Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234392e302f32342d3234203d3e203435323938.roa
File: 3138322e31362e3234392e302f32342d3234203d3e203435323938.roa (raw, json)
Hash identifier: zyocrG2hpeP9qlrJD0AmGWe005OQobfbPO7J468S0C0=
Subject key identifier: BE:D3:02:04:74:9D:41:5E:46:08:BE:0D:69:B5:1A:30:BA:04:D2:91
Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE
Certificate serial: 3FB9C4A9BCFADF0FE27B750426DC8F0CC57334BD
Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234392e302f32342d3234203d3e203435323938.roa
Signing time: Wed 26 Feb 2025 01:00:02 +0000
ROA not before: Wed 26 Feb 2025 00:55:02 +0000
ROA not after: Wed 25 Feb 2026 01:00:02 +0000
asID: 45298
IP address blocks: 182.16.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:b9:c4:a9:bc:fa:df:0f:e2:7b:75:04:26:dc:8f:0c:c5:73:34:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE
Validity
Not Before: Feb 26 00:55:02 2025 GMT
Not After : Feb 25 01:00:02 2026 GMT
Subject: CN=BED30204749D415E4608BE0D69B51A30BA04D291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3e:d2:10:88:6d:05:63:99:3d:c5:f7:69:27:
bb:c7:71:c7:b4:ab:8f:a8:49:62:59:62:3e:f7:00:
c0:61:d4:65:73:0f:75:41:4f:2c:0d:88:3e:8f:cc:
e1:2b:1e:03:f8:e6:a7:69:de:bd:70:5e:76:98:39:
1f:e6:9c:79:0b:e6:a2:1a:08:d7:e4:73:06:99:88:
20:3a:a1:0e:dc:02:ff:b4:90:79:37:18:13:12:58:
ad:59:97:ad:7a:ef:b4:ac:72:9b:13:ad:f8:0a:97:
37:6a:fc:13:9e:31:cc:48:01:70:a7:ec:e2:47:a2:
16:8d:0e:4b:42:0c:1b:96:7e:dc:2e:6b:9a:9a:c6:
b5:77:9e:73:35:48:34:b8:21:96:4e:80:de:67:5e:
d0:c1:f5:0c:98:21:f9:bf:33:f3:d1:48:13:66:19:
ae:e8:a9:6c:1e:40:04:20:2f:d3:23:31:99:9a:a2:
40:cf:08:34:d2:37:5a:94:f8:1c:e1:4a:64:0e:d6:
38:70:3a:24:ee:84:b0:f0:1c:5e:7c:9a:e7:f9:23:
d3:a8:ed:ed:9e:b7:45:c9:55:b8:08:03:2c:ca:84:
a1:33:ed:6a:4c:b0:d6:c0:86:b0:99:de:ea:23:46:
50:08:e5:d3:8d:2f:c3:0c:20:66:4c:b8:9c:b8:96:
83:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:D3:02:04:74:9D:41:5E:46:08:BE:0D:69:B5:1A:30:BA:04:D2:91
X509v3 Authority Key Identifier:
keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3138322e31362e3234392e302f32342d3234203d3e203435323938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.16.249.0/24
Signature Algorithm: sha256WithRSAEncryption
05:e8:ec:b6:d2:05:78:cf:08:8c:a3:16:06:15:a7:2a:b8:fe:
65:09:78:e4:1e:61:24:d0:e1:e2:94:89:41:3d:66:0c:9c:ed:
83:30:a9:79:15:fe:5f:ae:58:38:77:10:7e:0c:2b:e4:e6:5d:
1a:f5:95:36:f0:d9:a3:66:02:6b:9f:42:d4:57:e2:dc:da:bc:
3e:c7:fc:b0:34:e9:e1:57:6e:f2:64:4a:aa:eb:e8:b7:19:0e:
44:95:01:5f:32:66:27:d2:63:65:e3:42:16:72:b5:b9:d4:12:
5f:11:a9:a9:a0:12:bd:4b:a5:df:6a:31:07:4e:ad:48:64:81:
76:17:16:84:78:81:6c:8d:7c:d0:cf:ff:cb:6e:e3:88:62:b3:
35:05:2d:64:02:2f:d0:c1:69:8f:7c:ce:15:b8:01:cd:5c:21:
a3:4e:9f:67:cd:fe:8f:2f:c7:b9:bf:79:28:63:c3:2f:59:6b:
f5:15:07:90:20:39:a0:6d:a0:1b:6d:96:e3:c1:e1:5f:cb:72:
bf:9d:4e:07:34:21:61:ff:d0:40:45:1a:83:97:81:b1:05:8d:
05:5c:05:c0:9d:a1:4a:d3:0e:3d:7e:56:de:2e:57:01:b8:a5:
47:8c:fa:b2:60:21:18:2a:e3:de:4e:79:2d:3e:72:eb:1c:f4:
2a:cb:4a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:15:33 2025 by rpki-client