Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133352e302f32342d3234203d3e2034333832.roa
File: 3230322e39332e3133352e302f32342d3234203d3e2034333832.roa (raw, json)
Hash identifier: rB0iPDe1IvoHV8TArDppc7ofeTkq1pWYD7pulqib69A=
Subject key identifier: 03:38:16:7B:94:DE:D1:A4:08:D4:88:70:80:92:18:F9:D9:66:4C:D7
Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C
Certificate serial: 249E620301A0B8468E4267D3B3A3A48EF6AA358C
Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133352e302f32342d3234203d3e2034333832.roa
Signing time: Wed 21 Aug 2024 14:01:41 +0000
ROA not before: Wed 21 Aug 2024 13:56:41 +0000
ROA not after: Wed 20 Aug 2025 14:01:41 +0000
asID: 4382
IP address blocks: 202.93.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:9e:62:03:01:a0:b8:46:8e:42:67:d3:b3:a3:a4:8e:f6:aa:35:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C
Validity
Not Before: Aug 21 13:56:41 2024 GMT
Not After : Aug 20 14:01:41 2025 GMT
Subject: CN=0338167B94DED1A408D48870809218F9D9664CD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f1:1e:d1:fc:3d:4d:c0:90:9c:63:d3:84:77:
cf:e6:0d:33:0c:4d:04:72:9a:18:4c:c6:0d:ea:25:
44:82:42:9f:be:c7:85:8d:3e:a3:72:3a:7f:f8:73:
3c:20:d0:9e:69:90:07:ae:0b:31:a0:bd:31:f8:cc:
ec:dd:fb:b3:55:89:3c:5d:c7:a6:cf:59:e9:ef:e7:
96:f9:3f:f1:44:ef:c1:31:cc:da:d0:20:92:e1:6b:
1c:f9:cc:29:22:12:e3:c9:42:4b:0c:31:29:6b:1b:
7f:28:16:9f:53:5d:36:50:32:a7:4e:d8:69:53:8d:
7a:f7:c3:aa:3e:eb:96:81:0a:22:36:1a:6a:0f:f3:
9d:40:d1:a6:53:ff:e9:ec:33:91:8a:0e:cf:63:4b:
74:c1:f6:ee:79:e4:bd:92:d5:82:3c:0b:02:00:69:
b6:e4:51:1e:26:41:dc:57:08:52:35:79:ee:f2:e5:
1f:97:2d:97:04:fe:9d:19:c3:6b:03:47:1a:ce:1d:
d3:a3:bb:1f:d0:bb:0f:e4:c4:25:d9:dd:57:2f:3d:
2d:c8:ee:14:63:14:04:98:68:17:ec:74:ea:13:86:
21:33:52:da:1a:72:f8:6a:b8:26:03:7e:b3:a0:a0:
e1:1e:40:93:25:3b:28:cb:ea:db:10:72:36:18:bb:
f7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:38:16:7B:94:DE:D1:A4:08:D4:88:70:80:92:18:F9:D9:66:4C:D7
X509v3 Authority Key Identifier:
keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3230322e39332e3133352e302f32342d3234203d3e2034333832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.93.135.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:26:16:b1:05:83:a0:3b:d8:d9:2b:34:68:8b:90:60:8d:51:
63:72:68:da:d2:be:ce:fd:2d:7f:7b:6c:a8:56:ff:b8:06:bf:
1c:71:22:31:ef:8f:2c:f3:4a:93:db:28:8a:2d:d6:51:9e:36:
92:70:db:61:73:ca:30:82:71:65:0d:d1:f4:c0:7b:c2:28:88:
98:4b:3c:83:ca:f3:07:26:41:39:ad:66:78:02:d2:9f:21:24:
f9:bc:d6:8e:f2:1d:30:4c:2d:69:c5:7e:61:d3:28:f1:6f:80:
d0:a2:e5:68:ad:9b:a7:33:93:6a:fe:53:b2:98:7d:d9:d3:67:
7a:52:69:8e:78:ae:02:e2:cc:be:27:49:a3:4f:fc:21:3f:f4:
31:2c:ae:99:52:83:2f:99:67:b1:a7:0f:4c:d2:1b:d6:4c:07:
bd:19:0a:48:65:39:c0:77:d2:d3:b2:0e:8a:53:5b:d6:97:b3:
1b:c1:bd:5b:10:46:33:26:aa:ae:1a:08:4e:03:e2:d1:83:64:
d0:0c:3c:fc:2c:8f:29:5e:3a:3e:af:ce:c6:1b:b7:3c:20:7c:
30:ab:b5:5f:a2:30:f1:aa:96:ae:23:66:7b:80:03:a3:e9:0d:
33:e8:8e:02:73:1a:e2:fb:91:07:50:e8:f9:01:59:18:9f:6d:
4b:0a:8c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:16:49 2025 by rpki-client