Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e372e302f32342d3234203d3e203234323030.roa
File: 3230322e3133332e372e302f32342d3234203d3e203234323030.roa (raw, json)
Hash identifier: sHrERPT1Gki4rCwtxWJOl3kaPuH5N8410kKwTEyBzNs=
Subject key identifier: 0B:31:43:F9:7B:EA:52:B9:10:7D:74:0C:C0:4E:00:82:EC:8E:A7:AB
Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40
Certificate serial: 24DCCF025465E15C387DEA1F92D4977A67462A1C
Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e372e302f32342d3234203d3e203234323030.roa
Signing time: Mon 23 Dec 2024 08:36:06 +0000
ROA not before: Mon 23 Dec 2024 08:31:06 +0000
ROA not after: Mon 22 Dec 2025 08:36:06 +0000
asID: 24200
IP address blocks: 202.133.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:dc:cf:02:54:65:e1:5c:38:7d:ea:1f:92:d4:97:7a:67:46:2a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40
Validity
Not Before: Dec 23 08:31:06 2024 GMT
Not After : Dec 22 08:36:06 2025 GMT
Subject: CN=0B3143F97BEA52B9107D740CC04E0082EC8EA7AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cf:8d:ae:b8:d9:c5:38:e5:d8:95:f5:49:06:
7c:94:d4:cf:c4:26:26:15:f1:35:2e:b7:02:45:d3:
13:ca:1e:80:43:3f:c9:a0:cb:cb:68:bb:b3:d4:bb:
b7:39:55:b3:d3:82:3e:e3:23:a6:73:a6:fe:33:49:
59:ec:ed:79:03:6b:ef:51:4d:4b:fc:eb:6f:37:89:
5b:f4:e0:bd:49:52:bb:b3:57:08:b4:31:70:7c:f0:
cb:1a:02:89:be:5b:9d:d4:fe:62:8b:76:36:97:f5:
8f:79:56:5e:5f:a5:82:66:09:df:f8:c7:6d:99:0f:
57:c1:1b:b5:cc:76:3f:18:e5:ca:08:4c:3b:f3:b5:
88:89:ce:b3:43:e2:e9:6a:df:35:84:d1:2a:15:0e:
e6:ea:7f:3c:61:0f:86:ab:00:69:be:bb:b3:ec:05:
32:79:7e:5b:1a:39:f1:f6:ed:eb:c9:53:39:a6:a5:
d5:ac:af:0c:91:79:2b:3d:88:1e:af:59:b4:18:cb:
2e:48:fe:0e:75:44:0f:20:23:85:c9:fc:e2:e5:63:
3e:09:fa:52:06:fe:fc:d5:10:53:8e:82:ac:cf:64:
33:1b:9b:85:99:b9:1b:2b:c8:41:0e:4a:a9:c8:ff:
63:01:47:3e:76:90:cd:cd:65:e0:81:e6:a5:61:97:
8f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:31:43:F9:7B:EA:52:B9:10:7D:74:0C:C0:4E:00:82:EC:8E:A7:AB
X509v3 Authority Key Identifier:
keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e372e302f32342d3234203d3e203234323030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.133.7.0/24
Signature Algorithm: sha256WithRSAEncryption
eb:7d:e9:be:4e:09:00:37:5c:3c:95:7f:a9:d9:fc:13:87:ee:
c4:e5:7c:23:77:32:4d:18:4c:b0:63:a6:43:04:d5:d2:34:05:
43:d3:b3:69:dd:9b:f1:2f:09:cc:8c:b9:24:3a:16:6c:4c:23:
04:7f:da:ba:17:6a:ba:75:16:aa:ac:cd:7c:01:62:43:d7:08:
b0:46:bb:f5:46:cc:49:68:f7:b3:92:9e:87:87:da:63:b1:44:
ac:d0:7c:6d:0e:38:68:24:fb:71:ad:27:0a:9e:46:7a:a3:4b:
bd:09:40:9f:55:95:28:23:97:92:f9:83:b0:6d:97:59:88:fd:
2c:ca:09:2b:37:10:42:9f:64:a6:e5:25:b5:4c:4a:1c:0b:db:
58:c8:d2:91:12:a3:48:db:06:ed:63:36:be:33:6d:62:46:59:
89:76:c0:b0:a2:3f:54:36:a7:90:00:12:bc:b0:fe:4d:9d:b8:
93:66:85:98:f9:a6:36:da:86:91:e9:39:83:41:4f:ff:f8:06:
c3:d4:56:9a:e4:7a:f9:d2:a0:d4:1d:0e:8d:4d:2d:bc:c1:bb:
52:ca:9f:0b:9a:12:69:f6:8f:90:6a:84:d2:92:91:c0:16:4b:
97:12:0f:d6:00:76:c8:7a:2b:bd:3a:99:a3:ad:19:e8:60:56:
ba:bf:71:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:05:01 2025 by rpki-client