Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa
File: 3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa (raw, json)
Hash identifier: lZqH3Wsutt6yR+euDDRxJPNsXm0m+fe89x8M/G2u/kc=
Subject key identifier: 8B:C1:DF:9E:FA:1B:7E:8D:87:49:F3:12:32:7E:A5:E4:3E:90:3E:66
Certificate issuer: /CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Certificate serial: 2F05E07B0CB7276A35C7B3BF1169EDC838E63ADF
Authority key identifier: 10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa
Signing time: Tue 21 Jan 2025 02:02:19 +0000
ROA not before: Tue 21 Jan 2025 01:57:19 +0000
ROA not after: Tue 20 Jan 2026 02:02:19 +0000
asID: 138886
IP address blocks: 202.154.44.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:05:e0:7b:0c:b7:27:6a:35:c7:b3:bf:11:69:ed:c8:38:e6:3a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6
Validity
Not Before: Jan 21 01:57:19 2025 GMT
Not After : Jan 20 02:02:19 2026 GMT
Subject: CN=8BC1DF9EFA1B7E8D8749F312327EA5E43E903E66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:bb:b2:7a:6d:38:e8:b6:bf:f0:be:51:ed:56:
6b:3c:9d:9b:23:ad:61:c9:ba:ea:fd:8e:6b:02:0b:
29:d2:62:72:83:26:e2:ba:ef:cb:12:0e:58:51:28:
de:00:4d:0c:c1:a4:39:1d:31:d4:eb:f6:e5:a7:f3:
f8:e7:f1:df:20:da:dc:06:52:e6:85:2d:3a:d0:c8:
59:a2:6f:86:20:1e:cf:99:45:fa:3a:b7:4d:55:fb:
d3:a5:8f:e1:e1:be:b3:61:fc:1e:ad:ab:18:4f:ad:
e6:36:92:a8:5d:ae:9d:95:f7:15:ac:c0:48:51:de:
9a:b9:0f:64:f9:66:ed:89:94:b8:10:57:67:5d:8b:
1a:49:22:77:d6:57:2e:b5:61:e4:39:df:3d:f6:3b:
12:d0:fc:22:eb:47:e2:37:a2:d8:9f:cf:17:90:d5:
12:67:ca:4f:be:a0:af:d0:46:eb:71:3f:c2:b9:21:
1d:bf:9a:80:68:c6:6a:85:6f:bb:ef:7b:96:19:a3:
69:f1:75:45:46:30:ae:4c:aa:e9:e5:77:cd:96:ba:
6f:5b:46:7c:d7:21:95:66:51:0e:31:6c:40:a9:50:
bf:66:e1:ee:e5:86:c2:5c:73:73:f5:22:63:6d:a8:
52:0e:54:ba:47:17:89:39:4e:45:08:cb:f7:9e:63:
65:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C1:DF:9E:FA:1B:7E:8D:87:49:F3:12:32:7E:A5:E4:3E:90:3E:66
X509v3 Authority Key Identifier:
keyid:10:F0:0F:AE:6F:0B:93:AB:DC:95:62:8A:CE:3C:3C:18:9A:E9:27:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10F00FAE6F0B93ABDC95628ACE3C3C189AE927F6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c0c14a9-3a77-49e2-9194-48d0913458b2/0/3230322e3135342e34342e302f32332d3234203d3e20313338383836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.154.44.0/23
Signature Algorithm: sha256WithRSAEncryption
22:1f:74:35:d4:ec:ad:0e:03:ac:71:7d:7d:ff:42:38:ba:aa:
