Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137352e302f32342d3234203d3e203234323036.roa
File: 3131302e34342e3137352e302f32342d3234203d3e203234323036.roa (raw, json)
Hash identifier: cH7v8G2r60zH8sGcnj5VLe2SvPpJeovz57VEG8qukmM=
Subject key identifier: F7:8F:08:DF:C3:BE:FD:9C:21:AA:2C:A7:72:F9:B6:F2:D5:78:24:B3
Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Certificate serial: 176B21D482513B7929F3EB4DA00FB49DF7B12425
Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137352e302f32342d3234203d3e203234323036.roa
Signing time: Fri 23 Aug 2024 09:23:53 +0000
ROA not before: Fri 23 Aug 2024 09:18:53 +0000
ROA not after: Fri 22 Aug 2025 09:23:53 +0000
asID: 24206
IP address blocks: 110.44.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:6b:21:d4:82:51:3b:79:29:f3:eb:4d:a0:0f:b4:9d:f7:b1:24:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Validity
Not Before: Aug 23 09:18:53 2024 GMT
Not After : Aug 22 09:23:53 2025 GMT
Subject: CN=F78F08DFC3BEFD9C21AA2CA772F9B6F2D57824B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9f:3c:f9:80:9a:08:f8:c5:bd:45:f2:0e:cc:
d2:21:ca:81:ec:75:3c:02:bf:ee:52:ac:f7:b6:2f:
f1:f7:ce:09:03:42:b3:8b:f4:ee:38:54:1a:f3:8d:
db:63:2c:9d:eb:de:0f:2c:4b:5e:27:77:43:5c:19:
bc:47:b8:c2:5e:29:b7:00:ee:3b:c6:f6:19:c9:78:
6a:2e:2f:d4:c2:fe:ea:6a:37:39:77:0e:f7:e4:e0:
3c:7d:c3:49:70:c4:30:ca:67:a4:b2:5d:4b:53:1d:
e8:8b:06:d5:99:50:d3:f6:6d:a3:e9:af:2f:a2:34:
f4:05:5d:56:ef:bf:f6:61:f6:0f:87:32:2e:2d:3e:
66:43:94:76:91:5c:43:24:88:b1:6e:bc:62:dd:5f:
24:65:6e:80:54:4e:9d:cd:c8:e0:58:b3:5c:0f:ee:
aa:3c:71:da:46:a7:06:8d:77:f9:13:f6:93:39:e9:
0e:99:3c:a2:db:e3:b1:87:d4:a2:bf:fc:6c:8b:93:
26:a2:77:01:f2:0c:c9:1c:a5:b2:22:ba:1a:e9:08:
66:b0:04:15:98:ff:a7:7f:bf:5d:30:73:23:86:12:
16:a0:d7:30:02:0f:6c:6a:ac:cc:20:18:1c:a2:4b:
03:43:bf:5c:b2:44:4b:75:50:57:9b:9c:b4:7d:d0:
9f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:8F:08:DF:C3:BE:FD:9C:21:AA:2C:A7:72:F9:B6:F2:D5:78:24:B3
X509v3 Authority Key Identifier:
keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3131302e34342e3137352e302f32342d3234203d3e203234323036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
110.44.175.0/24
Signature Algorithm: sha256WithRSAEncryption
07:29:dd:54:2a:bd:e5:65:74:52:0c:59:b8:2c:be:40:cf:c8:
de:5d:81:54:be:ee:93:e4:07:56:65:63:9d:4a:30:fe:9a:4a:
81:1b:50:48:08:b9:ef:f2:5a:ef:de:4a:7b:eb:c6:0c:84:b1:
29:c9:25:87:61:60:2c:e2:6b:ae:c4:30:6a:2a:02:4c:94:16:
09:94:9b:7c:ea:fb:b9:85:2e:1a:38:c3:2a:c4:cd:80:1e:93:
38:fe:9d:7c:f9:cc:ac:ec:11:27:ca:77:55:89:99:d4:d2:e6:
2c:67:d3:e5:2d:2a:c7:7d:38:28:d8:b8:4b:d1:d3:32:7f:53:
63:97:24:59:98:c8:bb:8e:96:7d:97:ab:3a:c8:f5:32:91:bd:
81:b2:9f:fa:ce:81:00:27:62:bb:94:6a:2a:18:f2:27:cd:76:
36:b5:ca:74:36:13:8c:36:4d:7d:44:c1:50:e4:8f:49:b2:82:
05:7a:5c:92:27:83:56:08:dc:2d:95:df:63:a5:95:a1:4a:9c:
11:ed:02:00:cf:13:38:fb:62:88:e4:0d:7e:bd:29:40:ed:87:
ad:92:d9:c1:af:49:e0:dd:e7:a6:86:af:1d:62:27:85:15:2a:
3b:58:67:04:3b:61:4b:1a:7f:8c:22:bc:8a:d9:e1:35:bb:1b:
90:f9:a0:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:47 2025 by rpki-client