Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34362e302f32342d3234203d3e203435333235.roa
File: 3132322e3234382e34362e302f32342d3234203d3e203435333235.roa (raw, json)
Hash identifier: SHNUndN8A/BIGBgaMZGSvUYKm9oObzfVbZRCy6qWjNQ=
Subject key identifier: 53:6B:91:C0:CC:4F:55:57:7D:B8:C6:6B:0E:08:57:6F:DD:E2:0F:21
Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Certificate serial: 3B4443256C11CD01CFB61E3C8D4A9837BF2D684E
Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34362e302f32342d3234203d3e203435333235.roa
Signing time: Tue 05 Nov 2024 09:00:03 +0000
ROA not before: Tue 05 Nov 2024 08:55:03 +0000
ROA not after: Tue 04 Nov 2025 09:00:03 +0000
asID: 45325
IP address blocks: 122.248.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:44:43:25:6c:11:cd:01:cf:b6:1e:3c:8d:4a:98:37:bf:2d:68:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Validity
Not Before: Nov 5 08:55:03 2024 GMT
Not After : Nov 4 09:00:03 2025 GMT
Subject: CN=536B91C0CC4F55577DB8C66B0E08576FDDE20F21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4a:2b:18:76:c3:99:b0:63:97:eb:92:4a:41:
74:3b:c4:e3:89:07:65:a4:91:13:b9:b4:b4:b8:8d:
a9:36:c7:ca:72:57:f5:f0:0f:71:df:11:29:cc:0a:
62:6c:40:8b:a3:ac:84:d9:cc:7b:de:3f:22:75:d2:
2f:f9:4f:e8:6a:fe:53:2d:a0:08:c6:2b:64:2e:cb:
97:66:2f:ce:78:7e:c2:f0:6e:08:ec:6d:10:b3:1e:
32:29:c0:c1:7d:e6:bf:f9:eb:cf:81:c4:c4:ea:b6:
ab:29:dd:7e:b6:fd:4d:83:f5:4d:66:de:e6:3b:c1:
99:89:46:b0:b6:ed:26:81:0d:2c:41:bd:1c:8e:e3:
f2:41:df:0c:69:83:f9:6f:eb:5d:9c:49:c5:c5:0d:
30:63:cf:6a:7a:37:d1:d3:b6:15:e5:4c:45:8a:a4:
f0:b6:2c:63:3d:b8:c5:72:7e:b7:af:f7:d2:47:bb:
0b:94:4d:ce:ae:b5:02:0f:16:9d:58:0f:ae:9e:a9:
59:c1:f2:d7:b8:08:62:12:93:70:d9:b9:94:4f:92:
a6:e4:5c:a9:d8:af:ba:b0:58:48:b9:3d:ae:e6:17:
a2:73:fe:dd:67:ce:ba:1c:3c:45:be:e5:ea:eb:d6:
46:41:5e:2f:01:29:1b:a1:c6:3d:c1:ce:ee:b0:ef:
65:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6B:91:C0:CC:4F:55:57:7D:B8:C6:6B:0E:08:57:6F:DD:E2:0F:21
X509v3 Authority Key Identifier:
keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34362e302f32342d3234203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.248.46.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:34:62:86:68:e1:b0:6e:aa:e1:5b:f9:eb:4b:59:55:67:6b:
55:e2:a7:a7:10:89:08:72:62:96:9e:d1:bd:e4:07:be:11:67:
b9:b8:dd:61:43:79:40:cd:f2:6e:e8:f4:b2:3e:ad:65:df:59:
