Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33372e302f32342d3234203d3e203435333235.roa
File: 3132322e3234382e33372e302f32342d3234203d3e203435333235.roa (raw, json)
Hash identifier: o9zNUjGq3jjXA1FTaf9tt9A5YyGLDoc1McWuzE4RAXA=
Subject key identifier: 04:68:DC:7B:92:1F:6A:5C:67:98:F2:B7:97:7B:5E:93:F8:2E:16:A0
Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Certificate serial: 69452B9F35E6526E3AB0756F52562242C974A22B
Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33372e302f32342d3234203d3e203435333235.roa
Signing time: Tue 05 Nov 2024 09:00:02 +0000
ROA not before: Tue 05 Nov 2024 08:55:02 +0000
ROA not after: Tue 04 Nov 2025 09:00:02 +0000
asID: 45325
IP address blocks: 122.248.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:45:2b:9f:35:e6:52:6e:3a:b0:75:6f:52:56:22:42:c9:74:a2:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Validity
Not Before: Nov 5 08:55:02 2024 GMT
Not After : Nov 4 09:00:02 2025 GMT
Subject: CN=0468DC7B921F6A5C6798F2B7977B5E93F82E16A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bb:4a:b3:2f:e4:41:55:c4:96:ec:9a:ab:a3:
b7:39:50:07:66:bf:8d:50:fe:a0:90:10:2c:35:88:
b4:1a:76:01:c2:30:80:2b:aa:07:33:4a:08:4f:ba:
06:b6:af:43:4e:34:85:e1:98:71:11:4c:93:39:71:
d6:b0:e0:dd:24:57:cb:35:41:b3:52:43:35:88:56:
bc:9d:4c:51:f4:47:ad:30:74:07:78:c8:16:eb:e5:
b1:6b:72:5c:bf:1d:23:80:31:f2:2f:d9:a5:50:b2:
21:57:18:a2:d4:7e:43:1a:6c:44:27:bc:28:66:9b:
fe:d0:2d:a4:0f:f5:93:d3:d7:d2:81:f7:3f:36:78:
82:ff:0b:b9:20:40:0a:be:ef:92:f3:24:ab:35:f4:
c1:f8:4a:03:46:26:71:7c:f1:ae:f7:5c:c6:86:2e:
90:90:6a:f9:0a:3e:10:58:36:b2:3f:ef:c1:a3:44:
2d:57:3b:4d:6c:e4:de:dc:4e:83:c2:68:5b:3a:5c:
f1:04:e9:48:97:ce:42:32:01:39:df:9e:dc:ec:43:
fa:8f:5d:08:da:d2:86:11:1f:3b:74:e7:3a:aa:35:
91:d3:5c:31:c1:dc:4b:ed:1a:78:93:e1:01:7c:cd:
bd:02:33:d5:1c:e8:5c:9f:9f:bd:90:b9:51:47:48:
b4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:68:DC:7B:92:1F:6A:5C:67:98:F2:B7:97:7B:5E:93:F8:2E:16:A0
X509v3 Authority Key Identifier:
keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33372e302f32342d3234203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.248.37.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:f0:f3:a3:6a:34:96:74:bc:91:5c:a4:e0:11:fd:29:67:4b:
f1:b3:e0:b4:6e:5d:74:49:9b:06:d8:3f:34:6c:ad:d8:f5:ec:
a3:e5:2e:98:0d:dd:82:e2:99:90:ea:64:9b:6c:0d:30:d7:a4:
f3:b2:32:ff:a9:e8:56:b0:81:f8:ac:ef:ae:2d:df:00:5b:29:
27:85:51:b2:10:df:72:8f:10:4e:07:eb:71:3c:5a:1d:05:30:
72:c7:2e:ac:9d:74:24:bb:70:be:80:05:79:e7:48:63:4b:81:
8d:cd:6c:ba:3f:af:93:1c:6e:fd:3f:c1:cd:e1:0f:32:a3:5e:
a1:7e:16:2b:40:f2:15:b9:da:3e:28:6d:d0:ff:5d:42:9b:75:
53:38:ac:7f:1e:50:f7:10:33:d4:e2:72:6c:1a:77:15:e0:a1:
0d:92:42:7e:de:bc:69:e7:5e:6d:e0:51:dd:56:b7:91:40:a4:
1e:24:5d:b5:15:f3:e2:7d:9c:98:72:fe:20:67:59:2c:7d:04:
1b:76:1d:0e:cb:93:63:ee:ea:93:9f:a5:84:c6:54:6c:bd:5d:
25:ee:30:da:4b:d5:73:2d:32:40:6f:1e:9b:1b:8f:21:b4:04:
0e:2c:fb:c2:24:16:96:e1:fa:c2:14:07:42:5c:42:e2:e6:67:
d8:a5:1f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:05:33 2025 by rpki-client