Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa
File: 3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa (raw, json)
Hash identifier: PR/zflZKeL7wo8O/4ghgYQBQYURaBqcuNO1m/erqLkg=
Subject key identifier: DF:5D:04:5E:A7:E5:06:D2:53:A3:E0:A2:C4:5F:E9:28:0D:67:93:A0
Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39
Certificate serial: 7A615D3F231E60BF5E7226BFC68EA6052E9F54F9
Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa
Signing time: Wed 08 Jan 2025 04:00:36 +0000
ROA not before: Wed 08 Jan 2025 03:55:36 +0000
ROA not after: Wed 07 Jan 2026 04:00:36 +0000
asID: 133798
IP address blocks: 203.128.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:61:5d:3f:23:1e:60:bf:5e:72:26:bf:c6:8e:a6:05:2e:9f:54:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39
Validity
Not Before: Jan 8 03:55:36 2025 GMT
Not After : Jan 7 04:00:36 2026 GMT
Subject: CN=DF5D045EA7E506D253A3E0A2C45FE9280D6793A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7f:43:fc:c3:da:06:51:f9:64:5b:3a:bf:08:
55:a3:f1:0d:58:af:b3:62:94:09:79:c6:aa:af:7f:
33:21:55:5c:1d:ca:97:d9:26:9f:ea:50:a7:54:b0:
d9:e4:26:51:12:54:f9:fa:93:6e:fb:1f:a3:22:9b:
20:6b:57:71:23:27:aa:5c:f0:65:95:75:ad:67:8b:
11:40:a1:ea:3b:96:2b:eb:c4:21:12:f0:4a:d1:bc:
09:fc:4e:45:3b:13:95:3e:fa:4a:2d:20:40:f2:4c:
a6:57:99:68:79:aa:9d:68:d9:07:27:24:6a:17:c1:
84:4f:85:e7:33:1a:43:03:d3:ef:fe:5f:3d:1a:5e:
d5:12:38:26:38:60:15:42:ae:37:8e:8f:d5:54:cc:
ea:9f:e1:35:e8:55:7c:37:49:46:81:dc:4d:4c:dd:
3f:df:84:8a:c3:50:83:55:7f:c0:87:85:13:40:e9:
5c:b3:34:da:36:df:8d:32:8e:fe:6b:07:b9:73:82:
0e:2f:b6:dc:2b:ac:57:17:0f:62:f3:6c:4b:51:4a:
8f:1d:44:be:7a:b4:fd:ca:aa:7d:5b:3c:2a:be:6d:
60:8c:11:24:85:21:ef:42:79:33:b6:b9:64:c0:2c:
6d:78:e7:31:8f:9e:1d:a3:97:75:f6:5a:6e:5f:b4:
76:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:5D:04:5E:A7:E5:06:D2:53:A3:E0:A2:C4:5F:E9:28:0D:67:93:A0
X509v3 Authority Key Identifier:
keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.128.250.0/24
Signature Algorithm: sha256WithRSAEncryption
28:77:2b:cb:61:d1:65:37:97:69:ab:d4:7e:46:39:22:49:13:
a7:0c:a1:34:9d:0a:ae:18:7f:52:cc:d0:1b:ef:ed:76:06:ed:
c9:45:cc:6d:dc:eb:1d:45:a4:d7:c7:c1:b1:88:0f:c2:d5:d7:
f0:54:6a:9d:22:83:48:21:29:79:a2:73:88:9b:53:5c:b0:6f:
33:0d:75:6b:44:9e:43:da:5e:36:a1:3a:6f:c3:2f:80:0b:7a:
01:ef:39:ba:19:aa:db:da:0e:41:45:da:e4:21:bb:f0:99:0b:
64:c5:f9:4f:ff:71:a8:ce:2b:a8:a8:91:9c:30:56:dd:05:7a:
41:72:cc:d4:61:97:85:1c:bb:ff:c2:1d:66:70:ed:83:41:01:
49:82:a8:2a:79:14:d3:c3:93:cd:8e:d2:ef:f6:d3:0d:8f:f1:
66:39:b6:6e:42:12:78:59:5a:e8:85:43:6e:83:e4:fb:fb:4c:
24:d5:6e:c8:03:f0:1d:27:c3:6b:ee:25:b5:67:d3:df:d0:23:
69:79:bc:dd:8a:f4:2d:0a:d2:cf:0e:ae:f2:9b:1d:05:a6:4f:
f7:8d:0b:2d:e0:f7:4e:54:4a:4c:48:05:d9:1a:40:6d:f4:6c:
fc:60:bd:0f:bb:63:d9:36:e5:41:e7:06:12:6b:f4:8f:d9:65:
2b:fd:d4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:04:20 2025 by rpki-client