Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e203435333035.roa
File: 3230322e34372e3138382e302f32332d3234203d3e203435333035.roa (raw, json)
Hash identifier: uGhhNW19tGYzbcTLuvLURoZvztF1sLL4YLt+jQcIXcs=
Subject key identifier: 2B:91:A3:EC:6C:86:0C:8A:7E:61:7B:18:D0:F4:51:F1:92:2C:58:ED
Certificate issuer: /CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E
Certificate serial: 415F2DDFDF369A10693D1469E3F3C0AD8B925218
Authority key identifier: 79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e203435333035.roa
Signing time: Wed 09 Oct 2024 16:39:36 +0000
ROA not before: Wed 09 Oct 2024 16:34:36 +0000
ROA not after: Wed 08 Oct 2025 16:39:36 +0000
asID: 45305
IP address blocks: 202.47.188.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:5f:2d:df:df:36:9a:10:69:3d:14:69:e3:f3:c0:ad:8b:92:52:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E
Validity
Not Before: Oct 9 16:34:36 2024 GMT
Not After : Oct 8 16:39:36 2025 GMT
Subject: CN=2B91A3EC6C860C8A7E617B18D0F451F1922C58ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b8:ff:79:f5:ec:4e:46:54:c0:b0:b1:a3:49:
cd:a4:58:1b:81:fd:7a:8a:c8:1b:29:5c:2f:fa:71:
3f:56:d3:30:c7:ea:b1:5b:18:6e:7b:f2:ed:14:91:
96:4f:ff:ac:68:ad:c4:08:b5:0c:87:bf:53:13:74:
ca:7d:74:ff:55:0c:26:21:08:f3:c5:8e:df:09:4e:
07:aa:d4:d9:89:df:b6:27:79:35:1c:f5:f9:e5:d1:
a8:18:1a:af:a8:85:54:13:3f:b3:f0:9a:15:17:6e:
6e:09:a0:0e:f1:76:79:c1:00:29:54:f3:db:09:7c:
5d:4c:fe:b6:a7:09:e4:1f:ab:64:38:9b:5f:a3:f1:
e5:f8:4f:dd:12:60:93:b3:4e:1a:79:f2:7d:bd:f3:
3d:13:5e:89:a6:2a:48:b9:d0:89:07:22:a1:b9:bf:
47:79:4b:d5:46:ba:31:0f:a3:4a:e3:0b:af:d6:be:
96:52:03:69:de:36:4c:cb:8f:6f:a5:60:1c:0c:c0:
fd:11:14:e3:ea:bc:53:68:ad:8f:69:a5:51:d1:ec:
b7:53:5c:b6:fd:50:73:11:7c:29:e4:08:76:0f:b6:
05:da:3a:02:f1:9d:98:2a:e0:f7:ee:2d:25:a1:e5:
34:80:a6:78:bb:fc:8f:85:db:9d:23:9b:45:89:24:
39:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:91:A3:EC:6C:86:0C:8A:7E:61:7B:18:D0:F4:51:F1:92:2C:58:ED
X509v3 Authority Key Identifier:
keyid:79:BD:07:5D:1B:C4:BD:8A:E0:C2:6E:FD:2D:37:22:CC:F6:EF:F6:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79BD075D1BC4BD8AE0C26EFD2D3722CCF6EFF65E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ee94014-87fa-4bc2-b1c6-7fd2a89476f3/0/3230322e34372e3138382e302f32332d3234203d3e203435333035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.47.188.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:bb:b0:4b:0c:ab:4b:98:6b:ea:93:d3:2c:6d:db:90:43:27:
20:d2:e0:06:62:6e:32:c2:7f:f8:d3:9e:39:13:6b:71:fa:cc:
ec:bb:ea:9d:7b:60:1c:67:79:c2:58:35:df:34:ab:49:a6:e3:
a0:82:4a:57:81:11:77:48:f7:7a:eb:39:85:c5:cd:c7:49:12:
91:df:f3:20:fe:4a:a8:90:98:39:88:78:47:a5:59:c3:af:1a:
d2:b0:d2:c3:8e:39:bc:7d:d5:c8:62:1b:c3:ed:13:fe:10:d5:
f4:67:dd:6c:54:62:8b:73:e5:8f:2b:e7:fb:23:f4:4c:2c:15:
e9:34:71:07:b8:eb:8d:e3:c0:d5:ba:9a:23:5a:d7:fa:ea:c1:
20:6d:fa:7d:f9:b9:b8:ff:79:87:ba:e1:27:49:9e:fd:aa:38:
f7:b3:9f:75:3d:83:ea:15:7d:0d:94:30:be:19:ef:2d:c8:e1:
07:84:56:b2:68:15:2b:b7:1d:48:40:d0:bd:0d:f0:5e:2c:cb:
f6:9e:78:d9:65:a7:f9:d3:71:86:27:6e:41:4e:27:35:f1:22:
41:1f:7f:d4:3c:11:c9:87:9e:a1:c8:2f:0d:8a:ac:b6:fe:09:
e2:19:cd:05:a5:8d:40:ab:78:9b:20:4b:6d:bf:6d:65:29:4e:
e4:8c:35:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:50:43 2025 by rpki-client