Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa
File: 3230322e3135342e31362e302f32342d3234203d3e2034343334.roa (raw, json)
Hash identifier: 8AxJwf0RYw6G3Da8sgCR01OvWr9FAHqrbrtgro4wc4Q=
Subject key identifier: 27:4B:70:A1:90:90:76:95:1A:D0:B4:DB:1D:54:3E:69:18:B0:CF:96
Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Certificate serial: 6F91C3148178264A1B71A845575125840D8A961B
Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa
Signing time: Wed 11 Sep 2024 11:00:01 +0000
ROA not before: Wed 11 Sep 2024 10:55:01 +0000
ROA not after: Wed 10 Sep 2025 11:00:01 +0000
asID: 4434
IP address blocks: 202.154.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:91:c3:14:81:78:26:4a:1b:71:a8:45:57:51:25:84:0d:8a:96:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Validity
Not Before: Sep 11 10:55:01 2024 GMT
Not After : Sep 10 11:00:01 2025 GMT
Subject: CN=274B70A1909076951AD0B4DB1D543E6918B0CF96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:59:3d:d2:94:3f:9e:cf:18:f1:bb:e7:ec:1f:
29:c1:bf:51:67:91:7c:8c:ba:ed:b8:70:a4:0f:30:
18:1a:98:82:59:a0:68:1e:50:6e:46:2f:9d:d0:82:
d7:4a:39:2a:c0:f5:66:68:96:65:54:8e:b8:7a:95:
20:00:4e:9c:8d:24:ce:1c:5b:fb:6d:25:b2:46:77:
0f:fe:2e:55:50:27:48:dd:ac:3e:c4:26:22:ed:db:
dd:0c:db:82:ee:ec:7f:dc:91:1c:af:34:68:25:ff:
98:38:d5:e3:d8:fc:0c:d6:25:46:b7:7a:99:07:9f:
22:17:3e:90:29:00:64:3c:14:7f:df:29:b6:dc:1e:
c0:ad:da:52:ff:f6:37:33:33:4a:f3:fa:86:50:5f:
e1:4f:3c:83:3a:0c:61:10:6f:e9:ba:25:00:a3:3e:
5f:50:a8:a1:2a:66:91:9d:bd:6d:5e:0f:fd:8d:84:
d5:d2:2c:5c:02:ae:34:fd:c2:34:11:e6:f1:b6:53:
6d:2c:b0:f3:50:af:81:88:7c:9d:95:07:91:50:9c:
19:d8:ac:74:c2:87:3a:a7:1d:54:74:9f:d0:1e:a0:
de:f9:ea:dd:a5:d6:ee:6d:f0:fe:ee:25:49:60:b7:
33:3a:d0:cd:47:d8:56:b6:0a:73:b6:24:f6:31:bd:
d3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4B:70:A1:90:90:76:95:1A:D0:B4:DB:1D:54:3E:69:18:B0:CF:96
X509v3 Authority Key Identifier:
keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e31362e302f32342d3234203d3e2034343334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.154.16.0/24
Signature Algorithm: sha256WithRSAEncryption
74:74:19:6c:38:4a:cd:8f:2f:44:9c:d3:dd:40:2a:b1:d1:19:
f3:7f:b7:d9:50:e2:6c:48:e3:86:2c:82:4c:32:bc:1c:fc:be:
ee:6a:f8:9f:20:15:5d:43:68:76:0e:88:c2:59:fa:8c:92:d5:
ef:10:7b:1f:fd:5a:e9:89:3c:ee:cb:a3:07:4b:af:ab:22:f6:
56:dd:e8:18:ed:ed:dc:43:f9:8e:b9:54:f1:2e:ca:36:f7:f8:
51:46:3b:18:0d:36:31:91:81:5c:ed:20:0c:50:7a:5f:8a:aa:
ac:89:97:ee:74:0f:2b:0c:98:53:c0:b5:0e:b0:fe:2d:a0:30:
5c:b4:1c:97:39:17:2a:aa:54:58:10:a4:08:e5:53:04:fb:98:
04:4b:9f:2d:19:0a:e9:fc:63:33:aa:f0:d9:06:04:09:d1:23:
a8:93:11:e2:0f:80:3c:17:e7:d7:26:42:a5:e2:7d:f9:77:b2:
e6:cf:7c:49:20:89:89:45:48:b8:df:e2:7e:5a:f4:9d:b0:c6:
10:10:12:a7:60:3b:8c:a2:fa:13:d1:6b:e5:9a:be:d1:11:37:
9b:90:e1:82:63:83:d3:a2:df:49:35:06:07:7e:cf:c0:b6:77:
af:0c:cd:d5:77:46:1c:85:0c:a1:83:2a:f5:a5:82:ea:78:19:
8e:01:a7:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:36:59 2025 by rpki-client