Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa
File: 3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa (raw, json)
Hash identifier: DO7ogbI2UpcST5Do0xfAryknKNzHKoFL4YPFX4NOgG8=
Subject key identifier: 12:C1:0C:D6:6F:87:12:24:14:B2:74:13:6C:37:98:79:15:21:8B:84
Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90
Certificate serial: 0E97265BDCAEF633A8562B682F7EDEFAC698E256
Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa
Signing time: Sun 04 Aug 2024 19:00:00 +0000
ROA not before: Sun 04 Aug 2024 18:55:00 +0000
ROA not after: Sun 03 Aug 2025 19:00:00 +0000
asID: 17670
IP address blocks: 202.147.192.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:97:26:5b:dc:ae:f6:33:a8:56:2b:68:2f:7e:de:fa:c6:98:e2:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90
Validity
Not Before: Aug 4 18:55:00 2024 GMT
Not After : Aug 3 19:00:00 2025 GMT
Subject: CN=12C10CD66F87122414B274136C37987915218B84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:71:a4:e4:35:ff:85:da:52:25:bc:dd:08:b8:
14:44:26:d4:58:2d:ea:73:96:2a:47:e0:f8:d3:51:
4a:2a:13:4e:95:35:b8:aa:b0:bb:5f:99:57:af:98:
ad:c1:dc:8b:94:f6:c5:59:ec:4e:26:96:15:6a:3f:
1d:c1:93:4e:c3:f6:57:3f:fe:75:10:34:80:15:00:
c0:8d:34:5c:4c:4e:a4:8e:70:ea:5d:ee:db:15:e3:
61:e0:20:6f:68:b6:a2:9b:7d:d0:84:bd:f0:de:82:
84:cb:b7:fa:7d:dc:5b:b4:a9:e4:1a:5a:6d:55:b2:
e0:4d:4e:00:31:2b:eb:16:a9:f6:62:77:71:db:0c:
13:66:d8:e0:1d:12:c5:35:15:56:99:70:29:2a:d9:
87:68:c5:b5:73:91:3a:c0:b6:4e:62:74:fd:2b:b8:
4b:84:ef:25:ee:33:dd:3e:81:52:4c:4d:4f:cd:e6:
f1:98:23:69:25:a9:2b:a2:5f:bf:2f:d9:ce:f6:9f:
db:f2:a8:28:31:a9:6b:5d:e3:af:31:59:d0:90:34:
83:a0:4c:a0:43:b8:94:0e:81:22:97:fd:58:a1:39:
51:cb:b4:78:f7:c5:11:f2:48:a8:53:a4:15:46:28:
f5:e2:ae:07:23:9b:e7:70:0a:fc:3b:a3:8b:71:cd:
ae:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C1:0C:D6:6F:87:12:24:14:B2:74:13:6C:37:98:79:15:21:8B:84
X509v3 Authority Key Identifier:
keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/3230322e3134372e3139322e302f32302d3234203d3e203137363730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.147.192.0/20
Signature Algorithm: sha256WithRSAEncryption
16:22:25:b3:30:2a:6a:fd:a9:e0:86:67:c0:bc:3b:ae:4d:68:
a8:59:2e:d3:8a:9f:48:6b:10:1c:af:de:06:2a:ba:af:88:3d:
2c:25:4c:71:6f:2e:77:90:ef:90:01:e9:eb:fa:b4:47:bc:49:
ad:04:09:e5:4e:0e:4f:88:4e:92:15:fd:6b:ad:ea:b3:f3:9b:
81:56:13:7c:43:7b:83:9e:27:23:35:4b:b4:bb:f1:1a:cb:92:
c9:11:fa:8e:d9:09:57:c8:99:24:af:77:6e:d2:88:4d:fb:a1:
40:20:4b:f6:5f:7c:6a:ff:3e:e7:aa:10:92:07:09:27:89:5f:
91:8d:d8:bc:97:39:d0:a7:f0:41:80:b2:c3:02:3d:11:5f:33:
ea:b0:89:44:ed:8b:44:32:a0:d2:0b:9f:3d:4d:4b:15:7f:a1:
7f:dd:63:87:c7:b3:bd:58:b9:01:f8:66:3b:06:88:ea:4f:83:
ae:3c:08:93:34:3e:36:52:57:4c:82:81:1a:b7:e8:98:e3:df:
f6:c1:2e:2a:2f:1d:fd:9c:6f:87:1c:12:89:61:ac:2e:df:cc:
1c:01:f1:10:8d:97:5c:68:fe:8a:19:eb:f3:f5:18:90:1a:56:
e7:44:8e:49:4b:ea:86:b7:b5:6a:25:80:49:1c:c7:d7:da:31:
b1:1c:29:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:07:58 2025 by rpki-client