Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa
File: 3132322e3234382e33342e302f32342d3234203d3e203435333235.roa (raw, json)
Hash identifier: xWN96AN2o/5DjK3ZlzwTHnF0Jn7pZjmGqWHyJSo//1M=
Subject key identifier: 2C:FC:A6:71:73:1B:29:1A:E0:28:5A:69:9F:28:1C:B3:FF:B6:12:FF
Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Certificate serial: 5F4128E171F332A65AB3410A9F332C3ECE590300
Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa
Signing time: Tue 05 Nov 2024 09:00:03 +0000
ROA not before: Tue 05 Nov 2024 08:55:03 +0000
ROA not after: Tue 04 Nov 2025 09:00:03 +0000
asID: 45325
IP address blocks: 122.248.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:41:28:e1:71:f3:32:a6:5a:b3:41:0a:9f:33:2c:3e:ce:59:03:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Validity
Not Before: Nov 5 08:55:03 2024 GMT
Not After : Nov 4 09:00:03 2025 GMT
Subject: CN=2CFCA671731B291AE0285A699F281CB3FFB612FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9b:c5:fe:eb:19:01:d4:97:28:9e:22:f7:cb:
08:6a:53:05:98:71:98:98:c9:64:a1:72:46:47:58:
45:1b:d0:fa:6f:09:60:a5:34:c9:77:c8:8c:62:6c:
15:ba:bf:03:2b:a8:b0:4e:6a:d3:03:e9:6b:a4:12:
ee:81:9d:b8:c1:27:2b:a1:71:92:f1:e0:8f:53:d7:
20:06:6b:12:3a:14:8e:47:5c:ca:6d:05:05:81:ce:
0a:e0:f1:c9:ca:41:55:d1:60:1d:8b:2c:a7:bb:bd:
5a:91:e8:e4:99:2b:6f:31:96:62:14:28:df:28:cc:
cd:da:30:0b:f3:c4:b4:6f:70:0b:3e:f9:3f:6b:fb:
ff:71:52:44:83:a4:27:7c:e7:a5:82:19:27:c2:71:
5f:02:c3:67:6f:46:2d:db:0d:34:64:f0:7c:d9:54:
1d:22:e1:42:ed:74:1e:52:9b:6b:f7:59:45:22:2a:
af:0f:b3:f4:81:94:f6:e0:0a:b3:00:6e:f5:12:31:
4a:a5:17:f2:73:12:87:e7:b4:a4:69:cc:39:ea:01:
da:0e:5e:a4:ee:a8:07:3a:7f:08:6f:be:94:e4:4d:
95:07:30:d9:f8:72:60:36:5c:fe:38:52:76:ae:8c:
34:b6:2d:7d:78:d9:e9:94:65:f1:c0:8a:e4:6a:ae:
71:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:FC:A6:71:73:1B:29:1A:E0:28:5A:69:9F:28:1C:B3:FF:B6:12:FF
X509v3 Authority Key Identifier:
keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33342e302f32342d3234203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.248.34.0/24
Signature Algorithm: sha256WithRSAEncryption
05:9e:92:f6:64:92:1f:25:bc:e9:8f:bd:a2:ba:56:e8:98:2e:
d8:21:60:0b:39:5d:d7:e7:18:b2:13:6c:a7:8b:f2:bc:41:f0:
d0:45:60:c6:e3:5f:a0:15:29:44:5c:1f:2d:55:5d:0f:91:49:
6d:78:8c:af:36:03:ae:60:c2:f8:fd:2a:5c:11:c2:44:ef:fa:
3a:8f:84:69:69:f7:7e:07:7c:d5:56:ee:68:c3:6b:19:b1:71:
74:fd:6c:13:88:d7:bb:e9:25:79:86:9c:26:23:bb:6e:6a:3e:
12:f7:da:d1:16:e1:a4:16:f7:4c:1a:2d:38:b0:39:e2:75:6c:
15:94:61:b0:cf:1c:ac:3a:8e:f2:d1:17:68:0c:e6:6d:b3:10:
3c:75:03:ad:48:3b:17:d6:f6:d3:b9:e5:8a:88:c2:01:1b:1f:
96:5a:38:5e:f9:2c:93:44:fd:a9:78:e2:8b:90:31:4d:5d:08:
5b:5d:70:8e:ab:93:45:93:31:7d:5e:b5:fd:6b:88:8f:e4:71:
db:cb:7f:a8:b8:9d:b7:cb:af:ca:64:c4:54:dc:45:fe:13:ab:
60:78:2f:59:f6:ae:ce:da:7b:f2:75:db:01:95:4b:17:08:8b:
c5:4f:2b:06:ce:91:05:ff:b9:39:f9:44:5a:eb:15:48:fc:5d:
77:9b:e0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:42:52 2025 by rpki-client