Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234352e302f32342d3234203d3e203435323938.roa
File: 3138322e31362e3234352e302f32342d3234203d3e203435323938.roa (raw, json)
Hash identifier: 3Kl0ykpc+rRNPwjYjMx54Tqd+CRH2FVLtk851hbh3Rs=
Subject key identifier: 84:FF:F8:6A:5F:73:72:AB:4A:42:C4:CF:A0:F3:C0:B9:D3:E6:20:4C
Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE
Certificate serial: 7FAF8A0A1467D90FA994490AB6B8C4DE3C7AEA87
Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234352e302f32342d3234203d3e203435323938.roa
Signing time: Tue 25 Feb 2025 04:00:48 +0000
ROA not before: Tue 25 Feb 2025 03:55:48 +0000
ROA not after: Tue 24 Feb 2026 04:00:48 +0000
asID: 45298
IP address blocks: 182.16.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:af:8a:0a:14:67:d9:0f:a9:94:49:0a:b6:b8:c4:de:3c:7a:ea:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE
Validity
Not Before: Feb 25 03:55:48 2025 GMT
Not After : Feb 24 04:00:48 2026 GMT
Subject: CN=84FFF86A5F7372AB4A42C4CFA0F3C0B9D3E6204C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9b:6d:e5:e0:f2:c9:fc:b6:0a:1a:77:2e:c8:
b6:68:44:87:43:f2:4d:47:06:78:b4:eb:3e:2e:97:
70:c0:fa:53:37:7e:f1:b4:9e:63:8c:64:87:35:0b:
39:97:1f:42:57:fc:68:ec:09:17:73:d4:2f:66:20:
3b:19:94:6e:72:77:b7:2d:fc:8a:e9:09:30:f2:d6:
b0:63:46:e4:8a:c7:a6:b6:e3:54:45:0a:3e:3e:61:
04:84:74:e9:9d:f5:1e:3c:47:60:91:30:5e:60:ac:
cf:b9:e2:b4:ac:88:16:b5:19:87:39:35:20:cf:34:
c8:ef:06:b4:12:b8:84:7d:aa:0d:78:fb:6b:a4:05:
64:2a:7f:99:c3:df:68:76:1d:58:e6:58:43:71:95:
70:e2:c3:e6:d1:3f:0b:81:d4:2f:8f:b3:3e:d9:8f:
b4:96:7e:02:3b:53:f7:02:00:97:3a:b9:de:db:8b:
e3:2b:49:08:31:77:d9:04:18:ac:54:b0:9a:ed:d9:
34:55:06:df:69:bc:9b:57:4f:15:49:eb:ba:60:7f:
96:df:1c:0c:f3:39:a1:6c:8c:5a:8e:41:7f:78:9a:
07:17:6f:54:45:f2:73:cb:fe:d1:0a:3a:f7:69:13:
a2:e5:f5:c8:c4:8e:35:c0:3f:fd:4c:e1:86:d5:d2:
c9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FF:F8:6A:5F:73:72:AB:4A:42:C4:CF:A0:F3:C0:B9:D3:E6:20:4C
X509v3 Authority Key Identifier:
keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234352e302f32342d3234203d3e203435323938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.16.245.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:31:5a:eb:9d:1f:07:b9:5c:3c:15:10:00:e9:ec:41:6e:db:
96:83:4b:67:74:0c:45:06:56:13:28:da:67:79:02:83:45:79:
16:d1:0e:1c:9d:82:b6:0e:88:fc:55:3c:1f:6e:a5:cf:b1:2e:
d4:26:5e:8e:6c:5c:37:e8:70:73:42:25:12:51:57:74:33:33:
f6:42:7e:e3:e2:eb:60:53:7b:c1:22:e6:d0:4a:72:de:fa:e5:
60:82:b1:3a:7c:19:f4:19:15:57:8d:31:1f:19:dd:1c:b1:e2:
68:ab:46:81:2c:ca:df:7f:74:7d:a5:2e:fa:aa:67:08:63:1a:
db:1b:6f:ae:c0:17:cf:76:df:90:ad:36:1b:b8:a2:1f:86:8d:
e3:ef:96:2a:7b:c5:b6:09:3e:20:f8:79:c9:d9:bb:b2:88:a8:
57:96:3e:75:3b:17:07:97:be:26:90:60:cf:4a:81:89:88:63:
53:80:b7:47:56:26:71:2d:ba:23:7c:3c:45:06:f3:ed:d9:7a:
ef:2a:cd:fe:b1:2c:0f:1e:5b:af:1c:ff:70:5f:9f:94:75:30:
61:20:f2:bd:bf:d8:4a:32:e5:f5:51:0b:0c:c2:dd:5e:a1:c8:
e6:fd:e7:04:e3:cd:d0:c4:4f:71:bd:f5:ca:20:bb:33:f2:98:
e7:78:ea:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:15:37 2025 by rpki-client