Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33302e302f32342d3234203d3e203234353235.roa
File: 3230332e3135332e33302e302f32342d3234203d3e203234353235.roa (raw, json)
Hash identifier: 5rnc7g0LPqP9eNlGC3Yo8ZobU3+D1svsXtwRmlPpxaM=
Subject key identifier: 9B:69:06:0C:42:39:9D:B4:25:D0:C0:0D:74:F1:05:66:20:C1:76:93
Certificate issuer: /CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Certificate serial: 7827081A4D1421103A5C960C27F80EF5B1978F1B
Authority key identifier: AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33302e302f32342d3234203d3e203234353235.roa
Signing time: Sat 01 Jun 2024 08:00:59 +0000
ROA not before: Sat 01 Jun 2024 07:55:59 +0000
ROA not after: Sat 31 May 2025 08:00:59 +0000
asID: 24525
IP address blocks: 203.153.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:27:08:1a:4d:14:21:10:3a:5c:96:0c:27:f8:0e:f5:b1:97:8f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADCB9F9DF56E90B39B5344118194104F46A83702
Validity
Not Before: Jun 1 07:55:59 2024 GMT
Not After : May 31 08:00:59 2025 GMT
Subject: CN=9B69060C42399DB425D0C00D74F1056620C17693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:af:61:db:36:1c:ee:b5:15:fd:69:9f:41:f1:
ac:ae:ec:4a:8a:3a:e9:8a:29:d4:9b:ba:f4:5c:80:
41:5a:83:8a:81:82:3a:a4:d2:ad:87:a2:ea:b1:13:
61:0b:21:f8:27:50:1a:aa:3d:3d:d5:49:63:8c:1f:
e8:96:bf:5b:ba:51:7b:8a:e6:7f:e1:8c:e8:1c:df:
8a:da:d2:1c:30:61:cb:69:54:2e:20:5a:96:36:17:
3d:d5:59:80:ae:c4:d7:f4:c4:14:d7:95:27:0c:9e:
08:e9:ac:cb:e8:6b:8c:ed:23:ca:c3:eb:1f:41:6b:
37:1a:46:8e:ae:42:7d:3b:52:8b:ff:6d:da:30:c3:
42:c6:42:14:a9:65:5b:7f:77:e3:e5:88:21:b5:83:
be:06:e3:a1:f0:81:56:d6:36:fd:f8:6c:dc:3f:68:
e3:4c:8b:bb:b4:93:06:7c:e8:96:ec:46:45:2c:32:
77:34:f8:21:ce:6e:a6:a9:c6:35:e3:75:5a:d1:fb:
5b:49:37:33:6e:4a:a7:67:87:80:68:46:ff:b1:b5:
80:57:67:75:cf:97:f3:93:e1:95:fe:13:94:e4:00:
e1:a4:c9:ec:f5:b6:52:21:ee:2e:91:a5:f6:56:2d:
e3:12:b6:c3:55:c9:77:4d:1b:72:4d:4a:69:e4:2f:
09:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:69:06:0C:42:39:9D:B4:25:D0:C0:0D:74:F1:05:66:20:C1:76:93
X509v3 Authority Key Identifier:
keyid:AD:CB:9F:9D:F5:6E:90:B3:9B:53:44:11:81:94:10:4F:46:A8:37:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/ADCB9F9DF56E90B39B5344118194104F46A83702.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADCB9F9DF56E90B39B5344118194104F46A83702.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1f4fd38-7826-4201-9f9b-1d7c76aa24dd/0/3230332e3135332e33302e302f32342d3234203d3e203234353235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.30.0/24
Signature Algorithm: sha256WithRSAEncryption
34:8c:30:53:62:01:61:ed:63:80:bb:1c:11:20:0a:74:5b:1b:
a4:0a:09:fd:3a:1a:b4:f8:01:e4:f4:94:50:6e:7a:21:dd:bb:
4f:63:ea:c1:0c:48:5e:38:b4:f2:49:ee:7f:4c:9c:18:22:72:
67:bb:3d:e3:15:9a:af:ac:0e:d2:24:ea:ff:b5:86:60:fd:2b:
73:f6:5f:85:b8:bf:4c:73:64:54:41:a3:16:6b:8a:00:a0:41:
90:ab:df:5f:b4:08:a8:d5:41:38:73:2d:74:a3:b7:18:fa:f5:
c7:2a:0f:f8:dc:cf:c7:f4:06:4c:36:ce:eb:bb:0f:7e:c1:fe:
06:91:d3:ca:5b:31:b7:89:02:08:fc:27:0b:df:0b:56:b1:f1:
46:76:39:42:fe:5d:5c:74:bc:bc:20:c4:1b:ff:69:56:9c:fb:
f7:bb:c9:1c:72:4b:f2:3a:97:e6:b3:02:a2:8a:9a:7d:c9:82:
62:85:88:fa:ef:19:60:8e:40:9b:ff:5e:cd:b2:14:09:c0:1d:
7a:e1:fa:7d:c0:14:20:c2:87:2d:e3:7d:b4:dc:a2:eb:39:68:
92:17:ba:60:f1:a6:3c:f3:47:27:03:97:fe:ab:49:f1:95:85:
a8:4e:44:9b:5e:d7:d5:87:4a:49:b0:11:d7:ef:71:05:2b:46:
c5:b2:88:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:20 2025 by rpki-client