Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234322e302f32342d3234203d3e203234313938.roa
File: 3230322e39332e3234322e302f32342d3234203d3e203234313938.roa (raw, json)
Hash identifier: XP3ySyrao4HUHe9UBVfjiEOfq3wXLWj1fW0u9drI3Y4=
Subject key identifier: 6C:66:A1:9C:35:CE:03:E0:97:7E:0F:5E:EB:9F:D2:57:57:71:64:A9
Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02
Certificate serial: 7FFBBA47F59D6D309FBAD0E71CD5B9C4928A704D
Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234322e302f32342d3234203d3e203234313938.roa
Signing time: Mon 01 Jul 2024 01:03:38 +0000
ROA not before: Mon 01 Jul 2024 00:58:38 +0000
ROA not after: Mon 30 Jun 2025 01:03:38 +0000
asID: 24198
IP address blocks: 202.93.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:fb:ba:47:f5:9d:6d:30:9f:ba:d0:e7:1c:d5:b9:c4:92:8a:70:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02
Validity
Not Before: Jul 1 00:58:38 2024 GMT
Not After : Jun 30 01:03:38 2025 GMT
Subject: CN=6C66A19C35CE03E0977E0F5EEB9FD257577164A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7f:03:43:30:6a:df:05:c1:e2:99:04:47:8d:
4f:d1:13:89:6d:c3:a2:dd:80:ac:1a:c3:99:c7:f3:
31:cc:a0:ad:65:90:9e:28:37:3f:3c:6b:9e:42:5a:
aa:03:2e:d4:91:a7:b2:8c:00:f3:fc:7e:dd:5a:fa:
2c:91:bf:08:cf:09:06:4a:23:ab:02:d6:cf:31:3b:
9e:6f:33:cb:ee:4a:f7:58:38:b4:0b:b4:07:8d:d8:
99:92:37:5d:08:4c:d7:f3:8b:37:90:eb:79:8d:80:
87:b5:a0:86:9f:8f:bf:a9:88:ed:57:bb:4d:57:d8:
94:5b:cc:1c:00:af:f1:10:bb:c8:11:d0:b1:d0:dd:
a1:02:25:c1:d7:55:04:87:68:25:2d:77:df:48:d7:
e9:80:2a:99:9f:5d:b1:ab:2c:73:e3:30:00:c0:54:
15:56:4d:82:73:1b:b6:b6:f7:a3:f9:5c:6d:92:28:
c9:1c:dd:7e:9c:56:b7:7d:84:fa:e9:62:d2:ae:50:
49:df:3f:12:91:65:2a:c4:d9:51:ba:d6:94:58:1e:
e2:44:21:9e:ef:82:dd:d1:43:50:3c:50:a4:59:ee:
c2:91:a6:2f:94:8c:f1:f9:f2:b7:47:24:1a:43:41:
0e:d2:af:92:44:bf:09:84:4b:ac:06:15:e7:87:fd:
3d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:66:A1:9C:35:CE:03:E0:97:7E:0F:5E:EB:9F:D2:57:57:71:64:A9
X509v3 Authority Key Identifier:
keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234322e302f32342d3234203d3e203234313938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.93.242.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:ae:34:50:c6:d7:b8:57:58:87:87:b9:2b:f2:eb:7e:e5:cf:
31:ca:c5:6f:64:20:65:e7:7d:f9:5e:6d:74:f4:66:a1:e9:b9:
28:9f:54:45:95:d6:38:14:c7:de:ef:9e:36:2c:ae:22:6b:d7:
