Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa
File: 3230322e35392e3136332e302f32342d3234203d3e203137373237.roa (raw, json)
Hash identifier: 9lS7rvs1Vu0elx90ANQenqLnxNmuJ1yR8QK5W1zRtXk=
Subject key identifier: 00:6D:44:09:CF:26:7C:43:1B:20:DA:7E:DA:34:E5:5F:82:B0:6A:F7
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 35072ADA9C687E826063689BDE29E738245C19BB
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa
Signing time: Sun 29 Sep 2024 09:00:03 +0000
ROA not before: Sun 29 Sep 2024 08:55:03 +0000
ROA not after: Sun 28 Sep 2025 09:00:03 +0000
asID: 17727
IP address blocks: 202.59.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:07:2a:da:9c:68:7e:82:60:63:68:9b:de:29:e7:38:24:5c:19:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Sep 29 08:55:03 2024 GMT
Not After : Sep 28 09:00:03 2025 GMT
Subject: CN=006D4409CF267C431B20DA7EDA34E55F82B06AF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:04:a5:27:98:00:43:6e:f6:cf:26:7c:57:c3:
8f:17:21:d5:5d:be:ef:bd:4a:82:d6:d6:66:29:9d:
c1:a4:e2:28:9d:7a:f0:e3:b6:fd:68:9e:58:7c:e4:
18:d0:98:5f:2b:42:bf:0f:3f:01:64:96:1f:74:ef:
d3:f7:28:0f:0f:03:8b:82:f9:bb:7d:e4:69:aa:fb:
ed:f0:62:43:e3:2a:02:f2:f7:56:93:af:27:e9:6a:
ec:4f:1f:4d:42:4a:b3:44:cb:8a:e8:59:f8:b2:06:
d0:1e:88:7e:59:c3:7e:49:c9:0c:dc:87:f1:21:2e:
4d:4b:7d:7b:7b:b1:fb:28:48:2b:26:47:0a:0e:9c:
af:75:1c:35:d0:19:fd:15:1c:bf:ed:4d:bd:e5:75:
4c:79:c9:7f:07:b9:8e:1b:a0:37:31:e4:0b:a9:72:
73:0d:5e:02:52:13:2c:0c:01:9a:f2:dd:e5:97:a9:
82:fc:e2:cd:6b:bb:fc:d6:75:02:f9:57:0e:ba:eb:
39:6b:0c:a6:da:f8:3f:e5:6c:fb:d3:fa:72:5d:26:
1e:a3:6b:5a:f9:a8:9d:53:ff:30:25:b7:db:32:97:
d8:df:44:24:72:eb:54:ef:d7:ad:40:83:17:e6:0e:
d5:00:b4:ef:26:93:e4:91:4d:58:63:29:71:63:b8:
1c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6D:44:09:CF:26:7C:43:1B:20:DA:7E:DA:34:E5:5F:82:B0:6A:F7
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136332e302f32342d3234203d3e203137373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.59.163.0/24
Signature Algorithm: sha256WithRSAEncryption
66:9b:48:d2:30:7a:67:8e:6d:4b:5a:42:58:06:df:56:04:d4:
4c:33:f7:2e:88:30:e6:37:02:8a:97:0b:ec:9b:c4:a1:0f:bd:
02:9f:a4:50:e3:13:de:14:ca:da:c3:7b:74:98:0b:0d:b7:f5:
b6:33:72:75:a3:93:c2:cd:f7:3f:d7:57:ad:d1:85:5f:a2:e1:
63:ce:2c:98:1a:c1:cf:9d:87:ac:54:31:12:69:78:f7:04:83:
ec:72:3c:4b:62:4a:d6:cd:08:bd:11:30:9d:95:31:ed:77:09:
70:83:62:7e:f2:91:d6:1e:2b:bd:b6:cf:85:18:2f:6b:d1:5d:
0e:4f:29:9f:df:af:8a:b2:63:b8:df:42:51:e4:51:b9:ae:4a:
92:63:4f:46:10:84:04:61:7c:47:3c:fe:df:c3:6e:dd:f8:ed:
64:17:69:39:66:78:b5:93:72:cc:68:77:2d:ab:bc:c3:a4:11:
ef:aa:f5:a3:89:25:50:c2:58:13:9d:40:9e:45:03:85:05:fb:
87:d2:24:ca:53:c7:b1:a0:c3:f7:1e:49:2c:ba:4b:6b:69:89:
83:25:9e:2d:c1:bc:41:d3:84:ce:47:0d:8b:a2:90:ef:b4:b5:
e1:b6:49:a3:1e:a2:cc:8f:9f:19:a5:f5:68:bd:8d:c3:d6:2f:
37:80:d8:4d
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUNQcq2pxofoJgY2ib3innOCRcGbswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE
NjdENjUxMTAeFw0yNDA5MjkwODU1MDNaFw0yNTA5MjgwOTAwMDNaMDMxMTAvBgNV
BAMTKDAwNkQ0NDA5Q0YyNjdDNDMxQjIwREE3RURBMzRFNTVGODJCMDZBRjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHBKUnmABDbvbPJnxXw48XIdVd
vu+9SoLW1mYpncGk4iidevDjtv1onlh85BjQmF8rQr8PPwFklh9079P3KA8PA4uC
+bt95Gmq++3wYkPjKgLy91aTryfpauxPH01CSrNEy4roWfiyBtAeiH5Zw35JyQzc
h/EhLk1LfXt7sfsoSCsmRwoOnK91HDXQGf0VHL/tTb3ldUx5yX8HuY4boDcx5Aup
cnMNXgJSEywMAZry3eWXqYL84s1ru/zWdQL5Vw666zlrDKba+D/lbPvT+nJdJh6j
a1r5qJ1T/zAlt9syl9jfRCRy61Tv161AgxfmDtUAtO8mk+SRTVhjKXFjuBxDAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUAG1ECc8mfEMbINp+2jTlX4KwavcwHwYDVR0j
BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx
OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE
NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04
NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNjMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7ozANBgkqhkiG
9w0BAQsFAAOCAQEAZptI0jB6Z45tS1pCWAbfVgTUTDP3Logw5jcCipcL7JvEoQ+9
Ap+kUOMT3hTK2sN7dJgLDbf1tjNydaOTws33P9dXrdGFX6LhY84smBrBz52HrFQx
Eml49wSD7HI8S2JK1s0IvREwnZUx7XcJcINifvKR1h4rvbbPhRgva9FdDk8pn9+v
irJjuN9CUeRRua5KkmNPRhCEBGF8Rzz+38Nu3fjtZBdpOWZ4tZNyzGh3Lau8w6QR
76r1o4klUMJYE51AnkUDhQX7h9IkylPHsaDD9x5JLLpLa2mJgyWeLcG8QdOEzkcN
i6KQ77S14bZJox6izI+fGaX1aL2Nw9YvN4DYTQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:48:01 2025 by rpki-client