Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38352e302f32342d3234203d3e203535363532.roa
File: 32372e3132312e38352e302f32342d3234203d3e203535363532.roa (raw, json)
Hash identifier: Q86wnmZUd6Eh9prZNbHvOVX1KEczkIcKucRRsZzGyfQ=
Subject key identifier: F3:DC:5F:53:F7:2C:0D:A8:07:95:7C:25:2B:97:27:D0:63:0D:F8:0F
Certificate issuer: /CN=930A4ED2B85AA9FE77ED90FA85044A9C80B38A46
Certificate serial: 312E2D1F0D2495C0220F807EBC394321086EE416
Authority key identifier: 93:0A:4E:D2:B8:5A:A9:FE:77:ED:90:FA:85:04:4A:9C:80:B3:8A:46
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38352e302f32342d3234203d3e203535363532.roa
Signing time: Sat 31 Aug 2024 04:00:01 +0000
ROA not before: Sat 31 Aug 2024 03:55:01 +0000
ROA not after: Sat 30 Aug 2025 04:00:01 +0000
asID: 55652
IP address blocks: 27.121.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:2e:2d:1f:0d:24:95:c0:22:0f:80:7e:bc:39:43:21:08:6e:e4:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=930A4ED2B85AA9FE77ED90FA85044A9C80B38A46
Validity
Not Before: Aug 31 03:55:01 2024 GMT
Not After : Aug 30 04:00:01 2025 GMT
Subject: CN=F3DC5F53F72C0DA807957C252B9727D0630DF80F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:92:c0:c4:8d:08:b1:53:62:bf:3f:3b:bc:60:
eb:28:53:eb:d2:ff:21:f9:7c:c5:14:34:ba:98:90:
7e:eb:a2:fd:0a:02:21:47:50:69:ff:8c:44:e5:34:
1e:b8:38:6a:73:e0:79:94:66:df:f0:5b:c1:80:03:
34:0b:df:bd:6f:5a:77:6a:9d:00:f6:21:85:4b:f2:
3f:37:1c:b6:48:50:de:82:bf:f7:42:a3:4a:db:b0:
0b:eb:81:73:20:08:fb:04:c9:06:42:19:87:47:f5:
92:fd:d3:4e:03:0f:3f:01:a0:75:00:1d:44:6a:79:
2f:5b:29:f6:8e:13:f1:fb:62:48:5f:1e:30:ea:36:
c9:a2:a3:ba:0b:c3:83:7e:25:48:09:a5:30:5f:2e:
b9:30:7a:c3:fc:71:e7:cf:6c:ae:4c:71:d5:3d:a4:
56:dc:34:af:c9:81:ad:13:34:1c:08:a8:f3:0f:b1:
a2:e9:48:77:56:fc:dc:96:47:a5:4e:07:1d:b6:8e:
ff:da:f3:3c:2d:ca:b4:41:8e:37:ec:07:d2:3e:d0:
73:78:d3:c5:03:50:31:7c:9e:3f:d1:99:2a:ad:85:
9e:be:4f:37:f5:69:2f:7c:02:f5:54:79:66:b4:a5:
f6:b7:99:04:7e:79:69:98:dc:f2:c0:b0:8a:f3:81:
df:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:DC:5F:53:F7:2C:0D:A8:07:95:7C:25:2B:97:27:D0:63:0D:F8:0F
X509v3 Authority Key Identifier:
keyid:93:0A:4E:D2:B8:5A:A9:FE:77:ED:90:FA:85:04:4A:9C:80:B3:8A:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/930A4ED2B85AA9FE77ED90FA85044A9C80B38A46.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af62809c-bfb6-4fe7-8dd6-ca6022cdd540/0/32372e3132312e38352e302f32342d3234203d3e203535363532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.121.85.0/24
Signature Algorithm: sha256WithRSAEncryption
50:05:61:b9:02:66:cd:c0:f2:10:6a:fc:e6:2c:1e:9b:14:8c:
f3:68:68:81:48:83:4d:5c:61:da:9a:ed:a4:c7:d4:86:14:24:
8f:cf:48:31:32:82:1d:17:6b:53:8f:8a:11:96:3e:dd:bb:7f:
40:cc:d2:86:e6:c6:b8:9e:a1:62:10:3b:b8:30:fe:2b:e9:f3:
4c:e6:08:22:0c:aa:d1:2e:5b:3f:2c:b6:7b:d8:58:b7:25:c2:
60:74:24:67:f8:e9:2d:57:97:7d:dd:d3:18:8a:1c:51:0c:62:
19:46:93:59:fe:b8:a5:3e:54:cc:5b:83:89:68:bd:45:af:da:
ae:c1:14:ad:ff:e5:af:97:67:90:81:1c:bb:78:6e:0a:f2:54:
6e:e6:01:e7:3f:3e:df:c5:3f:bb:0d:65:3b:d1:ae:4b:98:3b:
81:ec:8e:4d:8c:0c:bb:c2:6c:a3:f2:17:62:45:9f:49:5e:1e:
72:80:26:f5:9e:57:91:16:62:44:73:7b:16:26:09:9f:d6:a5:
1c:f1:23:ec:32:bf:8b:e9:cc:16:a2:ae:35:0a:ef:b7:69:7c:
4b:ed:99:b7:d2:76:63:09:1d:c3:5a:b2:43:88:0b:1b:e0:d2:
aa:3c:94:4d:a0:6c:8e:b8:8d:b6:27:35:cc:c8:aa:91:9f:3a:
24:fd:7d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:43:18 2025 by rpki-client