Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa
File: 3132322e3234382e33362e302f32342d3234203d3e203435333235.roa (raw, json)
Hash identifier: OdWDIwy3kzlmQdcK2SaQYfq9ix9p7PQmfJSCMg+I4yw=
Subject key identifier: C2:52:83:41:17:7B:C4:D8:AF:24:FA:4D:AB:3E:C4:5B:38:99:47:8D
Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Certificate serial: 13F72EE831F006E72849810DFF1B917831320C6A
Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa
Signing time: Tue 05 Nov 2024 09:00:02 +0000
ROA not before: Tue 05 Nov 2024 08:55:02 +0000
ROA not after: Tue 04 Nov 2025 09:00:02 +0000
asID: 45325
IP address blocks: 122.248.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:f7:2e:e8:31:f0:06:e7:28:49:81:0d:ff:1b:91:78:31:32:0c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Validity
Not Before: Nov 5 08:55:02 2024 GMT
Not After : Nov 4 09:00:02 2025 GMT
Subject: CN=C2528341177BC4D8AF24FA4DAB3EC45B3899478D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2b:8c:ee:5f:f5:65:00:fe:7f:e6:fa:f3:d8:
e2:e6:eb:6b:74:80:07:fd:c4:b9:09:69:61:d8:b9:
18:95:31:a0:b0:ef:b7:b5:db:2e:f1:ba:4d:ef:47:
f1:ab:97:31:46:f8:e6:b2:37:f8:b9:df:c8:e6:bc:
02:d8:f2:88:72:77:07:d9:83:24:04:94:89:67:fd:
4b:85:a4:47:d0:36:06:ce:40:a2:fd:d0:ba:c5:6e:
7c:93:3b:96:2d:a9:18:49:bc:f0:86:f2:d9:48:72:
57:f3:ba:b6:4f:65:82:2c:12:81:71:56:5b:82:33:
ef:cd:ba:87:f3:c9:fa:e3:da:47:d0:bf:ba:a1:40:
c5:31:9d:66:35:da:f3:11:8e:a0:9b:cc:30:da:12:
e7:db:e9:17:34:a6:86:71:7e:fc:a0:f2:e6:f8:12:
a2:f9:df:c1:69:4a:05:c3:b9:6f:40:7c:e1:f6:ae:
56:db:18:a9:19:9a:7d:b5:7e:a2:93:58:42:ea:a1:
fb:e3:7a:b0:dc:84:fd:14:e1:90:53:f2:ee:0f:1e:
41:0b:f9:26:01:ed:6d:f9:5b:d6:2f:03:1d:61:ed:
6f:16:35:f8:43:86:9f:7b:ac:0b:89:3f:f3:91:d6:
d9:2b:c6:b9:84:7a:17:8f:18:e4:c0:32:68:a7:e7:
ac:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:52:83:41:17:7B:C4:D8:AF:24:FA:4D:AB:3E:C4:5B:38:99:47:8D
X509v3 Authority Key Identifier:
keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33362e302f32342d3234203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.248.36.0/24
Signature Algorithm: sha256WithRSAEncryption
41:af:5e:84:5e:2e:fb:4b:f6:e1:88:cc:41:01:86:77:5c:8c:
03:35:d7:2e:ea:a1:4b:c0:5d:f3:4c:7e:3b:92:1a:07:35:ad:
84:bc:bf:2a:a7:cc:64:49:18:9c:8e:ec:66:d8:d6:c4:16:d0:
de:4a:d9:7a:d7:61:59:f7:e2:6e:1b:f8:43:d5:dc:ad:8e:27:
85:3e:7c:34:9f:2d:98:ba:7e:ab:6c:45:a1:c0:f0:fb:94:60:
75:ff:90:62:58:9c:81:51:40:55:0e:9f:53:f7:ea:4e:c1:3e:
ff:94:7a:46:c9:0e:41:7b:71:36:78:d8:79:f7:5f:db:e0:5e:
fd:9a:96:08:6a:76:bd:52:25:c3:f6:20:90:3d:74:ee:54:83:
67:f3:4b:69:d1:49:8b:1d:03:14:7b:be:58:27:f5:68:e2:99:
74:ce:76:2f:53:7d:69:84:ef:f4:a6:cc:66:bb:b8:9d:9e:91:
9a:58:f0:fd:15:9e:82:e6:52:b9:0a:f4:6f:33:de:4c:fd:03:
b1:11:da:19:f4:3d:1c:3b:6f:a1:8e:dd:bf:de:8e:d6:17:95:
25:64:e5:93:03:9e:12:47:6d:53:ad:a3:d6:09:22:e7:1f:43:
8f:d5:d7:b3:cc:a5:22:a6:89:b3:b0:45:34:d6:c4:2e:a1:32:
a5:54:22:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:25:56 2025 by rpki-client