Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa
File: 3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa (raw, json)
Hash identifier: 0amdlqtrcYJjDto4OJYklzgZ1YTSYlkdFSOoVx3OhSE=
Subject key identifier: EE:4F:40:EC:09:BA:F3:CF:0C:42:4E:FF:AB:E8:B4:47:C7:D0:7A:19
Certificate issuer: /CN=C2E929DFB05F81B91880BC808154365AECAC27D2
Certificate serial: 0E8BC3B1F4681C9CA95A78E3B700DDEB20F46C63
Authority key identifier: C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa
Signing time: Sun 04 Aug 2024 15:21:26 +0000
ROA not before: Sun 04 Aug 2024 15:16:26 +0000
ROA not after: Sun 03 Aug 2025 15:21:26 +0000
asID: 152024
IP address blocks: 202.47.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:8b:c3:b1:f4:68:1c:9c:a9:5a:78:e3:b7:00:dd:eb:20:f4:6c:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2E929DFB05F81B91880BC808154365AECAC27D2
Validity
Not Before: Aug 4 15:16:26 2024 GMT
Not After : Aug 3 15:21:26 2025 GMT
Subject: CN=EE4F40EC09BAF3CF0C424EFFABE8B447C7D07A19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6c:09:a5:81:89:88:03:bf:bf:79:b9:b3:ee:
4f:45:f1:19:ac:a3:ea:9d:e2:8a:17:19:b2:15:74:
71:00:da:78:94:dd:50:13:e1:0a:8e:a5:86:d0:08:
ec:44:3a:97:f8:98:ab:57:0d:bf:a4:5d:8f:81:e4:
c3:7c:5d:4e:31:d5:be:1b:58:66:ec:51:72:a7:e8:
b3:57:62:60:33:75:4a:3f:41:2e:3c:fa:f9:af:47:
fb:5f:b6:36:ce:9f:d6:83:6e:ae:08:73:70:d8:b5:
94:24:a4:e0:3d:91:e6:36:af:ff:c2:f0:c0:39:1e:
e8:e9:fa:c1:ca:6f:b6:5b:59:d0:9e:d5:a8:9e:78:
c9:cd:05:5b:7d:b7:62:bf:8f:93:56:12:40:d7:7e:
76:89:84:e0:2a:86:8e:40:ca:d7:9d:cd:b6:ba:ed:
ac:4b:be:e1:2a:af:99:25:7c:8e:ea:44:08:61:fa:
83:d6:76:32:96:a7:3d:6e:5d:ad:99:83:fd:c1:33:
01:ed:00:65:4b:34:3a:cc:7d:70:2a:ab:a1:bd:9f:
de:e5:21:0d:5e:ec:a1:3a:27:2d:90:29:f1:93:64:
cd:53:03:cb:fb:7f:9e:98:49:0e:35:50:3e:5c:bf:
1a:4f:c2:3d:7c:b3:7b:18:d7:be:4e:04:5a:8d:e3:
b4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4F:40:EC:09:BA:F3:CF:0C:42:4E:FF:AB:E8:B4:47:C7:D0:7A:19
X509v3 Authority Key Identifier:
keyid:C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/3230322e34372e3138362e302f32342d3234203d3e20313532303234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.47.186.0/24
Signature Algorithm: sha256WithRSAEncryption
22:c6:9f:59:09:0b:25:4a:91:74:50:46:b6:f3:68:75:55:ab:
87:75:87:d9:4d:04:54:a8:1f:50:7b:35:6d:d6:15:5b:cd:71:
9d:f7:a5:2f:e0:1d:16:b1:b8:70:da:c1:ba:0a:b0:12:93:99:
