Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313334363337.roa
File: 3230322e3136302e3133392e302f32342d3234203d3e20313334363337.roa (raw, json)
Hash identifier: yivIGajIGBwCERemZ/qApItbcLMFzhrw+o0muoO7pyo=
Subject key identifier: A2:A2:4C:33:D5:4E:A5:DA:42:28:E3:88:BB:5C:06:0D:8F:27:63:7B
Certificate issuer: /CN=027DBEC91021154263BB0CF1565833705023D987
Certificate serial: 7BF3EB979917A813AC182A2F24DD0A58DD4188C8
Authority key identifier: 02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313334363337.roa
Signing time: Tue 21 Jan 2025 09:00:00 +0000
ROA not before: Tue 21 Jan 2025 08:55:00 +0000
ROA not after: Tue 20 Jan 2026 09:00:00 +0000
asID: 134637
IP address blocks: 202.160.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:f3:eb:97:99:17:a8:13:ac:18:2a:2f:24:dd:0a:58:dd:41:88:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=027DBEC91021154263BB0CF1565833705023D987
Validity
Not Before: Jan 21 08:55:00 2025 GMT
Not After : Jan 20 09:00:00 2026 GMT
Subject: CN=A2A24C33D54EA5DA4228E388BB5C060D8F27637B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:88:aa:73:4f:84:c5:ea:ab:a1:fe:ff:92:93:
e6:31:32:6e:8d:56:04:96:1a:be:77:99:f3:37:b7:
5f:ac:b7:8c:9e:34:9d:27:37:4d:8d:bc:9e:8c:18:
09:48:ac:b4:6e:02:bd:69:bf:5b:e7:ee:62:e0:7b:
58:63:1e:31:a6:61:4d:f2:87:c3:23:df:f5:7c:25:
ca:49:a3:b3:ba:f7:62:07:38:87:87:42:6a:fb:83:
28:8e:e8:f6:98:69:9b:a8:70:87:64:12:9b:7f:e2:
08:df:56:7c:54:c7:23:9b:1b:c8:6e:38:46:9b:42:
74:d5:7c:28:1b:bb:a8:9d:89:a9:5f:26:7f:b6:42:
b9:f4:2e:04:a7:ab:fd:c1:c8:10:8e:ae:56:ea:2a:
d9:35:dc:ed:73:e2:ca:1a:ac:01:0f:0f:50:d5:f9:
e8:60:61:f7:d9:d6:fa:4c:c4:9a:8b:49:6a:c0:63:
4c:aa:8a:e8:31:0c:18:fa:4b:4e:d0:1b:91:f4:1d:
38:1e:6d:c1:1d:c8:e4:ae:4c:b7:5a:88:98:5c:09:
24:5c:bc:e7:55:17:29:9a:35:53:fc:83:c5:fb:28:
83:f6:20:ec:a2:67:91:a4:4d:1b:46:50:3c:51:75:
73:c9:22:aa:5e:9a:bf:94:0e:7c:8f:35:b5:c2:19:
ef:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A2:4C:33:D5:4E:A5:DA:42:28:E3:88:BB:5C:06:0D:8F:27:63:7B
X509v3 Authority Key Identifier:
keyid:02:7D:BE:C9:10:21:15:42:63:BB:0C:F1:56:58:33:70:50:23:D9:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/027DBEC91021154263BB0CF1565833705023D987.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/027DBEC91021154263BB0CF1565833705023D987.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/074f214a-bf55-4048-845d-20675fb5f2a4/0/3230322e3136302e3133392e302f32342d3234203d3e20313334363337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.160.139.0/24
Signature Algorithm: sha256WithRSAEncryption
13:e1:cc:08:e4:ff:c4:fd:6c:14:4a:53:87:1c:31:cd:97:1d:
04:22:b2:e9:0e:4f:b1:df:9a:b3:5d:39:95:51:d1:e9:4e:21:
8f:a6:ae:6c:db:26:a7:34:03:00:be:21:ef:01:aa:05:a6:3b:
f3:00:4c:2a:b3:15:4d:c3:35:35:fa:94:5d:62:98:72:41:b6:
50:97:56:a8:38:84:ac:8c:14:e3:48:f6:1e:a9:87:f7:ae:ca:
50:d5:8a:c8:08:25:0f:a3:ed:23:a3:1f:41:30:bb:20:40:7b:
a0:f6:6d:c9:f4:fc:f4:b2:76:eb:5a:c7:f0:00:53:4e:89:78:
bf:31:79:5f:7e:d3:f1:8d:3b:3f:03:20:c5:91:07:38:60:24:
59:3c:e1:fd:4c:0a:55:f4:ca:2e:45:82:b9:4b:51:e1:00:9d:
7a:51:e8:3d:6f:d2:08:73:71:72:32:0d:a6:33:60:74:29:05:
a9:bc:8d:62:ae:fc:e8:a7:76:ac:21:ff:0e:68:2c:ae:bd:ba:
aa:b1:f7:a1:bf:d7:f2:d9:91:05:ca:84:ad:99:cb:02:3e:d4:
76:78:d0:8c:4a:c1:fa:3e:12:d4:25:78:a1:20:d0:b9:5f:e3:
2f:c3:ee:0c:55:d8:52:31:4e:70:84:e5:79:68:a7:98:fc:35:
cd:31:32:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:16 2025 by rpki-client