Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa
File: 3230322e3133332e322e302f32342d3234203d3e203234323030.roa (raw, json)
Hash identifier: bz45Mn7ZgKZreN1WmgS7I4+teMbA4Do/dtC0u8jELGY=
Subject key identifier: AC:9B:94:FD:C4:9D:5B:23:FD:64:92:6E:10:6F:98:5E:4F:11:3E:68
Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40
Certificate serial: 204BCD7EA0BE2B107AD7532B2B6EC1DBA8D049F8
Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa
Signing time: Mon 23 Dec 2024 08:35:07 +0000
ROA not before: Mon 23 Dec 2024 08:30:07 +0000
ROA not after: Mon 22 Dec 2025 08:35:07 +0000
asID: 24200
IP address blocks: 202.133.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:4b:cd:7e:a0:be:2b:10:7a:d7:53:2b:2b:6e:c1:db:a8:d0:49:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40
Validity
Not Before: Dec 23 08:30:07 2024 GMT
Not After : Dec 22 08:35:07 2025 GMT
Subject: CN=AC9B94FDC49D5B23FD64926E106F985E4F113E68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:07:9e:4d:f7:69:64:53:9f:fe:84:89:15:dc:
e3:c3:58:70:fd:b5:45:ac:2d:2f:50:97:ce:72:17:
8a:d7:bd:24:d7:b4:cb:00:95:94:ad:0e:7f:f1:65:
4e:a6:b8:32:af:8a:56:59:ab:02:91:b7:b6:a7:c2:
56:44:8a:22:03:ca:ea:76:8d:9b:b5:31:59:b0:cb:
70:f6:9f:aa:b6:d4:22:6e:0c:60:ee:69:1e:8d:12:
71:47:90:1a:dc:fa:24:ee:64:70:57:68:25:c0:07:
88:b3:54:5c:f8:98:55:f3:83:52:28:1a:39:1e:69:
52:8c:79:2a:9d:30:89:37:ac:74:7c:15:71:fb:fd:
df:70:ca:e7:ec:4b:9b:1f:6b:1d:91:88:59:38:99:
75:22:8e:48:95:d2:49:0b:32:60:9f:a2:70:11:34:
83:72:fd:36:b1:8e:93:24:3e:fa:af:f8:85:c4:9f:
bb:6a:23:4f:8c:04:74:99:8c:18:92:6a:3a:c5:8d:
97:c8:0a:6b:2d:2e:f2:42:88:89:c5:11:53:78:09:
6a:21:a3:73:24:19:b4:4f:2f:44:00:ad:56:b7:d5:
39:26:ea:18:e6:ab:32:a8:33:35:7f:fa:a5:12:cb:
81:fd:d7:c1:82:9a:f0:39:20:fc:4d:ca:62:2a:e9:
66:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:9B:94:FD:C4:9D:5B:23:FD:64:92:6E:10:6F:98:5E:4F:11:3E:68
X509v3 Authority Key Identifier:
keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.133.2.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:92:36:6c:b4:e4:b8:f9:91:af:1e:25:ad:b8:0c:0a:64:44:
d9:e4:c1:62:94:15:89:a6:2a:12:6b:61:db:82:25:41:85:b0:
49:9a:31:a5:60:e9:d5:ce:b8:4d:b9:7a:aa:46:51:da:f4:71:
a2:62:80:3c:18:17:e7:a8:c4:a9:b2:2c:b8:63:e2:42:cf:0b:
68:b7:e7:64:19:1d:00:a5:c7:25:d5:d0:33:0d:32:a9:5a:90:
50:21:37:5a:c1:58:ba:ed:2f:cb:97:d9:78:8e:39:39:43:a9:
ca:d8:10:9b:0f:17:50:6e:d9:ef:49:76:ab:8d:6c:56:98:f4:
66:8a:ae:17:41:d0:3c:60:85:1c:e2:91:98:d5:c4:23:f0:4c:
97:93:07:18:fa:44:64:d0:f1:34:0d:59:9a:b3:7c:4d:d1:ff:
c0:d4:01:1e:f7:63:15:71:3d:f0:f6:cd:75:39:7d:b5:d8:4d:
77:bd:b9:61:ca:17:3c:14:1d:ce:3f:0a:d1:c2:41:7f:a0:25:
df:62:b8:52:3e:7f:44:77:3f:0b:d0:f7:53:e0:4a:91:8e:5e:
bc:bb:8e:ba:de:8d:bf:a8:34:c7:71:5d:e1:c7:97:0c:f3:1e:
fa:fc:67:3b:9d:ae:bb:c9:89:e3:ee:5c:bf:ca:c0:a5:56:5a:
13:cc:08:95
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUIEvNfqC+KxB611MrK27B26jQSfgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4
QkE3QkU0MDAeFw0yNDEyMjMwODMwMDdaFw0yNTEyMjIwODM1MDdaMDMxMTAvBgNV
BAMTKEFDOUI5NEZEQzQ5RDVCMjNGRDY0OTI2RTEwNkY5ODVFNEYxMTNFNjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgB55N92lkU5/+hIkV3OPDWHD9
tUWsLS9Ql85yF4rXvSTXtMsAlZStDn/xZU6muDKvilZZqwKRt7anwlZEiiIDyup2
jZu1MVmwy3D2n6q21CJuDGDuaR6NEnFHkBrc+iTuZHBXaCXAB4izVFz4mFXzg1Io
GjkeaVKMeSqdMIk3rHR8FXH7/d9wyufsS5sfax2RiFk4mXUijkiV0kkLMmCfonAR
NINy/TaxjpMkPvqv+IXEn7tqI0+MBHSZjBiSajrFjZfICmstLvJCiInFEVN4CWoh
o3MkGbRPL0QArVa31Tkm6hjmqzKoMzV/+qUSy4H918GCmvA5IPxNymIq6WYPAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUrJuU/cSdWyP9ZJJuEG+YXk8RPmgwHwYDVR0j
BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND
MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3
QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04
ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMjJlMzAyZjMyMzQy
ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQIwDQYJKoZIhvcN
AQELBQADggEBAMGSNmy05Lj5ka8eJa24DApkRNnkwWKUFYmmKhJrYduCJUGFsEma
MaVg6dXOuE25eqpGUdr0caJigDwYF+eoxKmyLLhj4kLPC2i352QZHQClxyXV0DMN
MqlakFAhN1rBWLrtL8uX2XiOOTlDqcrYEJsPF1Bu2e9JdquNbFaY9GaKrhdB0Dxg
hRzikZjVxCPwTJeTBxj6RGTQ8TQNWZqzfE3R/8DUAR73YxVxPfD2zXU5fbXYTXe9
uWHKFzwUHc4/CtHCQX+gJd9iuFI+f0R3PwvQ91PgSpGOXry7jrrejb+oNMdxXeHH
lwzzHvr8ZzudrrvJiePuXL/KwKVWWhPMCJU=
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:05:08 2025 by rpki-client