Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa
File: 3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa (raw, json)
Hash identifier: /N5+2aMU3EMAmEX99W6RjuRb23GuWa2brckaj7T7NN4=
Subject key identifier: 67:E4:58:65:2B:42:32:A0:90:D8:BB:47:A3:4C:22:D3:46:56:45:5E
Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B
Certificate serial: 12524F39DAAF78EBB2B718BBE7F82B2A3616EC82
Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa
Signing time: Mon 11 Nov 2024 08:00:01 +0000
ROA not before: Mon 11 Nov 2024 07:55:01 +0000
ROA not after: Mon 10 Nov 2025 08:00:01 +0000
asID: 38750
IP address blocks: 202.179.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:52:4f:39:da:af:78:eb:b2:b7:18:bb:e7:f8:2b:2a:36:16:ec:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B
Validity
Not Before: Nov 11 07:55:01 2024 GMT
Not After : Nov 10 08:00:01 2025 GMT
Subject: CN=67E458652B4232A090D8BB47A34C22D34656455E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c8:81:60:1c:90:e2:95:53:0e:ed:e1:71:58:
44:53:bf:9f:6c:32:bf:3f:5f:d8:4d:6c:96:c5:e9:
a7:21:e8:55:78:e0:e0:25:3b:ba:f6:cd:bd:d8:06:
33:2c:c4:7e:a7:79:b7:a6:98:25:82:0e:d2:58:1c:
0c:5b:f3:31:56:e8:50:4b:70:8d:0c:c1:f0:33:a4:
7c:c6:12:6c:3f:47:b8:29:72:65:08:3d:25:94:bc:
e7:d2:bb:11:e0:31:0a:8a:61:ec:a9:22:74:e9:d9:
68:9b:b3:8d:2e:92:46:28:cc:8b:cb:a3:0c:1d:84:
74:13:df:c6:cb:96:e7:b0:94:97:59:7a:b8:7c:ca:
6d:5a:a0:50:f1:53:56:3e:66:aa:47:b8:d6:fc:8b:
ed:a8:85:47:f7:af:24:0e:40:d7:10:65:94:0c:ee:
40:5a:14:42:0d:36:70:be:a6:d7:2b:be:60:65:c0:
39:74:da:24:c3:a5:fe:2f:34:18:cc:a0:96:84:93:
53:a4:16:ce:f6:65:22:9d:ce:07:f0:16:15:98:52:
b7:67:6f:06:a6:8e:f1:93:ce:33:96:50:2e:90:28:
5c:62:8d:3c:cd:d1:c9:eb:f9:a2:62:22:9c:b4:23:
b1:6b:f2:f2:36:39:9b:d9:ed:0c:2f:7f:b5:b4:b2:
22:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E4:58:65:2B:42:32:A0:90:D8:BB:47:A3:4C:22:D3:46:56:45:5E
X509v3 Authority Key Identifier:
keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.179.189.0/24
Signature Algorithm: sha256WithRSAEncryption
26:ea:c7:fc:0a:72:c3:f3:87:80:5a:f9:ae:dd:e6:35:27:56:
c3:49:e7:02:6d:8e:3c:24:2c:95:ee:f0:0f:90:17:2e:4e:71:
13:48:46:63:d7:59:33:7d:50:25:ee:fd:a0:64:99:3a:97:de:
73:95:a3:02:85:54:ba:d1:07:47:6c:ae:80:ea:87:44:5f:5a:
1a:15:6e:ff:e8:92:64:3c:af:71:8d:ff:3b:28:ee:1b:7a:8b:
a2:e3:ba:0b:1d:08:20:92:04:ad:48:85:0f:09:1c:17:aa:8f:
a9:65:41:33:7b:af:cb:2c:c7:96:ed:24:fd:f9:1a:64:3f:ed:
1e:90:21:d6:85:48:f0:cb:73:03:3e:8e:b7:24:7d:bc:f9:01:
02:4c:43:7c:09:89:6a:c4:96:a3:df:53:0e:d8:4b:d1:7b:2c:
27:3f:bc:a6:d9:ee:e1:f7:9a:af:53:07:54:cb:7c:55:f8:76:
e1:09:64:05:4e:a9:a2:f2:de:8c:fc:c3:00:1d:a0:c2:21:3d:
c2:db:9e:5a:de:21:a2:c0:8c:bc:ae:17:ce:6d:08:e2:9b:17:
0b:3a:2c:b9:38:fc:9b:23:70:67:7d:89:20:8e:c7:38:c4:1b:
56:07:92:cd:87:25:b7:c9:d4:cb:13:d2:f1:94:8d:e5:65:62:
92:e9:4b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:26:49 2025 by rpki-client