Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32332d3234203d3e20313430303331.roa
File: 3230322e3136322e3230342e302f32332d3234203d3e20313430303331.roa (raw, json)
Hash identifier: yDV3Qprz/ajGL0+kUB7hUpETudixN9frdkAYvKy7Q4g=
Subject key identifier: 88:FB:53:0C:92:CC:DE:2C:44:F7:C4:1E:F8:AF:F8:82:76:E2:13:43
Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Certificate serial: 63E5BDEC746B1207B933A7AF5EEEE40FA2A2256E
Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32332d3234203d3e20313430303331.roa
Signing time: Fri 23 Aug 2024 06:00:02 +0000
ROA not before: Fri 23 Aug 2024 05:55:02 +0000
ROA not after: Fri 22 Aug 2025 06:00:02 +0000
asID: 140031
IP address blocks: 202.162.204.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:e5:bd:ec:74:6b:12:07:b9:33:a7:af:5e:ee:e4:0f:a2:a2:25:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984
Validity
Not Before: Aug 23 05:55:02 2024 GMT
Not After : Aug 22 06:00:02 2025 GMT
Subject: CN=88FB530C92CCDE2C44F7C41EF8AFF88276E21343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c0:25:8e:b2:1f:bf:6c:05:00:c7:50:6e:3a:
73:7a:3b:4a:70:ba:e0:72:e6:16:fd:96:ca:48:d5:
04:4d:92:0e:a2:a2:9c:a1:63:64:28:1d:7f:f3:bc:
c5:95:d4:10:0a:c1:3b:6f:5c:37:9c:b5:14:8d:ab:
01:45:02:84:03:30:ed:50:41:75:85:bb:6c:d1:50:
6b:4b:30:e8:67:4c:ed:72:f3:aa:16:71:81:29:af:
24:d1:4a:30:ac:d7:c5:99:5c:98:62:96:3d:b3:e8:
e7:9b:83:db:e5:b4:92:10:1e:96:9c:f1:2c:31:c0:
f2:70:de:e2:f7:59:91:e7:7d:e5:9e:a4:3a:8d:90:
e4:2d:1a:b9:b6:80:e3:2c:ff:48:b8:c4:48:50:86:
a3:7a:f6:c3:5a:b7:c7:e9:62:f6:7c:1e:14:39:d6:
f7:c8:d7:39:76:61:36:32:a5:8d:87:b6:23:e6:d6:
7e:b0:da:27:59:38:75:c7:50:af:26:23:34:19:ac:
80:69:a5:90:29:2a:51:26:96:45:9f:f4:62:37:c0:
92:5f:0f:4e:9e:fd:99:d1:96:a8:1c:3c:b1:b8:2c:
01:d8:d5:1d:92:5f:7b:95:76:e8:23:fa:25:39:69:
57:e6:01:d9:7c:da:9c:b4:f4:20:2b:a4:0c:af:b5:
40:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:FB:53:0C:92:CC:DE:2C:44:F7:C4:1E:F8:AF:F8:82:76:E2:13:43
X509v3 Authority Key Identifier:
keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/3230322e3136322e3230342e302f32332d3234203d3e20313430303331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.162.204.0/23
Signature Algorithm: sha256WithRSAEncryption
78:15:8c:78:be:c2:e3:7f:5f:52:2d:5d:31:31:07:5c:6a:6b:
f1:12:bb:bc:e9:ac:2a:8c:e4:b8:3c:69:d2:4c:15:30:e9:41:
0b:cf:31:9f:cf:2f:9d:bc:65:2e:f2:8b:fd:9f:47:cb:91:9c:
dd:39:77:34:a0:48:cd:76:49:fd:f8:ff:c7:72:9d:d6:be:11:
fb:b5:32:72:5c:5c:2a:d2:56:db:62:14:5c:36:a4:1d:6c:65:
2b:5a:ab:e7:bd:49:5d:72:8f:82:a4:e6:da:db:80:e3:46:48:
bd:9f:a7:cb:3b:37:e8:c4:d0:af:25:76:fe:ef:f2:33:69:ae:
d2:be:67:2c:df:10:4b:f3:b7:ed:97:27:fc:c2:35:42:a7:1e:
6f:3f:e4:14:6a:52:cc:e7:f5:73:3b:94:a9:ed:20:09:47:b0:
38:c2:68:ae:c4:fd:7a:75:37:eb:e7:ac:13:99:e6:bd:90:10:
c6:68:68:2b:b7:e9:50:12:93:65:ee:ba:62:6d:22:88:be:d8:
b0:3b:06:40:57:d9:1f:0e:2f:fb:aa:f7:0d:8e:22:b5:ec:55:
69:46:43:ab:fa:a0:31:af:ef:ab:ae:4c:27:01:7f:72:73:4b:
6e:6f:3b:fd:ec:13:33:4a:c7:99:ca:ad:7a:c2:ac:73:fb:1a:
c9:f5:92:e6
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUY+W97HRrEge5M6evXu7kD6KiJW4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0
RkE2Njk4NDAeFw0yNDA4MjMwNTU1MDJaFw0yNTA4MjIwNjAwMDJaMDMxMTAvBgNV
BAMTKDg4RkI1MzBDOTJDQ0RFMkM0NEY3QzQxRUY4QUZGODgyNzZFMjEzNDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8wCWOsh+/bAUAx1BuOnN6O0pw
uuBy5hb9lspI1QRNkg6iopyhY2QoHX/zvMWV1BAKwTtvXDectRSNqwFFAoQDMO1Q
QXWFu2zRUGtLMOhnTO1y86oWcYEpryTRSjCs18WZXJhilj2z6Oebg9vltJIQHpac
8SwxwPJw3uL3WZHnfeWepDqNkOQtGrm2gOMs/0i4xEhQhqN69sNat8fpYvZ8HhQ5
1vfI1zl2YTYypY2HtiPm1n6w2idZOHXHUK8mIzQZrIBppZApKlEmlkWf9GI3wJJf
D06e/ZnRlqgcPLG4LAHY1R2SX3uVdugj+iU5aVfmAdl82py09CArpAyvtUBLAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUiPtTDJLM3ixE98Qe+K/4gnbiE0MwHwYDVR0j
BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF
OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2
Njk4NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i
NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzAzMjJlMzEzNjMyMmUzMjMwMzQyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMzMzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKoswwDQYJ
KoZIhvcNAQELBQADggEBAHgVjHi+wuN/X1ItXTExB1xqa/ESu7zprCqM5Lg8adJM
FTDpQQvPMZ/PL528ZS7yi/2fR8uRnN05dzSgSM12Sf34/8dynda+Efu1MnJcXCrS
VttiFFw2pB1sZStaq+e9SV1yj4Kk5trbgONGSL2fp8s7N+jE0K8ldv7v8jNprtK+
ZyzfEEvzt+2XJ/zCNUKnHm8/5BRqUszn9XM7lKntIAlHsDjCaK7E/Xp1N+vnrBOZ
5r2QEMZoaCu36VASk2XuumJtIoi+2LA7BkBX2R8OL/uq9w2OIrXsVWlGQ6v6oDGv
76uuTCcBf3JzS25vO/3sEzNKx5nKrXrCrHP7Gsn1kuY=
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:56:49 2025 by rpki-client