Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa
File: 3230322e3138302e35342e302f32342d3234203d3e203338313435.roa (raw, json)
Hash identifier: ZwQEyzr0qU/uG/9S8Tb3R56McpPXpsgC7o/jCqvdCug=
Subject key identifier: 18:9F:8B:EE:90:31:92:ED:BD:9D:7D:A7:F3:3A:E6:BF:1E:15:4C:1C
Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1
Certificate serial: 3B0D2E2822855112751DA9125B1F2E68D534260F
Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa
Signing time: Thu 12 Sep 2024 07:01:59 +0000
ROA not before: Thu 12 Sep 2024 06:56:59 +0000
ROA not after: Thu 11 Sep 2025 07:01:59 +0000
asID: 38145
IP address blocks: 202.180.54.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:0d:2e:28:22:85:51:12:75:1d:a9:12:5b:1f:2e:68:d5:34:26:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1
Validity
Not Before: Sep 12 06:56:59 2024 GMT
Not After : Sep 11 07:01:59 2025 GMT
Subject: CN=189F8BEE903192EDBD9D7DA7F33AE6BF1E154C1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:4a:43:ae:4e:41:f8:8e:86:ad:6d:cc:27:cc:
29:9c:e5:a3:cd:a7:db:e0:49:1c:98:48:6f:7d:de:
ad:af:df:28:c2:78:e7:e0:e0:e1:84:49:0d:1b:4b:
1c:c2:b7:6c:fe:df:b7:26:81:50:8c:f0:ad:93:bc:
b3:e4:3c:b9:56:1e:06:62:fa:21:0a:f9:d0:66:e6:
46:88:6e:1a:11:e4:2e:76:0a:49:0d:91:d6:74:05:
4a:1d:69:5e:ed:5e:2f:28:70:dd:57:e1:c0:62:91:
ed:bc:eb:08:c6:cd:08:cf:b6:2c:bd:35:a3:f9:53:
12:a8:11:78:67:cb:12:8c:15:bc:23:a4:e2:3c:4e:
3b:69:57:31:6f:5e:40:5c:33:a2:6c:6d:ee:1b:55:
15:05:d0:55:1c:31:2b:ec:db:c5:2e:31:5e:d0:47:
53:b6:85:b1:e9:c3:cc:c3:d6:74:4d:54:ca:81:25:
19:d3:ba:c9:be:97:f9:82:57:62:13:d5:77:67:bb:
d6:8a:55:a6:cd:61:c8:ec:93:e7:d6:22:f9:8e:b8:
8d:ec:6e:55:cd:bd:53:e8:ce:e2:4a:d1:4a:de:b3:
9e:3f:14:a6:fa:43:1c:66:fb:5b:5f:a1:14:1f:2d:
90:e6:40:39:5b:77:7a:f5:ed:5c:ac:f1:52:9e:bc:
06:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9F:8B:EE:90:31:92:ED:BD:9D:7D:A7:F3:3A:E6:BF:1E:15:4C:1C
X509v3 Authority Key Identifier:
keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35342e302f32342d3234203d3e203338313435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.180.54.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:8f:d5:c5:17:9b:03:bc:fe:a1:08:76:9a:e8:05:ef:1e:9f:
d7:54:76:15:31:63:75:9c:83:60:72:c2:09:e7:7e:f7:bf:ad:
72:6c:43:85:dc:8d:0a:20:3a:57:21:ce:b6:76:84:c3:4f:d5:
39:84:3a:bc:12:6e:d6:88:3a:db:22:6f:86:27:20:71:ce:4c:
cd:55:3c:4e:1a:db:a5:11:8d:63:d5:6a:bf:37:37:4f:a9:4d:
2b:14:1f:fd:1a:fe:33:dd:fe:05:7d:35:63:57:39:7c:21:26:
40:25:b0:94:5a:16:c8:9e:9a:ea:d4:dd:38:ab:8a:1e:c8:57:
a1:94:3c:27:61:7e:43:df:ed:1a:1c:ae:ce:62:8c:78:0d:41:
5a:66:2e:5d:2c:c6:17:04:cb:eb:76:fe:8f:3e:a6:b9:71:f1:
57:99:47:d5:c8:e1:41:52:8b:23:c9:39:20:63:60:7f:80:fa:
0f:63:98:bf:a3:25:cb:64:b4:21:aa:28:23:ad:e1:b0:fa:34:
51:f9:51:fd:86:56:ac:d7:f5:21:93:2a:52:22:e7:2f:62:df:
5b:ed:88:16:32:97:99:30:d2:4c:f8:59:70:9d:25:ef:ab:fb:
38:ff:42:61:66:59:d6:c7:08:72:31:91:32:b9:75:4b:d0:09:
7e:98:54:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:42:03 2025 by rpki-client