Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235342e302f32342d3234203d3e20313338303734.roa
File: 3230322e34332e3235342e302f32342d3234203d3e20313338303734.roa (raw, json)
Hash identifier: mSUh/L4o3WxZWaFk4Syf4IAQb9zhHbALhTc1/MotUbk=
Subject key identifier: 76:86:FC:F3:14:94:58:F7:5A:55:C5:F8:6D:0D:0F:E0:42:36:A5:71
Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB
Certificate serial: 4FB59E02899A3C8939A496DD5405B0C237158057
Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235342e302f32342d3234203d3e20313338303734.roa
Signing time: Mon 30 Dec 2024 02:00:02 +0000
ROA not before: Mon 30 Dec 2024 01:55:02 +0000
ROA not after: Mon 29 Dec 2025 02:00:02 +0000
asID: 138074
IP address blocks: 202.43.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:b5:9e:02:89:9a:3c:89:39:a4:96:dd:54:05:b0:c2:37:15:80:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB
Validity
Not Before: Dec 30 01:55:02 2024 GMT
Not After : Dec 29 02:00:02 2025 GMT
Subject: CN=7686FCF3149458F75A55C5F86D0D0FE04236A571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:25:68:fc:20:46:29:69:fa:1e:15:15:b9:cf:
41:10:c3:60:95:51:b4:ca:68:d7:b4:68:01:5a:49:
8e:17:05:54:55:f2:fa:c2:e5:2e:12:99:71:b0:a9:
42:38:52:8b:98:f9:55:f7:59:ea:fd:42:2c:18:6a:
86:c4:fb:a7:9f:b0:40:4d:4e:cf:80:9f:08:bc:2a:
24:1a:f6:a4:14:6a:e9:d5:4f:d0:c7:d8:70:cc:db:
d0:e6:62:a8:f9:73:e8:40:00:9a:ac:a1:2c:19:5a:
e6:0d:e3:74:d0:10:df:e3:65:81:52:63:b2:09:5c:
f1:92:70:bc:96:a7:8c:4b:df:01:e9:2b:36:a5:e8:
57:97:7f:c1:5b:11:96:0f:1b:e1:f9:48:73:7f:a3:
fc:b5:ba:63:7e:95:81:ac:64:06:01:98:5b:5e:d1:
6c:b9:18:ba:4e:fe:75:09:5d:9b:5b:6a:4a:09:43:
b5:d7:f5:da:1d:0a:a5:8e:a0:3f:17:7b:ce:7f:45:
dd:53:b6:91:5a:2c:d7:84:47:77:e9:79:45:ad:cc:
33:6a:3b:32:4c:2c:59:22:21:b6:ef:21:7b:3e:ec:
8b:b1:64:8f:af:a6:a6:e9:95:07:27:99:5c:fe:64:
6f:7a:47:4a:a5:2e:01:a1:9c:e5:f9:44:42:f1:1d:
2b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:86:FC:F3:14:94:58:F7:5A:55:C5:F8:6D:0D:0F:E0:42:36:A5:71
X509v3 Authority Key Identifier:
keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3230322e34332e3235342e302f32342d3234203d3e20313338303734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.43.254.0/24
Signature Algorithm: sha256WithRSAEncryption
29:0a:1a:77:eb:8a:0d:db:cb:ef:e6:46:e6:06:43:35:56:f1:
aa:10:33:ef:65:20:6b:d1:c2:7f:ad:56:80:13:86:2c:10:76:
42:69:77:81:61:4e:e3:28:12:ee:c1:23:ac:7c:0d:5d:4a:4f:
56:e3:3d:ac:cd:b6:e3:95:cd:73:c1:fe:63:d5:0a:6c:2f:fe:
7d:f5:81:b3:26:38:de:3c:ee:d5:d0:5f:73:24:6b:53:ab:77:
4e:a9:a2:b2:86:fe:12:ae:ea:58:4f:70:9e:85:6f:5b:aa:e9:
b8:db:bc:f0:c3:12:26:94:17:80:da:9b:28:62:67:a8:21:78:
16:77:cd:48:64:dd:ff:90:f8:a3:52:92:7d:67:ce:73:f8:95:
6e:a8:35:28:f4:bc:96:f4:ab:87:1b:74:83:88:df:92:d6:7d:
0c:77:e7:4f:32:76:ea:1b:e5:77:7b:08:9f:cb:aa:f4:22:c8:
fd:ee:d3:2b:97:6d:72:a7:ca:0e:10:fb:1f:c3:5e:b9:c0:24:
c7:92:f9:e2:35:ca:d4:7e:46:c9:d6:a4:1d:14:58:57:5d:74:
d2:f9:6b:b6:23:af:8e:41:c4:7d:6b:b0:e0:0e:8a:af:72:18:
5a:56:af:56:61:09:71:bf:c1:3c:ed:e3:4e:a9:e5:90:5d:a3:
ba:67:48:ed
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUT7WeAomaPIk5pJbdVAWwwjcVgFcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC
RUZCM0FCQjAeFw0yNDEyMzAwMTU1MDJaFw0yNTEyMjkwMjAwMDJaMDMxMTAvBgNV
BAMTKDc2ODZGQ0YzMTQ5NDU4Rjc1QTU1QzVGODZEMEQwRkUwNDIzNkE1NzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeJWj8IEYpafoeFRW5z0EQw2CV
UbTKaNe0aAFaSY4XBVRV8vrC5S4SmXGwqUI4UouY+VX3Wer9QiwYaobE+6efsEBN
Ts+Anwi8KiQa9qQUaunVT9DH2HDM29DmYqj5c+hAAJqsoSwZWuYN43TQEN/jZYFS
Y7IJXPGScLyWp4xL3wHpKzal6FeXf8FbEZYPG+H5SHN/o/y1umN+lYGsZAYBmFte
0Wy5GLpO/nUJXZtbakoJQ7XX9dodCqWOoD8Xe85/Rd1TtpFaLNeER3fpeUWtzDNq
OzJMLFkiIbbvIXs+7IuxZI+vpqbplQcnmVz+ZG96R0qlLgGhnOX5RELxHSsTAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUdob88xSUWPdaVcX4bQ0P4EI2pXEwHwYDVR0j
BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x
YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3
NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC
M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05
YTZlLTAxYzljNTNjZDhmOS8wLzMyMzAzMjJlMzQzMzJlMzIzNTM0MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyiv+MA0GCSqG
SIb3DQEBCwUAA4IBAQApChp364oN28vv5kbmBkM1VvGqEDPvZSBr0cJ/rVaAE4Ys
EHZCaXeBYU7jKBLuwSOsfA1dSk9W4z2szbbjlc1zwf5j1QpsL/599YGzJjjePO7V
0F9zJGtTq3dOqaKyhv4SrupYT3CehW9bqum427zwwxImlBeA2psoYmeoIXgWd81I
ZN3/kPijUpJ9Z85z+JVuqDUo9LyW9KuHG3SDiN+S1n0Md+dPMnbqG+V3ewify6r0
Isj97tMrl21yp8oOEPsfw165wCTHkvniNcrUfkbJ1qQdFFhXXXTS+Wu2I6+OQcR9
a7DgDoqvchhaVq9WYQlxv8E87eNOqeWQXaO6Z0jt
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:57:20 2025 by rpki-client