Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234362e302f32342d3234203d3e203338373738.roa
File: 3230322e39332e3234362e302f32342d3234203d3e203338373738.roa (raw, json)
Hash identifier: rCD9Xq75hjQz3OqY77lp8zKACYDzK44l3UznAgqtWzY=
Subject key identifier: DC:9D:94:A5:6B:D7:C2:06:2F:D5:35:2B:A1:2C:2B:FA:62:D0:F4:DF
Certificate issuer: /CN=F38DFF094E16843854EAC1403C69FD7F77809D02
Certificate serial: 4D50474086ADA968A9B305DBCBE2DCACDC6036F0
Authority key identifier: F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234362e302f32342d3234203d3e203338373738.roa
Signing time: Mon 01 Jul 2024 01:03:38 +0000
ROA not before: Mon 01 Jul 2024 00:58:38 +0000
ROA not after: Mon 30 Jun 2025 01:03:38 +0000
asID: 38778
IP address blocks: 202.93.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:50:47:40:86:ad:a9:68:a9:b3:05:db:cb:e2:dc:ac:dc:60:36:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F38DFF094E16843854EAC1403C69FD7F77809D02
Validity
Not Before: Jul 1 00:58:38 2024 GMT
Not After : Jun 30 01:03:38 2025 GMT
Subject: CN=DC9D94A56BD7C2062FD5352BA12C2BFA62D0F4DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:22:77:ae:63:ba:41:26:29:f5:7d:0e:22:80:
c5:2a:3a:a3:cc:4d:d5:a3:d9:18:8a:cc:6e:69:98:
16:d9:af:da:dc:24:b5:53:1d:0e:da:94:3c:81:8f:
90:26:10:67:d6:b2:e3:55:a1:bd:e3:55:4e:41:e9:
94:e6:2e:0b:4e:76:bc:5f:03:67:d3:be:40:fc:36:
12:11:f8:d6:63:37:5e:b7:eb:53:85:78:b4:93:0d:
10:0a:96:43:3c:84:db:a0:4b:48:07:ec:54:74:99:
5d:7f:80:74:c3:f4:3d:3e:b4:1e:93:28:27:9b:9e:
68:cc:f7:7f:c9:b5:d2:83:3c:27:77:19:39:28:37:
df:0e:d9:ea:c9:b8:5b:34:c4:14:1f:b6:47:32:76:
83:98:9b:c7:f3:b2:88:d7:d2:0c:b1:b3:4f:50:b9:
ad:25:8b:f9:63:90:d0:7e:59:87:f2:82:98:bb:38:
90:be:4e:da:77:08:7c:cb:a9:91:f8:de:00:1a:a4:
7d:37:a9:73:be:da:9f:ef:04:b7:07:30:50:21:a2:
16:ae:23:78:e5:8b:de:a3:da:be:4d:4e:cf:0c:4e:
26:2d:b5:4d:09:47:44:e6:67:3c:14:8c:22:0e:8d:
49:f0:65:1e:5a:5d:31:f0:0f:56:52:10:af:d2:ce:
0b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:9D:94:A5:6B:D7:C2:06:2F:D5:35:2B:A1:2C:2B:FA:62:D0:F4:DF
X509v3 Authority Key Identifier:
keyid:F3:8D:FF:09:4E:16:84:38:54:EA:C1:40:3C:69:FD:7F:77:80:9D:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/F38DFF094E16843854EAC1403C69FD7F77809D02.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F38DFF094E16843854EAC1403C69FD7F77809D02.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ad6dcc9-1700-48eb-9099-6678f91bf44e/0/3230322e39332e3234362e302f32342d3234203d3e203338373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.93.246.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:db:1b:3f:d3:d1:b1:b7:c2:ad:34:4e:e6:3b:1c:8e:57:85:
5b:cd:cf:d2:09:5a:d4:15:52:98:30:44:e3:bf:96:91:a7:82:
0c:bc:fb:bb:89:e1:51:0b:dc:fa:c3:a1:06:86:c7:dd:77:13:
00:76:bd:88:df:00:39:2e:87:84:60:7b:e6:ec:8a:73:dc:a3:
d9:e9:c4:b3:0c:92:f2:94:e1:3e:6e:75:62:2c:b5:20:9e:4e:
98:b3:81:3f:39:ef:bd:35:11:e9:2e:a7:ab:98:89:a3:c6:20:
08:27:c6:73:77:61:d9:6b:ee:f6:45:de:e8:86:d9:bc:df:05:
28:fb:42:87:cb:e3:c7:c6:8e:85:b9:ad:90:94:91:1d:e9:86:
eb:c5:82:b4:d9:c3:29:9c:84:2e:71:f2:c6:f2:62:30:5c:2f:
07:ee:5d:4c:c0:78:04:9a:e7:c4:27:75:32:3f:c1:dd:c0:0a:
9d:13:b3:e3:a4:38:17:2e:9f:27:19:4c:8f:18:2a:5d:df:b1:
ff:66:ed:9c:04:7c:56:d0:37:ab:61:37:72:ba:e1:88:8a:ce:
ea:ac:79:c9:a1:93:9b:f7:c6:4f:8a:e5:fa:15:25:42:59:06:
20:fc:da:9c:8e:9d:a4:57:ff:2d:d0:2c:05:8e:b0:90:17:ad:
29:c9:4c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:07:53 2025 by rpki-client