Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa
File: 3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa (raw, json)
Hash identifier: 5fow4ijKoI1KVvcf6YC/HJbpKTVGon96DwXzzm6+a+4=
Subject key identifier: 8D:F8:0A:E6:B5:84:3D:F1:8E:A5:99:E4:D6:88:DC:39:CF:1F:BB:1D
Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853
Certificate serial: 02060D1F7BCE607CA8F0FB6DC99CC3FC049FAE93
Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa
Signing time: Sat 04 May 2024 16:14:22 +0000
ROA not before: Sat 04 May 2024 16:09:22 +0000
ROA not after: Sat 03 May 2025 16:14:22 +0000
asID: 133799
IP address blocks: 123.108.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:06:0d:1f:7b:ce:60:7c:a8:f0:fb:6d:c9:9c:c3:fc:04:9f:ae:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853
Validity
Not Before: May 4 16:09:22 2024 GMT
Not After : May 3 16:14:22 2025 GMT
Subject: CN=8DF80AE6B5843DF18EA599E4D688DC39CF1FBB1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7d:c9:d7:01:68:3f:47:79:df:e9:da:c2:77:
38:70:d0:4a:fe:3e:8b:eb:53:7a:3a:1d:5a:7f:de:
5a:e0:54:19:d7:3b:72:ad:25:fc:f6:6d:33:b4:9e:
37:88:5c:7c:cb:68:e0:47:d6:ae:a5:7f:f4:0f:60:
99:4f:75:7d:71:de:c0:63:a9:a5:66:c3:a4:5e:e5:
1c:30:f9:9d:aa:51:18:92:64:c8:7d:3e:e4:29:5b:
00:58:98:00:71:12:69:8b:27:ac:a0:f1:39:b3:38:
dd:96:a8:3d:c5:a9:55:c1:f4:d0:ee:fc:84:3c:28:
d4:1a:1a:f6:72:00:18:3f:d7:97:41:ba:1d:b9:ff:
51:a9:0c:16:6f:55:4b:af:59:5c:54:66:b1:cc:59:
2a:8b:c2:ae:44:e7:fe:79:20:ce:5f:7b:48:9a:2b:
83:ff:68:af:fc:b0:64:78:80:c6:cc:24:10:00:b3:
5b:c6:b9:b1:3c:33:5e:18:0c:02:7e:87:43:a0:c2:
24:02:47:7d:8a:56:47:29:a8:b5:b2:f2:00:a7:eb:
62:9c:c5:49:f2:8d:07:34:83:6d:f9:31:a1:34:4a:
51:62:0a:8b:1c:27:f7:f2:3b:c4:ab:7d:3f:f3:23:
18:1b:92:85:ec:51:12:5d:4f:a1:ab:f5:b0:e9:ae:
2c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F8:0A:E6:B5:84:3D:F1:8E:A5:99:E4:D6:88:DC:39:CF:1F:BB:1D
X509v3 Authority Key Identifier:
keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3132332e3130382e36352e302f32342d3234203d3e20313333373939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
123.108.65.0/24
Signature Algorithm: sha256WithRSAEncryption
73:54:f9:1e:67:ed:07:ad:44:6a:a7:cd:8c:7f:79:03:24:66:
82:36:2d:c4:52:43:b4:28:70:20:d5:a4:81:0a:66:9e:27:22:
91:67:29:52:63:2a:d1:c0:50:0e:a4:bf:cf:6b:5f:1f:98:6d:
98:d2:b9:18:96:ae:fa:74:33:62:fa:e9:6e:c9:c9:b0:8c:11:
dd:55:4f:f0:8a:09:a9:3a:e3:86:a3:ca:3f:3f:72:a8:3e:1b:
ed:d0:78:0e:63:7e:52:75:32:bf:34:cf:3c:1d:23:f1:36:6c:
21:47:f1:89:75:67:53:fd:6b:31:f4:dc:2e:3b:b1:d2:bd:c9:
69:68:f7:b5:b0:da:54:b9:1f:51:32:88:91:9d:dd:67:83:74:
04:43:83:38:68:33:29:66:e0:ca:e4:ab:f9:2a:3a:65:7f:e1:
6d:b2:ac:25:1d:4c:b7:b4:5c:13:3b:14:52:d6:fe:c3:5e:2d:
db:7e:09:d6:d3:04:d9:a2:c1:5c:4b:c5:0d:ec:a8:d1:79:b1:
f9:d5:9a:db:91:e8:0a:27:6c:a1:14:56:05:91:68:1a:28:2b:
6f:24:ca:78:64:36:24:c0:5b:79:6d:48:ca:db:d3:0f:29:d3:
58:94:bf:0e:ee:90:8e:9a:e6:29:90:09:6f:c1:b9:85:7b:82:
cb:a3:2b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:52:04 2025 by rpki-client