Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33302e302f32332d3234203d3e2034343334.roa
File: 3230322e3135342e33302e302f32332d3234203d3e2034343334.roa (raw, json)
Hash identifier: zoeowKJvSzvuY+GvQ8McOKqVJl+lWLpjA0Rv/dJXYDY=
Subject key identifier: F3:31:4F:84:1E:C5:ED:A4:97:93:BD:C0:0F:E6:3F:95:CD:D3:62:87
Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Certificate serial: 07A72074D96481C1D03DCF27F34F4E9780AB10BA
Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33302e302f32332d3234203d3e2034343334.roa
Signing time: Wed 21 Aug 2024 11:00:50 +0000
ROA not before: Wed 21 Aug 2024 10:55:50 +0000
ROA not after: Wed 20 Aug 2025 11:00:50 +0000
asID: 4434
IP address blocks: 202.154.30.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:a7:20:74:d9:64:81:c1:d0:3d:cf:27:f3:4f:4e:97:80:ab:10:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Validity
Not Before: Aug 21 10:55:50 2024 GMT
Not After : Aug 20 11:00:50 2025 GMT
Subject: CN=F3314F841EC5EDA49793BDC00FE63F95CDD36287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ac:ef:e3:11:57:c1:96:53:26:df:04:07:99:
8e:6d:12:23:46:4a:c2:14:63:92:9d:d0:70:3e:e8:
68:df:5f:31:56:eb:bb:28:cb:d9:1e:33:93:42:22:
43:ba:4e:b2:d9:c7:64:dc:56:02:a8:72:fd:ac:e2:
13:0c:20:5f:46:e0:b9:73:a7:df:37:5d:27:8f:e1:
2c:cb:9e:c6:6c:69:81:6a:74:e3:0c:7d:3a:0b:d8:
3c:3a:8e:40:e9:d7:bb:4b:23:76:99:79:41:f9:04:
d0:6c:ed:1c:bb:0e:3c:b7:61:07:a5:c4:87:d6:7c:
45:e9:75:2b:b5:8f:12:a7:f6:42:48:86:09:0f:ad:
98:f6:1f:5c:7e:53:3f:9d:d0:ae:0e:34:13:2e:f4:
cc:ea:25:2e:a5:16:cb:aa:cc:7d:fd:39:25:66:af:
3d:db:79:ff:99:ac:77:1a:60:30:af:80:12:21:1e:
6a:b1:a9:b2:16:f3:71:28:d6:5b:ba:f9:b7:52:3f:
5e:be:aa:79:f1:71:a2:e0:7b:3e:f4:ca:52:ba:0b:
84:4d:c0:cf:89:06:1e:8b:32:51:27:d1:54:c4:1f:
f1:67:0f:10:f0:e2:68:9a:04:62:cf:a7:d6:73:09:
08:10:d8:e9:df:8c:10:68:72:d0:96:cb:e9:f4:c3:
b2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:31:4F:84:1E:C5:ED:A4:97:93:BD:C0:0F:E6:3F:95:CD:D3:62:87
X509v3 Authority Key Identifier:
keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e33302e302f32332d3234203d3e2034343334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.154.30.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:b9:c7:3d:ba:f1:97:f7:99:94:68:e9:02:80:bd:28:0d:7b:
c3:69:2d:59:e9:bd:55:00:9e:80:0f:a8:13:b5:f1:c2:a4:e0:
c5:36:dc:50:1c:a8:07:5b:cc:d4:57:b3:41:53:d5:56:05:34:
c0:e1:fb:eb:7e:58:a4:76:f4:55:1c:74:28:84:98:95:d6:86:
09:dd:17:39:65:09:ea:d1:bc:31:2e:fa:c0:58:54:88:63:44:
6a:24:e6:01:34:78:8b:58:8f:9b:6b:70:e8:a2:b5:50:3f:92:
25:95:77:a1:69:86:50:fe:f8:fd:34:fe:c4:02:7b:89:20:10:
14:b5:69:d5:33:d7:a5:dd:de:68:bb:83:92:bd:8e:c5:10:6c:
71:49:9a:d5:d1:2b:10:88:15:a2:b3:f8:e3:fc:d4:05:9d:a7:
40:52:ff:c6:bb:b0:e4:49:4e:32:46:c4:ca:5e:a0:42:25:1d:
a6:97:e4:98:40:64:55:55:dc:e6:a4:25:03:cc:c4:d4:0f:f9:
93:f9:18:2a:b8:76:fc:2e:93:b6:1f:42:4c:7b:96:77:e2:c5:
11:f0:67:73:24:13:f3:d3:9a:35:23:53:6d:b8:f9:20:a2:a4:
c1:92:01:1d:18:f0:73:44:d3:7d:f1:03:d3:22:9c:77:3d:e9:
ad:cd:3a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:22:18 2025 by rpki-client