40:ec:9f:f9:6b:de:e0:3e:2e:32:a4:02:93:99:e4:cb:7b:e8:
22:3e:03:61:91:fe:18:3b:58:79:c0:52:25:92:c6:59:d4:af:
6c:92:59:1b:32:c1:aa:98:f4:28:7e:eb:7f:bf:fb:af:41:8d:
f6:4a:5e:46:dd:ef:f3:5a:62:72:4e:49:e9:94:36:82:58:73:
ea:ca:63:ad:db:0b:c7:69:0f:7f:67:05:e7:32:fe:9c:ce:99:
b6:9d:c7:ff:0f:0d:ca:7c:eb:ab:2f:81:2b:74:74:4a:43:48:
43:b5:10:fc:d6:ee:c4:6a:57:f8:98:53:25:02:f4:48:a0:46:
e8:fe:16:bd:46:92:00:2e:74:57:b8:02:4d:2a:34:b5:2a:c2:
ea:e2:97:e6:4f:2c:da:d2:05:bd:b2:87:09:94:7f:69:98:00:
db:e1:e8:e4:f6:2f:2a:28:a9:f6:5e:62:4e:e9:c1:9f:a9:ea:
95:e1:54:3f:06:1a:6d:04:79:1e:00:90:bf:87:fe:15:0d:0c:
cb:d0:ff:77:3d:48:c1:af:15:fa:37:85:97:ef:83:e4:69:16:
c6:e5:f0:67:8a:ce:58:31:ed:74:d0:30:96:66:ab:1c:7a:93:
d8:c2:4d:da
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIULwXgewy3J2o1x7O/EWntyDjmOt8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5
QUU5MjdGNjAeFw0yNTAxMjEwMTU3MTlaFw0yNjAxMjAwMjAyMTlaMDMxMTAvBgNV
BAMTKDhCQzFERjlFRkExQjdFOEQ4NzQ5RjMxMjMyN0VBNUU0M0U5MDNFNjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlu7J6bTjotr/wvlHtVms8nZsj
rWHJuur9jmsCCynSYnKDJuK678sSDlhRKN4ATQzBpDkdMdTr9uWn8/jn8d8g2twG
UuaFLTrQyFmib4YgHs+ZRfo6t01V+9Olj+HhvrNh/B6tqxhPreY2kqhdrp2V9xWs
wEhR3pq5D2T5Zu2JlLgQV2ddixpJInfWVy61YeQ53z32OxLQ/CLrR+I3otifzxeQ
1RJnyk++oK/QRutxP8K5IR2/moBoxmqFb7vve5YZo2nxdUVGMK5Mqunld82Wum9b
RnzXIZVmUQ4xbECpUL9m4e7lhsJcc3P1ImNtqFIOVLpHF4k5TkUIy/eeY2XfAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUi8Hfnvobfo2HSfMSMn6l5D6QPmYwHwYDVR0j
BBgwFoAUEPAPrm8Lk6vclWKKzjw8GJrpJ/YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
YzBjMTRhOS0zYTc3LTQ5ZTItOTE5NC00OGQwOTEzNDU4YjIvMC8xMEYwMEZBRTZG
MEI5M0FCREM5NTYyOEFDRTNDM0MxODlBRTkyN0Y2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTBGMDBGQUU2RjBCOTNBQkRDOTU2MjhBQ0UzQzNDMTg5QUU5
MjdGNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMGMxNGE5LTNhNzctNDllMi05
MTk0LTQ4ZDA5MTM0NThiMi8wLzMyMzAzMjJlMzEzNTM0MmUzNDM0MmUzMDJmMzIz
MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByposMA0GCSqG
SIb3DQEBCwUAA4IBAQAiH3Q11OytDgOscX19/0I4uqpA7J/5a97gPi4ypAKTmeTL
e+giPgNhkf4YO1h5wFIlksZZ1K9sklkbMsGqmPQofut/v/uvQY32Sl5G3e/zWmJy
TknplDaCWHPqymOt2wvHaQ9/ZwXnMv6czpm2ncf/Dw3KfOurL4ErdHRKQ0hDtRD8
1u7Ealf4mFMlAvRIoEbo/ha9RpIALnRXuAJNKjS1KsLq4pfmTyza0gW9socJlH9p
mADb4ejk9i8qKKn2XmJO6cGfqeqV4VQ/BhptBHkeAJC/h/4VDQzL0P93PUjBrxX6
N4WX74PkaRbG5fBnis5YMe100DCWZqscepPYwk3a
-----END CERTIFICATE-----
Generated at Sun Apr 6 21:33:44 2025 by rpki-client