Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa
File: 3132322e3234382e33382e302f32342d3234203d3e203435333235.roa (raw, json)
Hash identifier: 1mSxPF9RWPzW0o8OV1KEyXpWaFNHEqMbTeJUgaklFZE=
Subject key identifier: 6B:AD:01:55:D5:40:9F:78:AB:DB:95:4D:56:DD:9A:7C:B2:A6:4B:0E
Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Certificate serial: 3BB10B2E10A237F1229745AA5DF6BB99266C9A67
Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa
Signing time: Tue 05 Nov 2024 09:00:03 +0000
ROA not before: Tue 05 Nov 2024 08:55:03 +0000
ROA not after: Tue 04 Nov 2025 09:00:03 +0000
asID: 45325
IP address blocks: 122.248.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:b1:0b:2e:10:a2:37:f1:22:97:45:aa:5d:f6:bb:99:26:6c:9a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Validity
Not Before: Nov 5 08:55:03 2024 GMT
Not After : Nov 4 09:00:03 2025 GMT
Subject: CN=6BAD0155D5409F78ABDB954D56DD9A7CB2A64B0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:28:7c:06:22:a4:d9:b2:1c:de:d5:2d:49:fd:
9e:f5:c3:94:51:56:4e:f9:8e:0d:f9:2a:5c:99:cf:
3d:7c:07:a7:35:2a:d1:4b:ad:cc:a2:ab:ce:f9:d6:
0a:be:a1:c1:6c:17:b7:96:8f:77:d9:88:af:e7:3d:
cd:82:a3:d7:76:b7:3d:33:3f:36:53:75:f0:c5:fa:
09:83:e3:a1:53:08:93:76:95:02:a8:14:b8:59:75:
c9:5f:32:c1:64:57:d3:fc:92:df:28:74:bc:09:1b:
a1:81:8b:31:a7:34:a1:f6:f6:f5:78:47:38:bc:71:
46:f1:43:dd:43:05:db:7d:c8:d2:98:56:07:dc:71:
37:a3:33:11:58:4b:0c:67:74:29:75:bd:58:b1:44:
80:32:e5:9f:0a:58:2e:c1:e3:9f:f8:dd:ee:36:a4:
99:c8:bd:fd:8a:1c:a6:9b:11:6f:88:93:67:dd:1e:
12:f7:1c:6e:f1:04:a8:2a:19:75:25:8e:da:9f:81:
19:4c:16:02:b9:cb:5c:6d:ae:1b:a8:47:0b:fb:50:
88:f2:d8:0d:9c:f9:0b:0f:a5:c5:17:0a:47:9a:f1:
74:04:d9:fc:0f:3f:f2:01:03:b9:b4:97:69:66:5e:
81:78:aa:94:38:64:2a:01:31:47:e4:af:ef:5e:58:
52:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:AD:01:55:D5:40:9F:78:AB:DB:95:4D:56:DD:9A:7C:B2:A6:4B:0E
X509v3 Authority Key Identifier:
keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e33382e302f32342d3234203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.248.38.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:da:31:67:64:9c:b9:26:d6:3e:e6:77:74:09:78:c7:95:97:
6f:bf:5f:ea:00:16:aa:22:91:08:8a:0d:fe:e0:60:2b:cb:9c:
5c:73:4e:bf:58:64:a3:dc:bc:5b:55:35:b8:3a:c9:3c:de:90:
31:b4:ca:a7:f4:c3:ab:68:2f:50:a9:b7:c1:34:77:49:6a:c0:
00:3d:da:7d:0a:43:34:60:6e:ee:29:46:d2:19:f5:c2:52:00:
3e:f3:1f:17:99:6f:52:98:fe:09:69:c9:5f:81:bc:6d:2c:d6:
d4:21:e2:70:6e:10:75:ed:cf:7c:f8:d0:a1:83:a8:a0:b4:f9:
97:58:b8:3d:64:f5:7b:a0:ac:97:df:ca:9c:80:b2:8f:9e:71:
79:56:a6:95:54:14:ca:8f:cd:ab:15:b7:c0:aa:5d:ab:a9:e3:
68:6a:f3:df:cb:f4:53:2b:82:82:5d:81:34:cd:93:f4:82:00:
02:dd:35:5f:c2:1b:f4:dc:ef:b9:d2:85:d2:74:73:a5:6f:25:
16:26:47:62:19:47:09:61:30:ea:c4:72:17:a2:7c:6d:db:f8:
29:f7:82:f7:c7:e9:ea:f3:9e:f6:44:bd:4f:88:d6:63:0d:8a:
6c:98:13:87:b4:26:d2:44:cf:ba:5f:f5:7a:c1:fa:63:b1:8c:
00:a1:e7:f4
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUO7ELLhCiN/Eil0WqXfa7mSZsmmcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE
MzhBQzI2RDAeFw0yNDExMDUwODU1MDNaFw0yNTExMDQwOTAwMDNaMDMxMTAvBgNV
BAMTKDZCQUQwMTU1RDU0MDlGNzhBQkRCOTU0RDU2REQ5QTdDQjJBNjRCMEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1KHwGIqTZshze1S1J/Z71w5RR
Vk75jg35KlyZzz18B6c1KtFLrcyiq8751gq+ocFsF7eWj3fZiK/nPc2Co9d2tz0z
PzZTdfDF+gmD46FTCJN2lQKoFLhZdclfMsFkV9P8kt8odLwJG6GBizGnNKH29vV4
Rzi8cUbxQ91DBdt9yNKYVgfccTejMxFYSwxndCl1vVixRIAy5Z8KWC7B45/43e42
pJnIvf2KHKabEW+Ik2fdHhL3HG7xBKgqGXUljtqfgRlMFgK5y1xtrhuoRwv7UIjy
2A2c+QsPpcUXCkea8XQE2fwPP/IBA7m0l2lmXoF4qpQ4ZCoBMUfkr+9eWFKtAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUa60BVdVAn3ir25VNVt2afLKmSw4wHwYDVR0j
BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2
QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB
QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04
ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzMzM4MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4JjANBgkqhkiG
9w0BAQsFAAOCAQEAXdoxZ2ScuSbWPuZ3dAl4x5WXb79f6gAWqiKRCIoN/uBgK8uc
XHNOv1hko9y8W1U1uDrJPN6QMbTKp/TDq2gvUKm3wTR3SWrAAD3afQpDNGBu7ilG
0hn1wlIAPvMfF5lvUpj+CWnJX4G8bSzW1CHicG4Qde3PfPjQoYOooLT5l1i4PWT1
e6Csl9/KnICyj55xeVamlVQUyo/NqxW3wKpdq6njaGrz38v0UyuCgl2BNM2T9IIA
At01X8Ib9NzvudKF0nRzpW8lFiZHYhlHCWEw6sRyF6J8bdv4KfeC98fp6vOe9kS9
T4jWYw2KbJgTh7Qm0kTPul/1esH6Y7GMAKHn9A==
-----END CERTIFICATE-----
Generated at Wed Apr 9 08:15:27 2025 by rpki-client