Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa
File: 3230322e39332e3234342e302f32322d3234203d3e203338373738.roa (raw, json)
Hash identifier: WrruTacfBnCSWoQl+1OWOyzw7PD+Zj0YM6KALXEg6Sg=
Subject key identifier: B5:81:6F:3A:59:7B:20:68:E0:DA:22:21:53:BB:60:D6:D3:C5:9C:1F
Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02
Certificate serial: 7A80EA3C9A29EA4C7BE38D3C73AA0E3F11B1DA5F
Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa
Signing time: Fri 03 May 2024 03:00:00 +0000
ROA not before: Fri 03 May 2024 02:55:00 +0000
ROA not after: Fri 02 May 2025 03:00:00 +0000
asID: 38778
IP address blocks: 202.93.244.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:80:ea:3c:9a:29:ea:4c:7b:e3:8d:3c:73:aa:0e:3f:11:b1:da:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02
Validity
Not Before: May 3 02:55:00 2024 GMT
Not After : May 2 03:00:00 2025 GMT
Subject: CN=B5816F3A597B2068E0DA222153BB60D6D3C59C1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:13:e2:66:83:16:13:12:3b:24:bd:dc:da:dc:
84:bb:ec:4e:f9:b1:cf:15:5d:32:c9:13:d0:93:8d:
58:c3:36:02:3e:7a:ed:f4:04:6d:d0:a9:0c:18:ea:
ea:4c:6b:7c:06:27:26:d8:69:9b:33:1b:f7:55:1f:
39:3b:9a:cd:02:85:6c:68:c7:95:10:ee:c2:3e:00:
f4:d9:4e:cb:5a:91:bc:af:5c:40:85:4a:a9:8b:23:
ff:bb:15:59:a0:95:39:29:2a:3b:2e:7a:ec:4e:16:
2d:e1:39:5d:3c:da:f3:37:07:c8:11:17:17:dc:62:
98:2d:9a:73:e1:28:e5:58:50:2c:0f:1e:d5:3c:bf:
a7:ec:a6:c4:09:f8:1d:8b:e1:50:72:32:2b:8f:5a:
47:94:2d:49:82:d0:26:6e:25:77:67:43:3a:51:9a:
3a:5c:e9:e1:17:2b:86:c9:36:72:a6:98:f0:a8:d1:
29:71:06:a0:bc:6f:6f:f6:05:f5:b3:e4:b4:2d:c5:
cd:82:2f:fb:8c:e5:1e:84:e3:19:4a:bc:0b:c4:8a:
8a:d7:72:80:63:0b:2f:76:6c:ed:d0:5d:d6:fd:3b:
55:01:80:b1:33:75:fe:2b:fd:71:6b:37:45:fa:e0:
18:2e:87:40:02:08:16:6a:1f:24:05:53:ab:c3:3e:
d0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:81:6F:3A:59:7B:20:68:E0:DA:22:21:53:BB:60:D6:D3:C5:9C:1F
X509v3 Authority Key Identifier:
keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234342e302f32322d3234203d3e203338373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.93.244.0/22
Signature Algorithm: sha256WithRSAEncryption
22:83:64:41:d8:d4:67:6c:83:19:04:7a:82:57:d8:b9:f7:28:
e9:dd:01:0e:c4:8e:51:4f:9b:8a:84:58:26:2b:ed:39:d4:19:
c4:2c:5f:4d:e0:cf:09:a8:c0:fa:b5:11:00:a6:74:76:28:11:
51:1d:a1:fc:05:53:4c:7e:c9:2a:6f:06:f9:68:c0:89:21:88:
b8:b4:ca:18:16:89:4e:c3:c3:18:9f:aa:e7:88:e7:63:18:1b:
a1:73:00:9e:4b:c7:76:45:31:b8:2a:c1:8c:0b:95:1b:31:c8:
a0:08:ab:b8:d6:0f:f7:bc:3c:1a:77:ce:4c:ff:52:5e:44:b6:
a1:1c:41:fb:6f:7d:c8:91:e8:59:f6:b7:c7:06:8f:28:b5:6f:
30:49:1e:51:48:8f:2d:fb:14:1f:e8:fc:87:af:ae:7e:f3:fe:
1f:9e:e1:98:06:3c:9a:ef:1c:56:55:7f:2d:b9:05:73:35:ea:
d6:6b:9b:66:60:6b:8d:68:ff:64:3c:3d:52:66:4b:ca:c3:32:
3a:84:67:b2:03:ae:39:d5:41:bf:2a:3e:c4:c3:db:d5:eb:8a:
2c:ef:6b:fc:91:41:22:c8:56:09:77:4c:19:97:36:a2:31:e1:
45:46:e4:7a:0e:a9:82:b0:8d:90:da:31:ea:ac:1a:da:17:d1:
af:b9:66:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:03:58 2025 by rpki-client