Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa
File: 3230322e35352e3136392e302f32342d3234203d3e203137373639.roa (raw, json)
Hash identifier: 44mRlsx4iVAKs6V8CS8fG/JX89Mk1KlAJik4Z/oAau4=
Subject key identifier: A1:61:55:9C:65:F1:1E:7C:DE:AF:19:43:01:6F:F7:95:B3:C2:E7:9E
Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09
Certificate serial: 5009F2E31CB92AE51F680A5AAD0C24F1EADCB684
Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa
Signing time: Fri 27 Sep 2024 06:01:27 +0000
ROA not before: Fri 27 Sep 2024 05:56:27 +0000
ROA not after: Fri 26 Sep 2025 06:01:27 +0000
asID: 17769
IP address blocks: 202.55.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:09:f2:e3:1c:b9:2a:e5:1f:68:0a:5a:ad:0c:24:f1:ea:dc:b6:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09
Validity
Not Before: Sep 27 05:56:27 2024 GMT
Not After : Sep 26 06:01:27 2025 GMT
Subject: CN=A161559C65F11E7CDEAF1943016FF795B3C2E79E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:aa:04:ec:9d:68:08:9c:4a:b8:6b:5d:95:9f:
29:15:a7:91:fb:51:37:76:ba:10:a8:8d:ac:c7:01:
d2:d3:f4:78:3b:13:f1:a2:b3:d8:8a:51:fa:7e:db:
f4:91:53:b6:f6:fd:a1:c3:64:0a:b5:0e:7b:48:e8:
ae:a2:c6:cf:a0:ef:32:5a:64:73:a0:17:e4:af:d4:
0a:6d:54:a8:b9:db:0a:5e:cd:6a:2e:55:8b:c2:6b:
e2:4f:19:75:0f:18:f4:50:a8:f5:3c:76:f2:1d:29:
7b:b2:1d:6b:f3:96:48:6c:e1:ea:f7:38:7b:9d:7c:
2c:1e:42:a5:b1:07:30:48:60:88:f6:ec:8a:7f:6c:
2e:7a:33:09:ca:87:e7:df:56:c6:9a:b3:02:df:0c:
32:6a:cf:c2:a4:0e:96:65:a4:7b:20:87:2c:7d:12:
1b:7f:b2:e5:98:49:3f:d7:00:1a:1f:4c:4e:9d:18:
0c:64:27:36:59:bb:49:4c:03:a3:d5:b6:a7:09:05:
90:ae:51:26:43:16:72:f0:17:e1:16:55:bb:af:27:
8a:48:90:1d:0e:29:5c:58:cb:2f:ff:40:c9:2c:3c:
3e:2d:78:9a:f1:0b:f0:c5:e2:cf:59:2f:32:ad:5c:
58:9c:fc:3f:5a:15:f7:a2:df:a7:79:fd:8a:9b:26:
0b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:61:55:9C:65:F1:1E:7C:DE:AF:19:43:01:6F:F7:95:B3:C2:E7:9E
X509v3 Authority Key Identifier:
keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136392e302f32342d3234203d3e203137373639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.55.169.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:7b:02:49:d9:87:79:61:c5:f0:1d:4b:6a:9e:4c:bc:3a:60:
b3:da:f9:c5:7e:87:cb:1c:20:54:37:fc:80:71:0d:ad:4c:b5:
ad:d8:fd:8b:cd:4b:71:fd:d5:77:1f:e7:4f:2d:cc:22:25:5f:
