Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa
File: 3230322e35302e3230322e302f32342d3234203d3e203535363936.roa (raw, json)
Hash identifier: 9QXIOR5p9E/ECayeIb5+Pzn8r00Xjm0tMLmC+/Pg7aE=
Subject key identifier: 88:58:B2:E4:F5:C8:00:1B:FD:EA:1E:92:DE:06:F9:76:9A:07:52:6D
Certificate issuer: /CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B
Certificate serial: 353A3353E9F0B2A9BA48A51B52D0F008DB3B042B
Authority key identifier: B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa
Signing time: Wed 25 Dec 2024 06:00:00 +0000
ROA not before: Wed 25 Dec 2024 05:55:00 +0000
ROA not after: Wed 24 Dec 2025 06:00:00 +0000
asID: 55696
IP address blocks: 202.50.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:3a:33:53:e9:f0:b2:a9:ba:48:a5:1b:52:d0:f0:08:db:3b:04:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B
Validity
Not Before: Dec 25 05:55:00 2024 GMT
Not After : Dec 24 06:00:00 2025 GMT
Subject: CN=8858B2E4F5C8001BFDEA1E92DE06F9769A07526D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:de:93:c2:58:e8:97:4c:75:f0:d5:d9:d7:42:
ff:53:e5:e3:96:95:0b:56:b6:c0:95:89:59:f5:23:
d9:4e:c1:78:a3:87:fd:39:b6:03:b5:13:5a:8a:25:
47:06:75:1f:7e:39:dd:79:b2:37:4b:96:27:24:38:
b1:6a:5e:9c:be:8b:13:4a:cb:bf:92:2c:76:77:1d:
5c:0e:ef:00:8b:5c:62:1c:fa:22:1a:62:26:8f:ea:
9a:2a:b3:0d:b4:f2:7d:fb:92:d4:8f:82:f9:af:f0:
19:07:06:bf:22:f5:79:14:b5:f1:73:ea:e1:df:f4:
39:3b:a5:8f:ae:b6:a1:e3:49:a8:78:28:70:11:a1:
d6:a6:cd:c8:11:0b:89:d1:a9:3d:49:a3:a7:ab:76:
f8:05:95:14:10:f4:e6:d5:b6:3d:ba:9c:8c:b5:57:
17:60:7c:81:fb:e1:18:59:35:d9:c5:b5:3f:3b:70:
16:a0:e3:1a:2f:a2:58:39:d2:b6:1c:17:99:be:7c:
4e:2a:d2:31:bd:4e:f5:f9:26:be:73:22:b9:9e:8a:
83:e7:e3:9a:55:a7:9c:93:1b:0d:d8:82:88:d3:34:
bb:fc:d0:a1:db:99:f7:37:1b:1f:76:4d:18:ec:c3:
e2:b6:6b:f2:d8:96:e2:3c:15:9e:23:83:23:8a:d5:
88:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:58:B2:E4:F5:C8:00:1B:FD:EA:1E:92:DE:06:F9:76:9A:07:52:6D
X509v3 Authority Key Identifier:
keyid:B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.50.202.0/24
Signature Algorithm: sha256WithRSAEncryption
62:d1:37:33:f2:92:20:75:f8:0e:d2:09:11:8b:46:9d:71:03:
2c:d7:88:d3:bc:83:0d:b9:f3:ee:4a:a6:ff:e0:c2:8d:b7:f6:
83:df:5d:e2:18:99:34:03:28:3c:93:2f:65:05:46:84:09:4f:
f7:e1:69:b0:f7:df:26:cc:41:b0:de:d0:8d:ae:07:84:21:44:
70:aa:95:55:ef:45:88:90:7d:aa:8c:20:07:76:c5:9b:20:bf:
dd:1d:d3:26:be:8f:1d:f9:94:44:1c:84:28:4a:34:d3:03:84:
e3:5d:b9:8b:38:c2:5f:03:a5:17:2a:f2:85:ea:fa:89:62:ef:
a6:d0:9a:04:a6:83:cd:13:64:85:d1:1c:65:b9:da:bf:76:47:
e7:a5:fc:32:ec:33:32:3e:8e:3d:d9:a0:5b:44:7f:f1:8b:92:
24:92:96:54:32:c2:bd:99:42:94:05:66:26:a2:79:da:18:22:
c3:37:fa:97:3e:17:44:16:bf:a6:23:94:ea:d6:12:ca:47:42:
56:d9:20:71:6a:b0:fe:4e:e8:f4:0e:aa:97:c2:5d:fe:35:9a:
b7:58:21:2e:9c:86:7c:69:70:a6:35:79:25:58:bc:60:ad:60:
91:00:12:3b:8a:28:3e:00:7e:4e:15:14:6c:eb:da:40:e7:fe:
a1:ee:89:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:56:30 2025 by rpki-client