Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa
File: 3230322e35392e3137302e302f32342d3234203d3e203137373237.roa (raw, json)
Hash identifier: ytr5djm3FojS3AajadalflSoh3FjKgKa96RvM1vf6fE=
Subject key identifier: 92:AF:60:FF:0C:D6:B8:22:4F:2D:18:8B:18:F1:EF:C0:9C:E0:F3:E9
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 4006B933345C660450D59B4AFA107BA1BBEB20B6
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa
Signing time: Sun 29 Sep 2024 09:00:01 +0000
ROA not before: Sun 29 Sep 2024 08:55:01 +0000
ROA not after: Sun 28 Sep 2025 09:00:01 +0000
asID: 17727
IP address blocks: 202.59.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:06:b9:33:34:5c:66:04:50:d5:9b:4a:fa:10:7b:a1:bb:eb:20:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Sep 29 08:55:01 2024 GMT
Not After : Sep 28 09:00:01 2025 GMT
Subject: CN=92AF60FF0CD6B8224F2D188B18F1EFC09CE0F3E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cf:1f:9d:65:b3:94:fe:3c:11:bb:01:9c:a6:
df:92:6e:c5:2c:a0:e6:86:f1:75:fb:6c:a0:1c:58:
91:c2:3d:53:7f:d9:6f:e4:c8:d8:13:7d:aa:31:d8:
5f:69:59:cc:1b:58:87:de:f7:3c:a2:9c:4f:8e:ad:
73:ad:d1:7f:65:19:15:b4:85:72:62:d7:05:27:d3:
fd:cd:ba:c9:5e:5d:78:0e:dc:a8:3c:90:f8:52:12:
1b:47:2f:84:d6:99:86:85:c1:70:5f:3b:eb:49:f3:
d4:34:a3:a9:ff:9e:29:27:09:12:af:64:46:8a:ce:
35:8f:a4:a5:52:5c:80:3d:ed:a1:f0:6c:b9:f3:64:
b9:a1:bb:5e:29:b5:ef:f0:da:74:57:9e:f9:11:29:
47:93:e5:d2:2b:ea:da:09:e0:6b:be:6e:7c:c3:2d:
ce:01:2d:d1:b8:1a:87:82:f8:f4:df:a9:23:0f:c1:
16:d2:f9:c7:ac:10:2d:17:5e:69:a6:e9:35:9f:8b:
ac:2f:1a:50:1d:e0:50:e9:ac:b1:2f:49:9c:f5:72:
65:0e:e2:e7:41:9e:3e:24:af:05:09:92:42:d2:7f:
e6:d0:4e:92:e4:a8:12:2b:20:4d:7d:75:a9:08:89:
a9:59:59:d6:3f:fd:a4:0a:22:61:ad:a6:6a:99:bb:
c4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:AF:60:FF:0C:D6:B8:22:4F:2D:18:8B:18:F1:EF:C0:9C:E0:F3:E9
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137302e302f32342d3234203d3e203137373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.59.170.0/24
Signature Algorithm: sha256WithRSAEncryption
37:72:90:63:bb:34:16:c5:54:36:76:aa:b2:43:1b:a9:da:e1:
8c:b8:69:8b:94:84:62:cd:20:90:dc:08:07:b4:49:75:e7:82:
e5:70:7f:cf:a8:9d:3f:ce:f3:bc:50:e5:a8:42:e1:dd:5c:9c:
0b:7b:0f:7c:3d:74:be:22:45:e9:39:d6:fd:c7:31:ac:26:82:
e1:8f:47:37:6b:30:87:56:b5:29:e0:0c:88:72:2e:15:e4:cd:
cc:09:99:90:85:e7:33:36:6d:a9:15:ff:31:71:74:e9:f9:93:
77:1d:69:43:88:98:d9:50:68:87:2e:06:9b:08:ca:e3:e7:0d:
b6:d5:43:ed:b1:3f:0b:b6:63:bd:02:a8:c7:00:cd:b3:e8:5c:
46:1b:41:11:d3:e6:b4:aa:0a:23:e0:7e:38:31:f8:c3:ea:78:
10:11:5e:ad:9a:7d:f7:e2:bf:3d:78:07:63:ad:0a:fe:5f:15:
2f:85:79:5d:a1:4f:0c:ab:80:5d:a5:f6:3a:65:e8:51:52:8a:
8f:c7:00:0e:7b:b8:06:e3:95:5c:8d:e2:45:fa:63:eb:a4:0b:
0a:c6:7a:74:d5:a4:19:5b:f1:9a:43:91:19:84:dd:48:bc:88:
ab:c4:5b:68:75:df:18:70:cf:19:f7:90:3d:ef:53:b4:b3:b3:
4c:21:6f:96
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUQAa5MzRcZgRQ1ZtK+hB7obvrILYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE
NjdENjUxMTAeFw0yNDA5MjkwODU1MDFaFw0yNTA5MjgwOTAwMDFaMDMxMTAvBgNV
BAMTKDkyQUY2MEZGMENENkI4MjI0RjJEMTg4QjE4RjFFRkMwOUNFMEYzRTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOzx+dZbOU/jwRuwGcpt+SbsUs
oOaG8XX7bKAcWJHCPVN/2W/kyNgTfaox2F9pWcwbWIfe9zyinE+OrXOt0X9lGRW0
hXJi1wUn0/3NusleXXgO3Kg8kPhSEhtHL4TWmYaFwXBfO+tJ89Q0o6n/niknCRKv
ZEaKzjWPpKVSXIA97aHwbLnzZLmhu14pte/w2nRXnvkRKUeT5dIr6toJ4Gu+bnzD
Lc4BLdG4GoeC+PTfqSMPwRbS+cesEC0XXmmm6TWfi6wvGlAd4FDprLEvSZz1cmUO
4udBnj4krwUJkkLSf+bQTpLkqBIrIE19dakIialZWdY//aQKImGtpmqZu8SXAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUkq9g/wzWuCJPLRiLGPHvwJzg8+kwHwYDVR0j
BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx
OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE
NjUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04
NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzAzMjJlMzUzOTJlMzEzNzMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNzM3MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo7qjANBgkqhkiG
9w0BAQsFAAOCAQEAN3KQY7s0FsVUNnaqskMbqdrhjLhpi5SEYs0gkNwIB7RJdeeC
5XB/z6idP87zvFDlqELh3VycC3sPfD10viJF6TnW/ccxrCaC4Y9HN2swh1a1KeAM
iHIuFeTNzAmZkIXnMzZtqRX/MXF06fmTdx1pQ4iY2VBohy4GmwjK4+cNttVD7bE/
C7ZjvQKoxwDNs+hcRhtBEdPmtKoKI+B+ODH4w+p4EBFerZp99+K/PXgHY60K/l8V
L4V5XaFPDKuAXaX2OmXoUVKKj8cADnu4BuOVXI3iRfpj66QLCsZ6dNWkGVvxmkOR
GYTdSLyIq8RbaHXfGHDPGfeQPe9TtLOzTCFvlg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:52:53 2025 by rpki-client