Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e33302e302f32342d3234203d3e203138303539.roa
File: 3132322e3132382e33302e302f32342d3234203d3e203138303539.roa (raw, json)
Hash identifier: B55x4F/bZOsp+MDoreLAHw3uWsRDUu3OxNIYdTqLPsE=
Subject key identifier: 4A:55:8A:2F:E3:8B:32:51:55:C5:C8:37:92:1A:49:78:B3:BC:67:31
Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Certificate serial: 673CC4A527087A4E225FF6C971D032330B114F38
Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e33302e302f32342d3234203d3e203138303539.roa
Signing time: Wed 23 Oct 2024 11:00:02 +0000
ROA not before: Wed 23 Oct 2024 10:55:02 +0000
ROA not after: Wed 22 Oct 2025 11:00:02 +0000
asID: 18059
IP address blocks: 122.128.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:3c:c4:a5:27:08:7a:4e:22:5f:f6:c9:71:d0:32:33:0b:11:4f:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Validity
Not Before: Oct 23 10:55:02 2024 GMT
Not After : Oct 22 11:00:02 2025 GMT
Subject: CN=4A558A2FE38B325155C5C837921A4978B3BC6731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:18:00:d4:a4:20:ea:83:16:ac:11:74:73:19:
b8:bc:85:b5:ee:ce:2e:34:84:39:ba:2b:03:33:d2:
ea:80:91:28:58:c9:0a:36:f9:5f:18:d2:3a:e7:4d:
dd:3c:5e:ec:a9:32:1b:5c:11:ea:10:6e:36:aa:cf:
4d:a2:23:89:29:43:96:1e:79:52:38:74:4f:ca:5b:
60:a8:d9:31:24:49:0c:44:f5:7c:58:d0:ad:88:8b:
93:08:6c:b8:15:1b:89:7f:49:e7:a4:6b:63:62:2f:
17:98:a2:51:d6:57:f5:b9:50:17:55:5d:a9:d2:4c:
a6:a2:65:7e:b7:63:e4:fe:a4:aa:6d:ac:36:6a:c3:
09:67:8d:f8:2e:3e:c2:68:1b:25:56:26:af:70:98:
3d:cf:e5:5d:5c:7d:c7:eb:c5:6d:19:d6:5b:4e:25:
c8:b7:1c:b0:67:e3:2a:e5:0a:8f:dd:93:99:67:84:
b6:c7:b3:f2:4f:57:01:8e:1e:57:15:a4:ad:4a:cf:
ed:70:ba:b1:06:f0:06:2e:c7:20:7f:3b:d7:1b:d4:
84:9c:f3:e5:fc:b1:09:5d:c2:be:01:96:b0:03:d1:
f5:da:45:52:d6:d0:6e:d2:f5:6a:06:83:b3:a0:ff:
f9:21:36:30:f0:1e:86:02:e0:01:c1:38:ca:fd:fe:
60:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:55:8A:2F:E3:8B:32:51:55:C5:C8:37:92:1A:49:78:B3:BC:67:31
X509v3 Authority Key Identifier:
keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3132322e3132382e33302e302f32342d3234203d3e203138303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.128.30.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:ad:8e:99:3d:5c:97:14:27:77:e9:40:bf:29:e8:01:9a:82:
d3:87:6d:45:87:19:3d:4d:bd:95:d4:20:44:bc:a9:3e:3a:2a:
94:1e:cb:b2:e7:da:3b:30:4a:a7:6a:8e:2d:1d:99:4a:81:f3:
e9:bf:5d:4f:ca:71:0a:0a:ac:7d:3b:3a:e0:bd:e8:06:ed:ac:
4c:5f:0a:6a:f4:06:fd:d1:71:e5:e6:fa:32:6f:a1:08:5e:27:
ed:6f:98:07:6f:86:2f:bf:21:ad:46:0e:64:9c:5a:11:66:20:
b5:58:e9:cc:0b:b6:8f:50:ae:29:c9:ed:39:51:1c:e3:2f:e5:
31:37:5c:3a:5a:7b:f7:3b:1c:4d:e4:d0:f5:fb:e8:4d:18:40:
1d:bf:6d:14:a4:b9:9b:43:d9:0f:48:04:7e:c9:54:a7:f2:12:
ec:5a:d6:22:e9:a1:26:9a:9a:11:58:2f:0d:53:69:2b:94:5f:
07:a8:03:b7:db:ff:7d:00:a5:fe:2b:0b:83:44:80:23:5c:62:
91:0b:d8:2c:6a:7f:3b:8a:ff:3d:b7:c0:aa:cb:5e:75:c6:0b:
0b:82:51:82:5b:08:5a:21:2f:e8:b7:db:ac:bf:25:3e:75:b9:
87:75:8c:ef:0a:45:33:62:90:9c:f6:36:f0:70:e7:c1:95:64:
ef:36:26:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:33 2025 by rpki-client