Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234302e302f32342d3234203d3e203338373738.roa
File: 3230322e39332e3234302e302f32342d3234203d3e203338373738.roa (raw, json)
Hash identifier: XrFMOSg/d33kmKXB/MC5Fm/eTuvUhnKDFAu5ejF1jA0=
Subject key identifier: E4:73:D5:13:67:DF:C7:EE:20:3F:55:4B:26:E7:A9:CC:8A:B0:F0:8F
Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02
Certificate serial: 34E08021F0947ED4C2D35110BD5BF6446AF1431C
Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234302e302f32342d3234203d3e203338373738.roa
Signing time: Mon 01 Jul 2024 01:03:38 +0000
ROA not before: Mon 01 Jul 2024 00:58:38 +0000
ROA not after: Mon 30 Jun 2025 01:03:38 +0000
asID: 38778
IP address blocks: 202.93.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:e0:80:21:f0:94:7e:d4:c2:d3:51:10:bd:5b:f6:44:6a:f1:43:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02
Validity
Not Before: Jul 1 00:58:38 2024 GMT
Not After : Jun 30 01:03:38 2025 GMT
Subject: CN=E473D51367DFC7EE203F554B26E7A9CC8AB0F08F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2e:56:f6:77:e2:bb:92:69:12:e3:a2:00:03:
48:29:9a:32:68:ab:cd:f1:c8:ec:ab:72:e6:b7:52:
20:d2:bb:eb:22:fe:aa:2f:af:d6:75:60:78:0a:05:
6b:ec:ed:db:94:54:ad:8e:fd:c6:b3:94:ae:66:96:
a8:75:ba:c4:87:26:20:78:f4:21:32:d8:2c:32:d7:
e2:4e:54:83:4e:bd:c2:88:57:e5:b2:75:2d:ee:32:
fd:68:db:94:e1:95:4f:19:38:b4:e9:95:51:de:bf:
1d:57:1f:e7:ca:ca:a1:37:dc:82:64:7f:2f:87:11:
ca:6b:3d:3d:6c:78:dd:ee:23:dd:7e:9d:7e:a7:d0:
14:ca:67:32:b9:eb:df:9f:e2:46:e7:e4:0f:03:2e:
8d:9d:9f:c5:02:d2:9f:ad:14:4f:48:93:dd:89:ec:
5b:f8:3c:d7:8f:eb:4e:bb:e5:1f:17:a0:34:9a:43:
db:65:f3:ce:2c:bb:ba:44:32:dc:5c:38:5f:e5:a5:
b1:72:43:df:54:bf:45:51:2f:4e:98:bf:c9:2c:c6:
57:3f:9d:22:58:aa:5d:4f:be:02:8f:9f:22:3a:aa:
dd:2d:11:92:2b:55:af:7f:d2:53:8b:4b:aa:62:d0:
48:b9:38:31:f4:52:a4:fb:ca:57:4e:38:91:64:53:
aa:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:73:D5:13:67:DF:C7:EE:20:3F:55:4B:26:E7:A9:CC:8A:B0:F0:8F
X509v3 Authority Key Identifier:
keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234302e302f32342d3234203d3e203338373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.93.240.0/24
Signature Algorithm: sha256WithRSAEncryption
80:6d:4f:35:fc:ab:73:6d:37:8a:c2:22:db:dd:e2:3e:ba:a0:
87:90:77:ab:17:03:f1:3f:f8:1a:b7:03:97:06:ff:02:2c:e5:
04:e8:d5:44:a8:47:dc:fa:0a:6c:60:9f:ce:61:69:fa:d9:07:
23:66:d6:19:35:a3:b6:16:ad:36:a3:86:cc:46:16:c2:18:ad:
26:8e:7a:00:c3:ac:54:8b:5d:d7:cc:fb:55:92:0f:4f:0a:c6:
6e:b9:a0:39:73:fc:97:a9:13:04:13:9c:41:55:b7:b6:60:2a:
2d:ba:a2:0a:ec:bc:51:c0:ce:f7:17:34:d1:97:cb:91:22:76:
77:5e:22:9f:4c:91:22:06:63:47:75:6d:09:d6:82:5b:9e:19:
6b:52:dc:da:48:0f:eb:b5:7d:fa:a4:62:62:a1:6f:59:0c:f7:
be:12:6c:98:f4:ce:54:27:e6:bd:fb:44:d9:7d:9b:b9:c1:60:
db:d4:77:fc:9e:76:08:39:02:81:39:4b:0f:90:3e:98:f7:6a:
7d:76:e0:18:af:ba:f6:e8:d7:2b:28:70:ce:0e:21:29:16:b3:
85:ba:2e:c5:02:d0:13:ac:2a:22:a0:23:98:01:a6:00:f2:ec:
ae:16:1e:26:ab:b9:57:7b:89:36:c8:3b:f1:49:35:16:6d:aa:
bd:44:09:b9
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUNOCAIfCUftTC01EQvVv2RGrxQxwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3
NzgwOUQwMjAeFw0yNDA3MDEwMDU4MzhaFw0yNTA2MzAwMTAzMzhaMDMxMTAvBgNV
BAMTKEU0NzNENTEzNjdERkM3RUUyMDNGNTU0QjI2RTdBOUNDOEFCMEYwOEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNLlb2d+K7kmkS46IAA0gpmjJo
q83xyOyrcua3UiDSu+si/qovr9Z1YHgKBWvs7duUVK2O/cazlK5mlqh1usSHJiB4
9CEy2Cwy1+JOVINOvcKIV+WydS3uMv1o25ThlU8ZOLTplVHevx1XH+fKyqE33IJk
fy+HEcprPT1seN3uI91+nX6n0BTKZzK569+f4kbn5A8DLo2dn8UC0p+tFE9Ik92J
7Fv4PNeP60675R8XoDSaQ9tl884su7pEMtxcOF/lpbFyQ99Uv0VRL06Yv8ksxlc/
nSJYql1PvgKPnyI6qt0tEZIrVa9/0lOLS6pi0Ei5ODH0UqT7yldOOJFkU6pvAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU5HPVE2ffx+4gP1VLJuepzIqw8I8wHwYDVR0j
BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF
MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw
OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05
MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd8DANBgkqhkiG
9w0BAQsFAAOCAQEAgG1PNfyrc203isIi293iPrqgh5B3qxcD8T/4GrcDlwb/Aizl
BOjVRKhH3PoKbGCfzmFp+tkHI2bWGTWjthatNqOGzEYWwhitJo56AMOsVItd18z7
VZIPTwrGbrmgOXP8l6kTBBOcQVW3tmAqLbqiCuy8UcDO9xc00ZfLkSJ2d14in0yR
IgZjR3VtCdaCW54Za1Lc2kgP67V9+qRiYqFvWQz3vhJsmPTOVCfmvftE2X2bucFg
29R3/J52CDkCgTlLD5A+mPdqfXbgGK+69ujXKyhwzg4hKRazhbouxQLQE6wqIqAj
mAGmAPLsrhYeJqu5V3uJNsg78Uk1Fm2qvUQJuQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 23:32:50 2025 by rpki-client