Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/3231302e37392e3133382e302f32332d3234203d3e20313532303535.roa
File: 3231302e37392e3133382e302f32332d3234203d3e20313532303535.roa (raw, json)
Hash identifier: j+CyFIuraCaP7XdAAvelfvPzeQbJ7B/dxtW4CXtgmjo=
Subject key identifier: 68:5E:C5:27:FE:03:DB:49:08:9D:08:D7:13:65:53:49:5F:45:54:CA
Certificate issuer: /CN=CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C
Certificate serial: 542567D84314D527DE0BA75A6A92FDEA9B9DB2FF
Authority key identifier: CC:0A:27:1E:0A:AF:32:4F:93:71:7C:5B:CF:43:C7:AE:42:B3:0B:5C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/3231302e37392e3133382e302f32332d3234203d3e20313532303535.roa
Signing time: Wed 13 Nov 2024 08:00:01 +0000
ROA not before: Wed 13 Nov 2024 07:55:01 +0000
ROA not after: Wed 12 Nov 2025 08:00:01 +0000
asID: 152055
IP address blocks: 210.79.138.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:25:67:d8:43:14:d5:27:de:0b:a7:5a:6a:92:fd:ea:9b:9d:b2:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C
Validity
Not Before: Nov 13 07:55:01 2024 GMT
Not After : Nov 12 08:00:01 2025 GMT
Subject: CN=685EC527FE03DB49089D08D7136553495F4554CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7c:b0:4f:dc:22:4a:ae:10:72:80:cc:ee:3d:
5e:b7:2f:35:fa:5b:1d:e4:ff:9d:69:11:f4:29:eb:
80:d9:ca:58:ed:fc:ef:db:7a:42:28:87:24:c0:72:
ce:b6:cc:8d:8d:e9:c5:3e:bb:bf:87:95:06:9a:31:
65:d9:2c:04:6c:21:47:e7:85:77:65:7e:68:76:58:
13:d7:0e:89:34:27:c8:4a:69:e4:d1:7a:c6:45:67:
b2:d4:e5:18:ff:80:16:b0:01:dc:fa:22:1d:fb:2c:
71:a1:d9:8b:e5:79:43:4b:c9:e4:45:99:b1:c2:6c:
e4:c8:b5:0b:92:d4:f3:f9:58:0c:39:d2:c3:e1:20:
ab:62:52:6e:1c:3b:66:d8:f3:62:2f:1a:89:08:cd:
dd:34:93:84:f8:b2:ca:da:f8:b5:f0:e6:90:63:26:
15:83:a8:0d:47:dd:ae:b4:3d:84:70:77:9b:7c:16:
de:de:4f:d0:cd:56:45:f1:22:19:14:2d:2e:43:66:
79:9b:64:42:da:ef:62:1d:f9:90:51:33:bd:e4:fc:
3e:1b:63:5b:74:6b:1c:8c:06:28:a1:8b:97:b2:06:
75:97:ec:1d:e8:87:20:3c:a4:80:5e:7d:7e:8e:f0:
71:9c:e7:1c:86:77:32:0b:65:9a:4c:68:93:b0:7c:
d5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5E:C5:27:FE:03:DB:49:08:9D:08:D7:13:65:53:49:5F:45:54:CA
X509v3 Authority Key Identifier:
keyid:CC:0A:27:1E:0A:AF:32:4F:93:71:7C:5B:CF:43:C7:AE:42:B3:0B:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0A271E0AAF324F93717C5BCF43C7AE42B30B5C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e5328d8-867e-4232-b5e1-65ab0bc04896/0/3231302e37392e3133382e302f32332d3234203d3e20313532303535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.79.138.0/23
Signature Algorithm: sha256WithRSAEncryption
07:11:b9:da:e6:2c:46:73:1e:6a:da:0b:4e:f0:b1:61:22:76:
40:77:7f:6c:98:6b:86:d9:e8:51:03:1d:ba:8f:10:d8:b6:89:
29:0b:27:ff:3b:ef:f3:df:65:4e:1e:73:ad:d0:be:fd:ff:6f:
c1:39:61:ca:07:27:48:7f:16:21:35:3a:ec:6a:9c:b4:c6:1b:
b2:06:c3:5e:72:61:48:ba:33:22:00:9e:09:b7:b8:2e:31:10:
0b:5a:50:27:1f:7a:75:0b:c2:03:a7:ad:df:9c:35:0c:8f:05:
e6:75:c7:6a:62:a6:a7:6e:09:4f:80:70:7c:4a:be:c9:ba:85:
70:fc:ad:54:c3:2b:f7:5c:00:f5:67:e6:32:2b:98:06:43:c0:
da:14:f3:7f:79:05:ab:93:9f:0a:4c:1e:f0:bd:64:90:59:e5:
da:25:b9:21:d2:5b:69:3e:d6:84:4c:92:d3:cf:15:96:c9:ac:
44:d3:c4:57:bc:e8:fa:cc:6e:21:81:71:1a:23:e9:a8:ed:65:
15:b8:d4:a9:ab:0b:e8:18:29:fe:d9:ac:78:f9:36:9e:c1:e9:
99:e7:e6:d6:2e:7b:89:39:c9:fe:86:58:88:83:8a:33:7d:19:
b5:3f:c4:da:0b:a6:12:e8:93:64:af:d3:eb:36:5f:7e:c5:71:
31:3c:03:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:56:52 2025 by rpki-client