db:d3:9b:f8:30:dd:64:ea:71:a1:78:0d:12:90:b2:cb:9c:46:
7c:c9:0f:64:a6:dd:3e:8c:39:43:38:d3:6c:ed:39:05:3a:68:
e5:80:25:f3:d9:0c:0f:2d:60:d0:bd:67:d8:dd:74:95:51:9c:
13:72:44:1a:43:5b:ee:68:43:85:dd:5f:94:83:32:b4:4e:38:
b7:a5:a6:09:93:06:f7:af:da:48:9a:7f:97:11:58:98:9a:25:
50:5a:85:cc:51:1b:bf:a9:67:f2:79:82:94:f2:89:6e:5f:cc:
98:ec:9c:95:83:3a:df:7f:b5:ca:ee:a4:23:f1:53:0a:8f:d4:
c6:d2:02:a6:0f:15:ff:2a:c9:48:d4:10:8e:ab:9f:3e:76:5d:
00:d3:67:80:0a:d5:c6:24:39:79:ee:09:21:00:51:92:6e:0c:
44:cb:7b:a4:90:68:41:77:52:b2:f2:b1:93:e7:49:d4:5a:9c:
bb:35:3c:1b:d3:22:d7:4c:45:40:e7:18:91:89:d3:84:7b:9d:
4a:e0:5a:d9
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUf/u6R/WdbTCfutDnHNW5xJKKcE0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3
NzgwOUQwMjAeFw0yNDA3MDEwMDU4MzhaFw0yNTA2MzAwMTAzMzhaMDMxMTAvBgNV
BAMTKDZDNjZBMTlDMzVDRTAzRTA5NzdFMEY1RUVCOUZEMjU3NTc3MTY0QTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUfwNDMGrfBcHimQRHjU/RE4lt
w6LdgKwaw5nH8zHMoK1lkJ4oNz88a55CWqoDLtSRp7KMAPP8ft1a+iyRvwjPCQZK
I6sC1s8xO55vM8vuSvdYOLQLtAeN2JmSN10ITNfzizeQ63mNgIe1oIafj7+piO1X
u01X2JRbzBwAr/EQu8gR0LHQ3aECJcHXVQSHaCUtd99I1+mAKpmfXbGrLHPjMADA
VBVWTYJzG7a296P5XG2SKMkc3X6cVrd9hPrpYtKuUEnfPxKRZSrE2VG61pRYHuJE
IZ7vgt3RQ1A8UKRZ7sKRpi+UjPH58rdHJBpDQQ7Sr5JEvwmES6wGFeeH/T1NAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUbGahnDXOA+CXfg9e65/SV1dxZKkwHwYDVR0j
BBgwFoAU843/CU4WhDhU6sFAPGn9f3eAnQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YWQ2ZGNjOS0xNzAwLTQ4ZWItOTA5OS02Njc4ZjkxYmY0NGUvMC9GMzhERkYwOTRF
MTY4NDM4NTRFQUMxNDAzQzY5RkQ3Rjc3ODA5RDAyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjM4REZGMDk0RTE2ODQzODU0RUFDMTQwM0M2OUZEN0Y3Nzgw
OUQwMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhZDZkY2M5LTE3MDAtNDhlYi05
MDk5LTY2NzhmOTFiZjQ0ZS8wLzMyMzAzMjJlMzkzMzJlMzIzNDMyMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMxMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpd8jANBgkqhkiG
9w0BAQsFAAOCAQEAHK40UMbXuFdYh4e5K/LrfuXPMcrFb2QgZed9+V5tdPRmoem5
KJ9URZXWOBTH3u+eNiyuImvX29Ob+DDdZOpxoXgNEpCyy5xGfMkPZKbdPow5QzjT
bO05BTpo5YAl89kMDy1g0L1n2N10lVGcE3JEGkNb7mhDhd1flIMytE44t6WmCZMG
96/aSJp/lxFYmJolUFqFzFEbv6ln8nmClPKJbl/MmOyclYM633+1yu6kI/FTCo/U
xtICpg8V/yrJSNQQjqufPnZdANNngArVxiQ5ee4JIQBRkm4MRMt7pJBoQXdSsvKx
k+dJ1FqcuzU8G9Mi10xFQOcYkYnThHudSuBa2Q==
-----END CERTIFICATE-----
Generated at Thu Apr 10 16:53:29 2025 by rpki-client