3d:c5:0f:01:62:50:0c:e2:17:43:e0:fe:73:22:3b:ef:30:ed:
e8:17:a4:f1:43:80:49:f9:c3:af:1d:c9:1f:37:ce:34:a1:df:
fc:eb:c1:d2:99:cd:0f:29:8c:a3:89:37:f1:a6:e3:52:d0:72:
70:1a:cd:91:ce:69:5b:d0:cb:9a:a1:3f:4b:50:39:5c:5b:03:
0e:c2:66:1f:00:aa:5e:90:96:27:15:90:1b:78:66:26:35:4b:
b6:ec:0e:6b:7a:e8:5b:18:80:ae:cf:1c:c7:6c:20:aa:18:d5:
ff:da:ed:bd:e6:ad:70:e2:0e:dc:4d:8c:d7:f7:d9:79:15:e3:
68:e4:fc:90:90:db:c3:8f:01:23:f5:be:f5:a8:36:af:c6:c0:
76:df:32:d2:da:26:dd:50:62:ca:86:53:64:ea:49:fb:e9:ea:
46:10:84:25:22:20:b0:de:ad:bc:f3:4d:9c:e8:d9:e2:1d:2a:
74:1b:0e:67:ce:70:28:44:79:f9:0c:5a:a2:b1:82:df:28:42:
dc:fe:c7:ee
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUUAny4xy5KuUfaAparQwk8erctoQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFB
Q0UwQUIwOTAeFw0yNDA5MjcwNTU2MjdaFw0yNTA5MjYwNjAxMjdaMDMxMTAvBgNV
BAMTKEExNjE1NTlDNjVGMTFFN0NERUFGMTk0MzAxNkZGNzk1QjNDMkU3OUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1qgTsnWgInEq4a12VnykVp5H7
UTd2uhCojazHAdLT9Hg7E/Gis9iKUfp+2/SRU7b2/aHDZAq1DntI6K6ixs+g7zJa
ZHOgF+Sv1AptVKi52wpezWouVYvCa+JPGXUPGPRQqPU8dvIdKXuyHWvzlkhs4er3
OHudfCweQqWxBzBIYIj27Ip/bC56MwnKh+ffVsaaswLfDDJqz8KkDpZlpHsghyx9
Eht/suWYST/XABofTE6dGAxkJzZZu0lMA6PVtqcJBZCuUSZDFnLwF+EWVbuvJ4pI
kB0OKVxYyy//QMksPD4teJrxC/DF4s9ZLzKtXFic/D9aFfei36d5/YqbJguLAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUoWFVnGXxHnzerxlDAW/3lbPC554wHwYDVR0j
BBgwFoAUxFEWbUlTlkkGOvj0k/UcsazgqwkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
MzBkYzE0MC02Y2Q0LTRhNTktYjI1Yy0zYTE0MTg1MWM5ZWMvMC9DNDUxMTY2RDQ5
NTM5NjQ5MDYzQUY4RjQ5M0Y1MUNCMUFDRTBBQjA5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzQ1MTE2NkQ0OTUzOTY0OTA2M0FGOEY0OTNGNTFDQjFBQ0Uw
QUIwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzMGRjMTQwLTZjZDQtNGE1OS1i
MjVjLTNhMTQxODUxYzllYy8wLzMyMzAzMjJlMzUzNTJlMzEzNjM5MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo3qTANBgkqhkiG
9w0BAQsFAAOCAQEApHsCSdmHeWHF8B1Lap5MvDpgs9r5xX6HyxwgVDf8gHENrUy1
rdj9i81Lcf3Vdx/nTy3MIiVfPcUPAWJQDOIXQ+D+cyI77zDt6Bek8UOASfnDrx3J
HzfONKHf/OvB0pnNDymMo4k38abjUtBycBrNkc5pW9DLmqE/S1A5XFsDDsJmHwCq
XpCWJxWQG3hmJjVLtuwOa3roWxiArs8cx2wgqhjV/9rtveatcOIO3E2M1/fZeRXj
aOT8kJDbw48BI/W+9ag2r8bAdt8y0tom3VBiyoZTZOpJ++nqRhCEJSIgsN6tvPNN
nOjZ4h0qdBsOZ85wKER5+QxaorGC3yhC3P7H7g==
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:36 2025 by rpki-client