32:e4:94:51:2a:48:00:bf:c4:27:1d:47:0a:9a:fd:2b:26:22:
e6:62:5e:ce:7a:58:87:a5:d0:aa:1f:c4:b6:17:30:21:ea:dc:
a1:35:d3:ae:80:9d:02:12:32:38:49:27:17:59:90:c2:65:e2:
fa:c2:25:f9:21:20:1f:8a:ed:59:74:0b:23:29:91:20:43:d0:
96:cf:3f:55:54:72:56:3b:5c:57:ec:a5:1c:04:24:4d:9e:50:
d8:c8:61:f2:1d:20:11:98:a4:9a:80:00:29:9d:4e:b7:27:bc:
bc:52:9c:b0:1b:a8:cb:b9:12:04:90:49:9d:62:c8:0b:be:42:
f8:8d:dd:a2:b1:7d:5b:d0:b7:6d:f8:ed:36:75:23:4f:07:65:
2b:87:26:cc:b6:9c:57:61:ff:b3:02:51:d0:83:8f:b7:c9:23:
7e:b2:8e:0a:45:f5:7e:f2:02:8a:de:c1:c3:b0:fe:1c:e3:d7:
1d:bc:9f:b9:23:06:ce:08:a9:1a:3d:63:53:db:dd:79:cb:a0:
fb:4e:5e:67
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUO0RDJWwRzQHPth48jUqYN78taE4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlE
MzhBQzI2RDAeFw0yNDExMDUwODU1MDNaFw0yNTExMDQwOTAwMDNaMDMxMTAvBgNV
BAMTKDUzNkI5MUMwQ0M0RjU1NTc3REI4QzY2QjBFMDg1NzZGRERFMjBGMjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCSisYdsOZsGOX65JKQXQ7xOOJ
B2WkkRO5tLS4jak2x8pyV/XwD3HfESnMCmJsQIujrITZzHvePyJ10i/5T+hq/lMt
oAjGK2Quy5dmL854fsLwbgjsbRCzHjIpwMF95r/568+BxMTqtqsp3X62/U2D9U1m
3uY7wZmJRrC27SaBDSxBvRyO4/JB3wxpg/lv612cScXFDTBjz2p6N9HTthXlTEWK
pPC2LGM9uMVyfrev99JHuwuUTc6utQIPFp1YD66eqVnB8te4CGISk3DZuZRPkqbk
XKnYr7qwWEi5Pa7mF6Jz/t1nzrocPEW+5err1kZBXi8BKRuhxj3Bzu6w72W1AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUU2uRwMxPVVd9uMZrDghXb93iDyEwHwYDVR0j
BBgwFoAUwW5G1VakfSQp7IR+lefEKdOKwm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
ZjJlN2ZkNi1lYjVlLTQ4MGEtOGU5Ny1jNTVmNjhlMDU4OWEvMC9DMTZFNDZENTU2
QTQ3RDI0MjlFQzg0N0U5NUU3QzQyOUQzOEFDMjZELmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzE2RTQ2RDU1NkE0N0QyNDI5RUM4NDdFOTVFN0M0MjlEMzhB
QzI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmMmU3ZmQ2LWViNWUtNDgwYS04
ZTk3LWM1NWY2OGUwNTg5YS8wLzMxMzIzMjJlMzIzNDM4MmUzNDM2MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzQzNTMzMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHr4LjANBgkqhkiG
9w0BAQsFAAOCAQEAfjRihmjhsG6q4Vv560tZVWdrVeKnpxCJCHJilp7RveQHvhFn
ubjdYUN5QM3ybuj0sj6tZd9ZMuSUUSpIAL/EJx1HCpr9KyYi5mJeznpYh6XQqh/E
thcwIercoTXTroCdAhIyOEknF1mQwmXi+sIl+SEgH4rtWXQLIymRIEPQls8/VVRy
VjtcV+ylHAQkTZ5Q2Mhh8h0gEZikmoAAKZ1Otye8vFKcsBuoy7kSBJBJnWLIC75C
+I3dorF9W9C3bfjtNnUjTwdlK4cmzLacV2H/swJR0IOPt8kjfrKOCkX1fvICit7B
w7D+HOPXHbyfuSMGzgipGj1jU9vdecug+05eZw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 22:50:50 2025 by rpki-client