Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e302e302f32342d3234203d3e203436303439.roa
File: 3138322e3235352e302e302f32342d3234203d3e203436303439.roa (raw, json)
Hash identifier: ctLBkJdn5QnPjKLcq9nVyPuWBDgr1w513Qyi8PIDRPM=
Subject key identifier: 1D:56:F2:77:9E:ED:8D:A2:6A:DB:23:66:5E:FB:22:50:39:3C:88:EB
Certificate issuer: /CN=F490341241E1B1C7D170AB872CA39A68309B3F3B
Certificate serial: 3102EF0425647547BD943D58F9F5F7E15F5D61DE
Authority key identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e302e302f32342d3234203d3e203436303439.roa
Signing time: Thu 18 Jul 2024 07:00:01 +0000
ROA not before: Thu 18 Jul 2024 06:55:01 +0000
ROA not after: Thu 17 Jul 2025 07:00:01 +0000
asID: 46049
IP address blocks: 182.255.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:02:ef:04:25:64:75:47:bd:94:3d:58:f9:f5:f7:e1:5f:5d:61:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F490341241E1B1C7D170AB872CA39A68309B3F3B
Validity
Not Before: Jul 18 06:55:01 2024 GMT
Not After : Jul 17 07:00:01 2025 GMT
Subject: CN=1D56F2779EED8DA26ADB23665EFB2250393C88EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d3:80:3e:10:f7:9a:9d:85:ee:49:c4:dd:b5:
89:1a:d3:62:b0:81:01:31:0a:cb:3e:a7:e4:29:97:
80:31:17:d3:42:e9:cb:c3:6c:fd:45:91:e6:8d:72:
36:56:2e:4f:f5:02:52:2c:3c:ad:38:03:70:c6:fe:
10:1f:6a:d7:83:5c:4b:d9:a2:1c:63:63:29:17:3b:
bb:0e:88:f6:93:68:2e:00:4e:c9:2a:e4:8c:29:ef:
0f:41:6e:b4:53:c0:50:ae:06:42:5d:3c:25:80:b3:
f9:10:ff:78:df:fe:82:19:ed:41:90:c6:29:11:07:
50:73:c0:c5:a9:16:bd:cd:ee:96:99:ee:4f:de:d9:
d3:e6:b4:dc:08:a6:2e:29:ee:72:79:c3:fa:59:68:
a3:b5:c3:58:76:b2:e4:d7:31:d6:79:ad:57:c5:07:
5a:0f:e5:e3:98:51:14:ee:b5:e7:eb:88:e0:6c:67:
63:b7:9c:a6:c8:c6:6d:e3:f2:6c:43:c4:0f:a7:a6:
8c:00:b3:8d:dd:3b:b7:86:e4:43:6b:b5:e0:12:67:
17:49:a3:58:d5:c1:c6:06:d1:92:de:d6:e9:88:dd:
97:48:2a:c6:9c:17:e2:34:aa:dc:d7:2f:bb:75:3b:
13:ac:04:f6:54:ee:24:61:80:4e:33:1b:d8:fc:1b:
3e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:56:F2:77:9E:ED:8D:A2:6A:DB:23:66:5E:FB:22:50:39:3C:88:EB
X509v3 Authority Key Identifier:
keyid:F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e302e302f32342d3234203d3e203436303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.255.0.0/24
Signature Algorithm: sha256WithRSAEncryption
41:8f:99:4f:f2:82:72:c3:bd:8e:fa:9a:8c:a0:f5:ba:1a:34:
7a:62:8e:df:e4:63:1a:c8:d3:77:c8:e9:f6:e2:73:f5:07:83:
32:7c:d2:ac:b3:2a:22:2f:b6:fb:8d:85:91:7d:b2:9c:69:0e:
e4:39:1b:bf:9b:71:5a:67:64:bd:c3:27:c3:51:64:51:7e:66:
ac:ec:ff:2c:5d:c7:27:80:82:d5:82:bb:f9:18:b7:4d:1b:2a:
f3:49:27:7e:ee:3a:ca:f7:f6:00:29:e3:b8:07:89:58:a9:87:
6b:ab:87:97:80:78:cd:15:75:a7:5e:e2:9f:b6:e4:70:08:40:
97:b2:23:86:45:0c:79:1d:2c:e2:83:d5:d5:89:5f:bf:d5:a9:
00:66:4c:4b:07:6c:db:f9:75:2d:95:18:d1:3e:48:88:cb:49:
70:68:36:91:67:95:51:e9:d3:51:ab:93:1f:3c:e7:df:38:61:
25:24:fd:a5:1c:22:eb:9c:1f:38:1c:c7:3e:1f:d2:32:a8:2a:
08:24:ef:79:77:94:3b:90:3c:e4:72:a3:99:6f:3b:67:06:2f:
5b:28:0c:d2:cf:80:a0:f9:86:f7:61:58:d4:64:ab:5a:77:7f:
0f:ae:b8:f3:bb:f9:6a:73:bd:38:93:dd:8e:e8:56:df:38:77:
64:8c:f3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:44:19 2025 by rpki-client