Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa
File: 3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa (raw, json)
Hash identifier: T6zBCDYCBei1sIwoPeFlZke8e/0x59ASpBVpgvqvRNg=
Subject key identifier: F4:02:E3:1D:07:9D:D2:4F:36:FD:00:D5:17:FE:90:77:A2:C9:36:21
Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Certificate serial: 3CFEF17F192BE82650B1AFC8F870D18BF4C29747
Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa
Signing time: Wed 24 Jul 2024 14:00:00 +0000
ROA not before: Wed 24 Jul 2024 13:55:00 +0000
ROA not after: Wed 23 Jul 2025 14:00:00 +0000
asID: 38505
IP address blocks: 203.153.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:fe:f1:7f:19:2b:e8:26:50:b1:af:c8:f8:70:d1:8b:f4:c2:97:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6
Validity
Not Before: Jul 24 13:55:00 2024 GMT
Not After : Jul 23 14:00:00 2025 GMT
Subject: CN=F402E31D079DD24F36FD00D517FE9077A2C93621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:47:89:f4:56:3c:11:1d:d8:e7:e6:0a:c1:f3:
39:c9:cb:47:e6:16:ca:b7:aa:82:5f:8e:ff:63:c9:
e0:f1:86:94:52:92:90:61:99:9a:e3:94:2c:4f:25:
87:70:7b:3d:4c:dd:28:7c:74:d5:f9:ce:61:4f:46:
6e:74:9e:e7:8a:77:7f:6a:62:db:d1:c3:ac:dd:b6:
a3:ba:3b:af:e7:01:8e:c3:80:d2:93:2c:18:a4:06:
af:9c:63:19:c3:10:34:94:1f:21:a2:17:a4:a1:5e:
c6:af:bd:5c:3a:8d:c0:63:13:23:9d:d6:62:0b:b6:
43:09:bd:ad:8c:57:3f:4b:fd:f1:7e:8d:62:dd:a8:
87:a5:e1:2f:63:aa:39:d9:34:f9:3c:d3:f4:ba:1d:
70:58:bc:1c:f0:21:9e:18:ea:ac:a9:1f:95:e1:10:
d7:a2:58:1b:ca:97:c9:f1:1f:6b:d0:bc:48:c3:a4:
39:3f:c8:3d:d7:09:4e:80:c2:a7:0a:24:ec:31:80:
4f:f9:48:78:fd:90:a4:5a:ae:4f:60:fb:ba:4e:54:
c1:81:c8:b0:22:89:76:7e:71:4c:5c:e8:c7:b7:76:
11:72:60:ee:cf:a6:51:aa:10:af:e4:42:ac:7a:0e:
2f:a7:29:9e:7e:ce:f9:66:56:b9:80:8d:b0:cc:9d:
dd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:02:E3:1D:07:9D:D2:4F:36:FD:00:D5:17:FE:90:77:A2:C9:36:21
X509v3 Authority Key Identifier:
keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/3230332e3135332e3132342e302f32332d3234203d3e203338353035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.124.0/23
Signature Algorithm: sha256WithRSAEncryption
05:e3:0c:42:86:4b:4f:27:4b:e6:e7:4f:09:f1:bb:0c:f3:94:
d8:e0:cc:d9:17:76:9a:58:89:96:35:56:ea:47:e3:5e:db:f3:
31:8e:86:a6:55:b9:4c:72:56:91:59:d0:3d:71:30:d0:85:34:
65:e3:5e:37:cb:13:03:ca:d4:9b:c1:bd:39:09:c2:56:03:5d:
87:80:c5:3a:a3:cf:1d:c5:f9:ca:18:bc:03:c7:45:87:2b:85:
81:98:61:7e:1f:4c:3f:b3:9b:58:25:3e:98:0c:62:5e:c0:c9:
3c:f7:15:54:de:26:ec:18:e8:66:ac:d0:d6:bb:4a:5c:eb:74:
db:ed:cd:bf:82:08:bb:e0:9f:d5:5e:a2:fa:08:7d:24:76:81:
87:20:6b:19:da:87:77:22:d2:61:90:f5:bc:9a:62:84:30:12:
96:09:53:d8:c3:e2:86:11:84:d8:18:70:96:6c:ca:2c:09:1f:
c0:6d:b5:10:73:fd:97:0a:1e:cd:4c:a3:45:5f:f3:48:67:26:
03:23:a7:36:d9:4c:89:24:ce:f5:41:c8:bc:48:d4:de:83:03:
43:2e:0e:b6:c9:0b:78:55:d5:05:53:02:f5:cc:95:35:3a:e3:
a1:7a:35:ed:b0:03:b7:3e:02:50:46:f5:f4:71:89:97:0c:98:
8a:60:59:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:49:23 2025 by rpki-client