Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e332e302f32342d3234203d3e203436303439.roa
File: 3138322e3235352e332e302f32342d3234203d3e203436303439.roa (raw, json)
Hash identifier: 0D0mLk+Xng2R+/IUUM+8XhOsNRalYtt+3M4upuYxRoc=
Subject key identifier: 94:24:91:25:08:D8:9C:16:54:83:A6:AD:2E:0C:B8:A5:71:A0:2C:33
Certificate issuer: /CN=F490341241E1B1C7D170AB872CA39A68309B3F3B
Certificate serial: 563FFF163D93E690AAA9A88C24303788B1ADFE4E
Authority key identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e332e302f32342d3234203d3e203436303439.roa
Signing time: Thu 18 Jul 2024 08:00:41 +0000
ROA not before: Thu 18 Jul 2024 07:55:41 +0000
ROA not after: Thu 17 Jul 2025 08:00:41 +0000
asID: 46049
IP address blocks: 182.255.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:3f:ff:16:3d:93:e6:90:aa:a9:a8:8c:24:30:37:88:b1:ad:fe:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F490341241E1B1C7D170AB872CA39A68309B3F3B
Validity
Not Before: Jul 18 07:55:41 2024 GMT
Not After : Jul 17 08:00:41 2025 GMT
Subject: CN=9424912508D89C165483A6AD2E0CB8A571A02C33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:15:04:f1:14:3a:16:d2:18:cc:e9:b1:37:e9:
0b:b2:11:78:93:de:d5:9f:97:a0:e8:48:14:64:54:
71:c4:d4:36:18:ec:ef:52:da:54:81:b0:c5:76:d7:
cb:5e:c2:83:84:53:b6:2d:e8:36:ab:de:43:70:df:
4b:56:95:59:dd:31:0e:ec:cc:2c:5e:63:c0:c5:c3:
6c:75:e9:52:89:1c:37:5d:47:fb:88:39:4a:7a:e7:
74:a8:23:0f:ed:a0:2c:b3:2f:c7:09:67:f9:ef:bc:
50:65:9a:b4:cc:9e:ae:72:cd:db:87:4a:65:77:59:
53:63:8f:af:17:e7:b7:98:5a:fb:b0:5e:51:32:ab:
e7:c3:5d:c4:95:25:f6:f7:6f:9a:86:5d:e6:e2:e2:
86:e8:de:b5:40:06:d7:6f:90:84:10:12:be:40:3c:
2d:9f:b8:6a:64:4a:fd:5a:34:36:47:4c:1c:0c:46:
d0:55:49:40:b3:ec:04:a5:4b:35:07:ca:53:e0:a5:
fa:d8:22:5c:0c:b2:24:d1:d3:04:15:12:9d:e3:6f:
86:64:6e:b6:77:c2:83:f3:1e:10:4d:73:30:03:10:
1f:58:de:c9:92:9f:31:a7:03:4d:d2:33:aa:9f:2e:
de:7d:6e:f8:92:38:08:43:a5:20:df:99:98:1e:c9:
a5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:24:91:25:08:D8:9C:16:54:83:A6:AD:2E:0C:B8:A5:71:A0:2C:33
X509v3 Authority Key Identifier:
keyid:F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/3138322e3235352e332e302f32342d3234203d3e203436303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.255.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:45:bf:a6:df:9a:a0:69:f8:32:eb:64:58:15:a4:56:70:d6:
99:d6:ab:da:d8:2a:41:d2:84:a6:39:54:cc:d4:c3:73:fd:ea:
6b:e7:44:8c:0b:31:74:7a:a7:8e:99:22:06:63:75:56:25:2c:
df:e3:dc:83:5b:81:54:de:b8:f5:0c:3f:f5:27:d6:e8:d2:09:
5d:78:79:21:69:1b:5f:36:8f:19:ef:ca:ab:0d:0e:34:19:31:
44:8e:64:00:05:85:8b:20:fd:30:91:b9:c8:5c:7d:2a:4d:59:
ea:ea:d7:d8:bc:21:6e:27:bd:dc:63:b6:e6:cb:df:3b:5d:b9:
cc:7e:fb:49:49:ac:6a:9a:ec:bd:48:5a:f1:0c:0f:19:d8:92:
77:cf:31:9a:fe:82:ee:e7:5a:a3:73:ab:32:fe:9b:c6:cf:10:
bb:7a:6f:e6:60:50:27:a7:52:00:10:3e:db:3c:b2:86:54:e4:
50:23:0b:9d:53:5b:d5:79:cb:1f:1b:64:c8:ae:4f:af:7d:32:
9f:40:c1:42:46:51:da:41:3b:cc:63:d4:17:dd:e4:f5:ea:30:
ba:3f:de:07:ca:d8:58:a1:6f:df:d2:4f:97:12:c7:63:b4:c8:
6a:46:65:00:e3:16:68:f4:73:99:a7:07:02:50:7f:79:10:4d:
7c:ce:4c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:38:57 2025 by rpki-client