Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138342e302f32342d3234203d3e203436303330.roa
File: 3138322e34382e3138342e302f32342d3234203d3e203436303330.roa (raw, json)
Hash identifier: aOAMgvu/7AUsSGCKkRwvfE95K3iF0Yt6aw1p3uNHS4I=
Subject key identifier: C9:FD:64:EF:D7:F1:00:E3:8E:D2:E1:31:07:71:46:F1:C1:28:0F:46
Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556
Certificate serial: 0DD454674E6E5273CFF9F5D0138825D806D0E326
Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138342e302f32342d3234203d3e203436303330.roa
Signing time: Fri 18 Oct 2024 12:00:01 +0000
ROA not before: Fri 18 Oct 2024 11:55:01 +0000
ROA not after: Fri 17 Oct 2025 12:00:01 +0000
asID: 46030
IP address blocks: 182.48.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:d4:54:67:4e:6e:52:73:cf:f9:f5:d0:13:88:25:d8:06:d0:e3:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556
Validity
Not Before: Oct 18 11:55:01 2024 GMT
Not After : Oct 17 12:00:01 2025 GMT
Subject: CN=C9FD64EFD7F100E38ED2E131077146F1C1280F46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d1:24:ae:5e:d3:72:2a:90:7d:fc:e1:c8:24:
10:ab:34:08:8c:00:90:b9:40:d3:45:85:bd:06:22:
51:35:d8:1d:77:28:72:d2:e0:61:e5:a2:16:03:51:
a4:50:d3:c5:82:0c:7a:cd:c3:b6:49:89:1c:70:5c:
27:d0:48:10:14:21:c1:ba:d4:61:bd:bd:4d:d9:ab:
0e:cf:58:5a:c1:63:c0:5b:a2:40:1c:cf:1a:94:b9:
8b:36:9c:52:2c:ec:86:cf:4f:9e:c9:8a:3d:3e:d9:
09:4e:a9:d7:1b:d6:75:e1:9d:c0:74:51:eb:a9:f0:
a4:8b:fe:10:ed:95:bc:83:0e:6f:5c:b7:c3:c0:03:
d1:37:7a:3b:cf:fb:ef:7c:eb:66:1e:60:49:f7:f7:
b5:a4:90:f8:15:b4:30:d6:46:29:54:41:6c:ac:91:
0c:20:30:c0:1a:af:48:e6:f0:fa:b6:56:0b:7c:fa:
2d:92:62:5a:d5:c7:de:64:4c:33:e7:e9:71:b4:0f:
c6:57:1d:82:5b:43:c5:e1:54:4a:ae:1f:46:b2:3f:
2d:cd:18:64:78:d9:07:6e:05:73:58:a4:d9:fa:59:
ac:02:12:27:8a:42:e2:c2:45:23:48:48:5a:98:1b:
65:37:1f:38:e0:e8:d0:cd:e0:5b:de:68:52:aa:a6:
87:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FD:64:EF:D7:F1:00:E3:8E:D2:E1:31:07:71:46:F1:C1:28:0F:46
X509v3 Authority Key Identifier:
keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138342e302f32342d3234203d3e203436303330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.48.184.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:8f:ee:aa:bb:9e:54:27:bb:43:a1:5a:96:da:be:ae:82:b7:
d8:7d:07:11:d3:7d:4d:95:7d:c2:ae:a4:9a:5a:2e:1b:54:bd:
fb:87:18:74:ad:4a:a8:e8:b7:9e:04:16:a0:fc:3d:a7:69:9b:
bd:67:65:19:cd:9c:75:2d:0d:d1:72:21:e3:a4:50:9b:db:66:
b4:e0:b1:0d:58:89:cf:7f:51:d9:66:6b:ca:e0:a6:d5:46:57:
d1:a3:9d:47:76:09:af:2a:8f:98:0e:55:35:62:8e:0b:74:a2:
21:7e:da:67:b9:09:7c:96:8f:d6:82:c6:39:c4:b5:bc:4b:7d:
87:4d:2b:1e:2a:cf:9d:41:85:c9:88:98:4f:9f:5a:17:37:c8:
a5:e2:48:e4:8d:b6:7c:fc:99:a2:5c:b9:66:cc:c1:c9:b3:ec:
6f:30:55:76:fd:3f:2a:43:94:33:de:85:d7:af:a7:6d:12:ef:
ca:f4:14:e9:23:c1:4e:fd:ef:1e:6a:74:b1:e2:89:72:af:17:
d2:a2:5c:cc:5a:0f:9d:11:a2:7a:ee:6d:e7:d8:4f:37:74:01:
4a:f9:ad:a0:c2:63:c6:a8:fd:77:82:6c:3e:74:3e:48:45:a8:
6a:2a:3b:9b:84:7d:0c:f5:64:37:4b:e3:d6:c0:2f:4f:b2:13:
88:a5:b4:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:19:18 2025 by rpki-client