Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa
File: 3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa (raw, json)
Hash identifier: KnuT4VJ8iLWdqrErOu2FeJ8mmwI6wwnIx48WuNVZS4g=
Subject key identifier: C2:42:C4:8E:8D:73:07:60:21:E5:CD:B2:83:20:43:2D:9F:E2:37:F4
Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Certificate serial: 0152C41D2BB8E3DBA1DE3D6152FE21B68AECFBDA
Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa
Signing time: Wed 02 Oct 2024 02:51:30 +0000
ROA not before: Wed 02 Oct 2024 02:46:30 +0000
ROA not after: Wed 01 Oct 2025 02:51:30 +0000
asID: 138843
IP address blocks: 203.84.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:52:c4:1d:2b:b8:e3:db:a1:de:3d:61:52:fe:21:b6:8a:ec:fb:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9
Validity
Not Before: Oct 2 02:46:30 2024 GMT
Not After : Oct 1 02:51:30 2025 GMT
Subject: CN=C242C48E8D73076021E5CDB28320432D9FE237F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bc:a8:c0:ae:6e:5d:c6:58:bf:c8:59:cf:13:
9c:67:4c:ff:e4:09:fc:06:f2:c2:6b:2b:a5:7c:9a:
06:2c:e4:02:1d:72:77:02:90:fd:1e:17:21:7b:a9:
38:bd:58:7b:67:c7:87:ff:11:b6:83:48:48:7b:c8:
a3:9b:3f:88:34:0f:64:66:7e:22:7f:b2:35:c8:8c:
63:9e:e9:c9:99:2b:55:4c:9d:18:b2:41:91:63:bc:
88:5d:93:84:c0:ec:5a:6d:17:b8:93:e3:5b:22:a8:
d3:a7:4a:67:c8:e5:f2:33:eb:be:34:d0:54:28:a9:
bc:b0:d6:76:70:9a:ce:d6:ad:d4:3d:e6:46:3f:ec:
9e:04:d8:93:0d:db:2d:c4:05:ad:77:b9:e6:9c:89:
a4:3b:60:dd:f5:5c:57:f0:30:3c:51:d8:18:95:31:
4d:c8:5b:04:ad:49:76:bd:4f:d0:3e:fa:9f:8c:09:
3e:62:8a:24:07:ab:cb:6c:06:5e:d9:eb:f4:73:0e:
7b:05:90:ed:15:9f:8a:24:ce:98:af:27:26:14:0f:
bf:9e:41:63:88:0f:61:85:cf:06:a0:9c:68:07:7f:
f7:63:e0:22:60:59:f7:cd:e8:f6:53:76:8a:9b:51:
b7:cc:c7:ef:9d:84:9c:d3:59:c9:f2:cb:4d:8a:b2:
7b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:42:C4:8E:8D:73:07:60:21:E5:CD:B2:83:20:43:2D:9F:E2:37:F4
X509v3 Authority Key Identifier:
keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/3230332e38342e3134322e302f32342d3234203d3e20313338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.84.142.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:f7:a1:00:cb:df:84:9d:32:3d:9e:96:c2:5d:67:e7:d6:6e:
bd:e1:af:7a:49:4e:0c:d9:50:b5:a7:3d:6a:70:87:c9:94:16:
ef:80:82:d2:c8:f8:a9:ac:0b:79:5d:8e:b0:8b:ca:fe:7b:d8:
7b:d7:65:81:b3:0e:64:fd:dc:e5:c4:ca:df:12:8d:86:df:bd:
a1:af:44:bf:de:84:44:92:dd:b6:8a:2f:78:22:32:00:ab:b4:
6d:43:aa:b4:ab:94:ba:ec:fe:f7:23:98:a6:d3:f2:bc:51:23:
0e:46:bd:3a:ee:99:bf:2a:ce:44:42:8a:67:f7:3e:11:3f:a2:
44:72:79:ec:a1:e4:79:89:02:17:c3:6d:d1:cb:75:cd:1f:cb:
a0:9c:0c:3f:a4:21:d1:b9:7c:b1:61:ce:8f:7f:45:be:97:11:
29:6b:86:d6:03:d2:b2:a5:10:80:a5:ce:fd:e8:e5:99:e0:58:
29:4f:ad:7c:f8:72:cf:64:29:e8:7e:c0:2d:02:df:0e:ef:75:
52:7b:97:db:48:a5:b1:e7:84:0a:8b:3b:2d:6b:78:13:27:f4:
60:b0:dc:f3:6d:11:32:61:88:5c:da:fc:d6:a7:79:d8:e8:53:
17:90:e7:4f:49:ff:80:f8:4d:2d:c8:1d:6d:8b:a8:01:ff:da:
b8:b6:09:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:33:06 2025 by rpki-client