Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa
File: 3132322e3234382e34372e302f32342d3234203d3e203435333235.roa (raw, json)
Hash identifier: PlPCblW+Y4v6qxU+CWaZnHwrOaBWn48VhJ1vBaFINzQ=
Subject key identifier: 69:C8:9A:99:59:75:0C:FB:4C:70:69:07:CF:49:47:02:E1:77:0C:1A
Certificate issuer: /CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Certificate serial: 0E4628F904C21C27B26B53D15328AE438AD59ADE
Authority key identifier: C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa
Signing time: Tue 05 Nov 2024 10:00:02 +0000
ROA not before: Tue 05 Nov 2024 09:55:02 +0000
ROA not after: Tue 04 Nov 2025 10:00:02 +0000
asID: 45325
IP address blocks: 122.248.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:46:28:f9:04:c2:1c:27:b2:6b:53:d1:53:28:ae:43:8a:d5:9a:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C16E46D556A47D2429EC847E95E7C429D38AC26D
Validity
Not Before: Nov 5 09:55:02 2024 GMT
Not After : Nov 4 10:00:02 2025 GMT
Subject: CN=69C89A9959750CFB4C706907CF494702E1770C1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:53:ed:3c:9f:68:15:51:63:99:d8:8e:75:30:
21:fb:a1:0e:cd:22:20:60:c7:42:39:c7:6b:8c:72:
c7:e3:4c:c8:c2:b9:9e:70:97:db:6b:ef:e4:9b:7a:
8c:82:41:44:0e:33:7e:62:a4:48:1f:ad:e4:0a:7f:
4e:22:e2:6c:9e:6c:09:b3:1f:c2:0f:01:fe:ee:96:
b2:ef:d8:6c:29:61:ff:44:2b:1f:19:51:b1:b3:22:
51:e0:7e:3d:a8:ee:3b:25:ed:8f:82:4b:32:e2:3d:
2b:c8:e3:e3:a4:d1:40:bb:fb:46:47:93:e4:96:e0:
a5:e0:43:d9:f2:64:fa:69:4d:5c:46:72:ca:6d:f7:
d4:cb:71:5b:55:4c:b8:61:79:9a:34:dc:24:61:0a:
58:b6:0b:ff:be:e5:ea:c2:dc:60:12:6c:32:fc:4d:
7e:90:72:ca:a5:b7:0b:90:26:5e:05:aa:75:70:1d:
51:2a:b3:5b:3d:d0:b4:4a:aa:5d:78:4b:81:51:31:
a3:c2:08:e4:f1:f3:20:20:e9:e4:e1:f1:b5:76:aa:
84:bd:b5:04:99:f1:4c:bf:38:16:b3:cb:5d:08:88:
92:d5:73:11:6f:49:5d:94:9a:a1:e0:09:36:38:e1:
45:0d:42:6b:03:d3:68:35:57:a9:c4:4c:15:66:da:
a5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C8:9A:99:59:75:0C:FB:4C:70:69:07:CF:49:47:02:E1:77:0C:1A
X509v3 Authority Key Identifier:
keyid:C1:6E:46:D5:56:A4:7D:24:29:EC:84:7E:95:E7:C4:29:D3:8A:C2:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/C16E46D556A47D2429EC847E95E7C429D38AC26D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C16E46D556A47D2429EC847E95E7C429D38AC26D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df2e7fd6-eb5e-480a-8e97-c55f68e0589a/0/3132322e3234382e34372e302f32342d3234203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
122.248.47.0/24
Signature Algorithm: sha256WithRSAEncryption
40:26:28:c2:f2:f2:e4:9a:eb:f2:cd:1d:fa:a3:1a:be:8c:b2:
d6:8c:81:ff:53:9c:59:7c:41:b0:2d:73:c9:0d:b9:e6:53:79:
9c:a4:a2:e6:2d:82:81:fe:e2:d0:4d:83:24:2d:5a:0a:e2:db:
b0:f2:34:10:76:54:11:89:f4:1d:5a:06:65:b7:c3:5b:68:30:
bd:1a:a0:b6:44:34:f7:de:60:9a:b4:8a:70:91:94:03:67:4d:
e0:39:7b:9c:02:a7:b8:f5:02:9d:d0:e9:97:02:6f:e7:db:6a:
aa:5a:a7:db:f6:03:a9:b0:8b:56:02:ef:9c:67:99:57:fe:29:
d9:0d:6c:c9:c1:7e:2f:a4:64:4a:3f:93:ea:33:74:d5:fb:0c:
8e:cf:3a:4a:eb:e0:7a:1c:13:43:9d:5a:fd:0a:66:c5:f3:ca:
0a:b1:14:13:f7:1b:3f:17:1d:6b:45:09:90:46:80:ee:87:0e:
37:3b:11:59:01:52:58:54:3a:6f:cf:db:a7:f5:b6:ba:57:4f:
1f:0d:2e:0a:b1:33:c9:da:e1:6f:be:27:de:88:42:ae:fb:5d:
2e:ad:19:21:f4:d7:d7:e9:b3:92:8d:ef:da:3a:bd:7f:c0:4e:
24:72:61:f8:9c:5e:b8:18:c8:db:49:f1:34:4d:81:bc:5d:61:
9c:24:40:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 00:12:24 2025 by rpki-client