9:1f:d9:4d:a4:c9:67:8b:94:9d:cc:e5:
4c:2a:98:06:6f:ac:39:c4:23:99:71:5c:ff:a5:77:
c9:de:02:79:95:98:87:7f:ac:0e:e0:b0:7f:2c:5a:
94:ac:68:c5:d0:3b:01:4f:71:90:47:d3:b1:9e:75:
fe:0a:e5:ff:b5:fe:54:ad:28:40:51:56:e9:8f:8b:
f4:57:12:ff:8d:cf:71:1d:86:46:8b:97:5e:45:8b:
9c:e9:55:7d:41:2f:27:26:43:36:e2:5c:fd:3e:e2:
ae:db:38:0e:7c:f2:89:56:c1:5d:78:9e:20:4f:47:
db:93:d4:66:7e:d3:99:ce:e1:84:f4:68:0e:44:b8:
b4:4e:3c:a3:e9:26:ba:5d:91:e0:3b:4a:82:10:2a:
ae:88:ce:0e:12:6c:48:5c:a7:2a:12:24:17:8c:87:
7c:2b:a5:59:76:35:07:97:e3:ab:c8:c2:4f:ee:63:
d6:7d:f6:df:df:ba:ae:1a:b7:2e:1a:1b:30:ef:d3:
b2:74:2d:bf:55:f4:c8:43:40:7b:1f:21:cb:46:e2:
a3:87:ea:8c:03:c8:72:ef:8a:b3:7d:90:0f:9d:81:
56:73:cd:bd:16:81:70:88:a6:82:69:3d:a5:52:2d:
07:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:1D:B1:C2:1B:F8:0A:E1:A2:E0:63:F3:B5:B7:6D:5C:59:AC:51:D3
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3138302e3231312e38382e302f32312d3234203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.211.88.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:2b:07:8a:e9:a1:e8:6a:84:52:64:0d:97:a7:7f:d1:55:61:
c2:2f:d1:a2:74:c1:f0:94:63:45:5f:d5:a7:63:e7:31:52:4b:
cd:b5:78:e1:77:51:2d:fc:6c:68:75:3e:a1:b0:9b:d1:92:69:
4e:72:e6:63:d6:b3:8b:7e:8f:92:cb:d8:de:83:4b:30:9e:fb:
c4:40:b8:49:61:6a:f4:cc:a9:9d:ae:b2:ad:85:af:28:f8:3d:
57:02:62:97:db:12:d1:61:83:37:19:8c:96:87:d5:47:63:6f:
7c:d4:b5:50:8b:ca:2f:b7:d8:b4:a2:eb:ab:53:c4:bb:4e:4f:
9f:c6:57:c0:08:97:e0:52:c4:4d:99:42:86:66:76:fc:c0:41:
4c:b9:ba:08:71:f1:17:0b:9d:fc:1f:ac:88:53:c8:eb:95:e6:
11:90:c8:a5:0a:db:46:e2:ff:91:19:4c:cb:40:87:83:4e:de:
30:1b:c1:f1:db:cf:b1:4c:9b:10:86:77:30:b2:a8:99:6e:ad:
6c:e0:ac:fc:82:32:81:2f:0d:84:64:37:80:aa:96:97:52:86:
cd:95:80:f2:f7:51:97:27:56:d4:22:63:6e:a0:c5:24:7b:a0:
2e:0b:69:e1:79:dc:60:ad:f7:18:ba:23:09:f9:de:a4:a2:53:
2c:20:4b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:56:41 2025 by rpki-client