Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa
File: 3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa (raw, json)
Hash identifier: b8zDNPy2xqVlrDOAlQUUDIWMMOfRTaQ0mid2lPIB3KA=
Subject key identifier: DD:DA:9E:5A:84:91:27:85:CB:7D:18:18:16:2C:EE:D7:06:AA:B1:31
Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB
Certificate serial: 263B6EBC0374739EC8C545BE18B21751EDD534F6
Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa
Signing time: Mon 30 Dec 2024 02:00:02 +0000
ROA not before: Mon 30 Dec 2024 01:55:02 +0000
ROA not after: Mon 29 Dec 2025 02:00:02 +0000
asID: 138074
IP address blocks: 202.43.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:3b:6e:bc:03:74:73:9e:c8:c5:45:be:18:b2:17:51:ed:d5:34:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB
Validity
Not Before: Dec 30 01:55:02 2024 GMT
Not After : Dec 29 02:00:02 2025 GMT
Subject: CN=DDDA9E5A84912785CB7D1818162CEED706AAB131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c0:d3:21:a1:da:4a:33:8d:ac:85:b4:45:29:
d9:45:e2:49:f9:16:c5:3b:3b:9c:b2:7e:c4:84:58:
52:56:79:2c:22:ec:09:31:f3:bf:f1:3a:0b:de:9d:
88:34:6a:c6:a4:84:65:86:e5:34:eb:41:73:bc:d5:
b6:84:b3:59:27:f3:d4:3e:30:db:6f:10:6f:85:cc:
3f:7c:03:72:49:2c:65:f3:9e:7b:e5:12:cc:61:d1:
50:19:56:1c:21:f9:4d:73:36:63:f4:df:15:94:dc:
80:13:54:75:b2:17:50:ea:8b:e3:5d:22:e1:df:6b:
64:3f:c9:cc:36:d9:cd:03:e4:ef:27:9c:b0:1c:4d:
41:cf:c3:f4:52:ea:42:f8:68:48:18:cd:d4:c9:08:
7b:cf:5e:79:41:aa:b7:2b:34:38:7b:6a:3a:f3:22:
e2:76:ee:31:bf:4a:6e:42:4e:03:48:2f:ba:5a:c1:
6a:0f:61:b2:fb:a5:da:04:bb:8a:8d:09:a3:f1:50:
93:64:3a:4b:f9:b9:f8:49:d1:5c:14:4c:41:78:08:
a6:03:a8:f0:ae:77:b1:be:22:bc:f4:ee:11:a2:a3:
31:04:6f:89:26:ba:8d:99:68:82:80:9d:f7:64:f9:
ef:f5:b9:17:4f:79:dd:70:ee:ff:02:01:ba:c9:fd:
b1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:DA:9E:5A:84:91:27:85:CB:7D:18:18:16:2C:EE:D7:06:AA:B1:31
X509v3 Authority Key Identifier:
keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235322e302f32342d3234203d3e20313338303734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.43.252.0/24
Signature Algorithm: sha256WithRSAEncryption
79:29:b7:e2:7f:eb:20:6d:f4:30:30:1a:9d:09:10:72:a8:45:
d9:e9:0f:ff:ad:39:b7:50:38:d0:56:6e:35:c6:0b:57:2d:02:
63:fd:a3:18:4e:18:d8:9c:bb:0e:f3:cd:50:72:c0:a9:f5:fc:
71:d4:ab:09:ee:99:87:8b:3d:4d:77:34:59:8a:16:cb:d0:f5:
63:4f:57:18:d7:68:9a:8e:1e:f2:0f:69:58:b6:b9:c6:55:41:
d7:ce:4c:d9:08:19:e0:13:f4:c6:ed:48:c6:40:2e:77:1f:25:
96:67:d1:62:f9:d5:d3:2a:be:4e:b4:87:6c:18:d2:63:d0:66:
9b:7b:8c:af:e8:01:a2:2c:3e:58:43:e1:75:17:af:b9:46:4c:
11:bb:f3:8c:05:2e:d1:70:73:5b:c2:e6:ca:b2:66:b5:e6:9b:
f0:cf:f8:b0:95:de:b0:71:46:57:f3:34:fe:9f:be:50:1e:94:
1b:80:8a:5b:d2:ed:40:d4:b9:bf:47:58:37:2f:46:0f:5f:0a:
a2:24:8b:61:d2:5f:6d:25:df:19:1d:f8:70:82:f6:e0:e6:20:
c7:ec:4c:c8:76:42:4c:2d:3b:ab:54:d6:f0:f8:44:2b:1f:4a:
64:37:ac:14:74:44:66:e1:92:0d:e2:0b:45:b4:19:95:e0:47:
47:0d:fc:3c
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUJjtuvAN0c57IxUW+GLIXUe3VNPYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC
RUZCM0FCQjAeFw0yNDEyMzAwMTU1MDJaFw0yNTEyMjkwMjAwMDJaMDMxMTAvBgNV
BAMTKEREREE5RTVBODQ5MTI3ODVDQjdEMTgxODE2MkNFRUQ3MDZBQUIxMzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAwNMhodpKM42shbRFKdlF4kn5
FsU7O5yyfsSEWFJWeSwi7Akx87/xOgvenYg0asakhGWG5TTrQXO81baEs1kn89Q+
MNtvEG+FzD98A3JJLGXznnvlEsxh0VAZVhwh+U1zNmP03xWU3IATVHWyF1Dqi+Nd
IuHfa2Q/ycw22c0D5O8nnLAcTUHPw/RS6kL4aEgYzdTJCHvPXnlBqrcrNDh7ajrz
IuJ27jG/Sm5CTgNIL7pawWoPYbL7pdoEu4qNCaPxUJNkOkv5ufhJ0VwUTEF4CKYD
qPCud7G+Irz07hGiozEEb4kmuo2ZaIKAnfdk+e/1uRdPed1w7v8CAbrJ/bHHAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU3dqeWoSRJ4XLfRgYFizu1waqsTEwHwYDVR0j
BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3
NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC
M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05
YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv8MA0GCSqG
SIb3DQEBCwUAA4IBAQB5Kbfif+sgbfQwMBqdCRByqEXZ6Q//rTm3UDjQVm41xgtX
LQJj/aMYThjYnLsO881QcsCp9fxx1KsJ7pmHiz1NdzRZihbL0PVjT1cY12iajh7y
D2lYtrnGVUHXzkzZCBngE/TG7UjGQC53HyWWZ9Fi+dXTKr5OtIdsGNJj0Gabe4yv
6AGiLD5YQ+F1F6+5RkwRu/OMBS7RcHNbwubKsma15pvwz/iwld6wcUZX8zT+n75Q
HpQbgIpb0u1A1Lm/R1g3L0YPXwqiJIth0l9tJd8ZHfhwgvbg5iDH7EzIdkJMLTur
VNbw+EQrH0pkN6wUdERm4ZIN4gtFtBmV4EdHDfw8
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:56:39 2025 by rpki-client