Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35322e302f32342d3234203d3e203338313435.roa
File: 3230322e3138302e35322e302f32342d3234203d3e203338313435.roa (raw, json)
Hash identifier: hZdDJxVjtO1n0AGl1pB9t846WGWMULCEbo7Iz08dGoM=
Subject key identifier: 79:22:2B:26:2E:C3:FC:43:1A:29:16:24:E9:14:F3:B1:D8:F9:E8:F2
Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1
Certificate serial: 1327ACB37B2C4B0AC9D7A9E360EBB6BAE7208026
Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35322e302f32342d3234203d3e203338313435.roa
Signing time: Fri 17 Jan 2025 10:00:00 +0000
ROA not before: Fri 17 Jan 2025 09:55:00 +0000
ROA not after: Fri 16 Jan 2026 10:00:00 +0000
asID: 38145
IP address blocks: 202.180.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:27:ac:b3:7b:2c:4b:0a:c9:d7:a9:e3:60:eb:b6:ba:e7:20:80:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1
Validity
Not Before: Jan 17 09:55:00 2025 GMT
Not After : Jan 16 10:00:00 2026 GMT
Subject: CN=79222B262EC3FC431A291624E914F3B1D8F9E8F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e3:e2:09:f0:b0:4f:01:ec:3b:12:a4:93:63:
e6:8f:5a:5c:0f:fa:14:6a:41:52:47:6b:5c:18:1a:
ee:1f:ec:14:90:71:29:51:35:b2:f6:9c:82:cb:2a:
e9:f7:f1:de:60:ac:e8:03:f9:a4:39:12:10:cb:58:
ad:8b:dd:cd:fd:15:8b:dd:6b:4a:1b:db:ac:12:46:
a0:43:fd:8b:a8:ae:25:d5:ab:87:89:a1:cd:6d:0b:
87:d2:2a:79:ff:c6:a1:6b:63:2b:75:5d:b8:64:30:
84:3f:e6:a8:45:31:8e:17:54:f8:fb:d5:07:f7:59:
dc:11:bc:64:dc:df:30:2b:e2:13:91:09:8d:21:99:
d3:ed:ed:87:73:f2:f4:9d:0e:03:e6:5a:33:0f:44:
e8:1f:8a:56:b4:33:37:8c:2b:be:00:02:01:d3:8a:
43:d4:b7:04:c8:b4:da:f4:ce:8e:68:27:10:cf:0c:
16:1d:e8:21:a9:00:0d:3a:0d:6b:2b:f1:0c:77:29:
bf:e3:45:c3:6f:a5:a3:9e:4b:d7:b8:39:2d:bd:6b:
4c:a9:58:d5:4c:3c:59:fe:2a:51:fc:a1:29:1c:ec:
f6:c4:fb:f2:a5:bf:0c:b1:49:84:d1:0d:a7:c0:05:
a7:2c:62:fb:89:25:af:43:44:35:13:15:d4:6e:51:
b9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:22:2B:26:2E:C3:FC:43:1A:29:16:24:E9:14:F3:B1:D8:F9:E8:F2
X509v3 Authority Key Identifier:
keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35322e302f32342d3234203d3e203338313435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.180.52.0/24
Signature Algorithm: sha256WithRSAEncryption
59:cc:3f:1b:61:31:e7:6e:ec:49:b2:71:e4:6d:f4:e7:2e:00:
f6:18:d2:7c:a3:e1:cd:db:3c:96:7d:5c:b7:fe:77:1b:43:04:
77:b5:4f:20:f8:0a:80:da:57:a5:10:f9:34:36:d4:1e:2b:f4:
dd:a7:ab:c2:37:1e:92:c3:4b:10:25:88:21:0e:c2:36:ca:a5:
f1:51:d0:5a:95:94:8c:07:55:13:a4:ea:90:f8:5d:b5:ae:ed:
07:a6:e4:c5:92:f8:e5:cc:70:bf:5f:49:65:fa:29:f4:2f:23:
41:d4:33:36:70:41:84:ec:c4:8b:b1:8d:ed:5f:d7:5d:ea:9d:
9c:6b:ac:35:f2:89:c6:cc:3b:6a:d9:24:2e:61:b9:4a:65:bb:
c8:f2:45:34:e5:06:6f:c6:c8:a8:04:04:7b:4a:3b:c9:e2:90:
a0:c4:4f:72:b6:89:b5:49:df:c4:50:58:d0:fa:75:71:6b:f6:
26:b6:9b:40:a4:f4:9b:f8:ab:b6:57:ba:65:ab:84:c7:86:fe:
51:74:8e:e1:cc:fb:1e:f1:e9:01:ad:a7:fb:db:19:4e:c1:11:
de:10:d1:9a:e7:a0:09:4a:a7:c1:23:ee:84:a6:5c:8a:c3:f9:
a9:3d:96:24:44:75:9b:65:da:f9:60:d5:74:81:c9:e4:c7:e0:
dc:5b:9a:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:24:31 2025 by rpki-client