Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234322e302f32342d3234203d3e203435323938.roa
File: 3138322e31362e3234322e302f32342d3234203d3e203435323938.roa (raw, json)
Hash identifier: uhBFE26V8tIU7PQEDrMRdIxjx5J3XkgvP9oT8QwvDXE=
Subject key identifier: 5A:4C:7A:70:F3:98:BA:41:9F:0B:6E:99:11:C9:8D:B5:E1:3D:DD:14
Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE
Certificate serial: 01A70AC6027630F41B361CE393AF22E28AEE1817
Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234322e302f32342d3234203d3e203435323938.roa
Signing time: Tue 25 Feb 2025 04:00:49 +0000
ROA not before: Tue 25 Feb 2025 03:55:49 +0000
ROA not after: Tue 24 Feb 2026 04:00:49 +0000
asID: 45298
IP address blocks: 182.16.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:a7:0a:c6:02:76:30:f4:1b:36:1c:e3:93:af:22:e2:8a:ee:18:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE
Validity
Not Before: Feb 25 03:55:49 2025 GMT
Not After : Feb 24 04:00:49 2026 GMT
Subject: CN=5A4C7A70F398BA419F0B6E9911C98DB5E13DDD14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c0:98:21:f8:a9:e2:66:64:38:e9:d8:db:aa:
88:c5:af:ef:d0:d1:5c:5b:4c:b2:51:5a:a0:86:e4:
b6:57:6c:d7:00:e5:65:d6:2f:27:8b:48:96:25:00:
91:79:14:07:f7:e0:06:15:5f:9d:48:ad:c5:b2:eb:
56:1d:88:38:19:8e:9e:28:ae:a5:b9:11:45:24:ad:
cd:13:a9:46:61:fc:92:3c:22:6c:82:81:e2:19:e8:
7d:30:b1:27:38:0b:31:77:db:16:b2:9e:85:8c:af:
64:1f:3b:3f:3d:d5:e5:f1:60:9e:8a:c3:08:b2:cf:
2e:c7:5f:6a:b8:60:09:3a:3d:8e:b0:b6:fc:3b:16:
aa:13:91:d2:ee:60:0c:4a:b0:56:40:ae:31:ab:5e:
79:bc:3f:d2:bc:f1:e3:af:59:4b:15:74:bb:cf:61:
33:40:51:86:51:fe:3f:9e:98:f6:4a:73:ba:cd:b6:
7b:1c:9e:4a:64:e8:ae:25:ba:2a:cf:26:62:f5:85:
c6:69:52:a8:b6:a3:b2:30:a7:ac:7f:06:24:88:f8:
c6:9a:cb:03:45:45:33:4d:f2:0a:fe:46:0d:4a:c4:
c7:b4:48:88:8b:c4:c3:9f:3d:56:cc:3e:4a:fc:7a:
3c:09:84:83:80:35:4f:10:2d:84:80:43:c7:99:a8:
e4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:4C:7A:70:F3:98:BA:41:9F:0B:6E:99:11:C9:8D:B5:E1:3D:DD:14
X509v3 Authority Key Identifier:
keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234322e302f32342d3234203d3e203435323938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.16.242.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ac:f6:ae:4f:d7:d2:9b:2b:53:74:73:b6:af:98:eb:44:8e:
e5:b7:99:48:a7:4b:ec:6c:7c:f5:c1:d7:63:6b:70:94:93:27:
0c:73:e9:d5:f7:72:79:f6:ea:a4:55:e7:d5:0a:20:cd:1e:4f:
a8:11:8c:d3:7e:39:a5:06:14:ec:f9:9d:9a:5c:f4:ed:ab:84:
ab:8d:13:71:52:7e:05:d3:81:fa:07:d2:4a:d3:40:09:49:ea:
2b:f2:83:75:dd:7b:db:ab:07:c7:59:6e:f0:26:1e:56:f4:d5:
5d:dc:59:3c:ae:6f:d1:f4:ce:13:9c:7e:55:11:de:15:f8:cb:
d9:85:d9:20:3c:f7:02:8b:bb:9e:05:08:d0:b3:99:cc:81:63:
94:52:8d:75:88:d3:b3:31:50:ad:1e:f9:a7:0f:07:40:f5:87:
ef:7f:9f:eb:32:53:ce:1e:36:3b:f0:83:70:d1:ba:dc:4f:ef:
57:56:47:ab:6f:83:9c:77:5f:ed:c7:71:cc:fb:97:92:73:01:
68:1c:ab:4b:1e:96:0a:c3:57:f7:5e:1f:6d:31:90:91:54:a3:
89:1a:60:87:89:88:f0:03:8b:56:d3:ca:06:7d:02:20:c1:6e:
21:2b:b4:6f:56:37:cb:bc:01:22:c1:44:08:31:de:e8:db:ba:
99:d5:5d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:13:00 2025 by rpki-client