9b:3b:2e:b3:ad:fb:8d:23:4d:41:85:20:e3:b8:0b:31:f2:0d:
da:af:13:13:02:ca:09:30:93:a1:5e:59:c6:eb:e4:ba:ca:73:
ad:df:31:dc:42:02:ab:7e:46:9e:db:cd:1a:2c:02:90:05:23:
14:42:b3:86:43:0d:2d:b7:4f:a3:30:7e:22:24:f5:3e:ef:e4:
91:3d:7a:d3:60:51:46:35:47:33:c9:1e:8c:59:4a:0e:df:09:
59:1c:f4:e0:5e:5f:e3:d6:ad:c0:77:3e:ed:3c:3b:d4:1d:dc:
60:82:e9:bd:a7:9e:68:56:5f:aa:57:36:cd:ea:d1:cd:a0:89:
7f:00:4e:80:f7:38:46:9a:a4:d7:96:a9:22:ee:71:00:d3:87:
01:ba:90:15:ec:39:28:d2:d6:85:c7:39:4b:2c:3f:7d:30:5f:
cf:a8:d5:7d:bd:c5:9e:7d:cf:95:3b:80:3b:97:ed:f2:37:3e:
d5:dc:8b:d4:4c:67:40:ac:59:13:2e:eb:79:10:56:b8:75:b9:
18:94:55:fe
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUDovDsfRoHJypWnjjtwDd6yD0bGMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzJFOTI5REZCMDVGODFCOTE4ODBCQzgwODE1NDM2NUFF
Q0FDMjdEMjAeFw0yNDA4MDQxNTE2MjZaFw0yNTA4MDMxNTIxMjZaMDMxMTAvBgNV
BAMTKEVFNEY0MEVDMDlCQUYzQ0YwQzQyNEVGRkFCRThCNDQ3QzdEMDdBMTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZbAmlgYmIA7+/ebmz7k9F8Rms
o+qd4ooXGbIVdHEA2niU3VAT4QqOpYbQCOxEOpf4mKtXDb+kXY+B5MN8XU4x1b4b
WGbsUXKn6LNXYmAzdUo/QS48+vmvR/tftjbOn9aDbq4Ic3DYtZQkpOA9keY2r//C
8MA5Hujp+sHKb7ZbWdCe1aieeMnNBVt9t2K/j5NWEkDXfnaJhOAqho5Aytedzba6
7axLvuEqr5klfI7qRAhh+oPWdjKWpz1uXa2Zg/3BMwHtAGVLNDrMfXAqq6G9n97l
IQ1e7KE6Jy2QKfGTZM1TA8v7f56YSQ41UD5cvxpPwj18s3sY175OBFqN47QJAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQU7k9A7Am6888MQk7/q+i0R8fQehkwHwYDVR0j
BBgwFoAUwukp37BfgbkYgLyAgVQ2WuysJ9IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
ZDZmZmFkMi0yMGJjLTQyNDYtODI5My00NDY2NmNlMWNmZTAvMC9DMkU5MjlERkIw
NUY4MUI5MTg4MEJDODA4MTU0MzY1QUVDQUMyN0QyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzJFOTI5REZCMDVGODFCOTE4ODBCQzgwODE1NDM2NUFFQ0FD
MjdEMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNmZmYWQyLTIwYmMtNDI0Ni04
MjkzLTQ0NjY2Y2UxY2ZlMC8wLzMyMzAzMjJlMzQzNzJlMzEzODM2MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+6MA0GCSqG
SIb3DQEBCwUAA4IBAQAixp9ZCQslSpF0UEa282h1VauHdYfZTQRUqB9QezVt1hVb
zXGd96Uv4B0Wsbhw2sG6CrASk5mbOy6zrfuNI01BhSDjuAsx8g3arxMTAsoJMJOh
XlnG6+S6ynOt3zHcQgKrfkae280aLAKQBSMUQrOGQw0tt0+jMH4iJPU+7+SRPXrT
YFFGNUczyR6MWUoO3wlZHPTgXl/j1q3Adz7tPDvUHdxggum9p55oVl+qVzbN6tHN
oIl/AE6A9zhGmqTXlqki7nEA04cBupAV7Dko0taFxzlLLD99MF/PqNV9vcWefc+V
O4A7l+3yNz7V3IvUTGdArFkTLut5EFa4dbkYlFX+
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:48:53 2025 by rpki-client