Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa
File: 3230322e34332e37322e302f32332d3233203d3e203435323938.roa (raw, json)
Hash identifier: feRjR6nWSyfmaMgLQg5XOrxeov+50p/kElr8AbvMY8M=
Subject key identifier: FA:2E:D9:E3:33:F0:04:CA:85:DE:84:2F:75:00:EF:72:4D:99:9A:DD
Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE
Certificate serial: 49D0905FA97587F2B9BB635A57033660257CE8A6
Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa
Signing time: Tue 16 Jul 2024 17:00:01 +0000
ROA not before: Tue 16 Jul 2024 16:55:01 +0000
ROA not after: Tue 15 Jul 2025 17:00:01 +0000
asID: 45298
IP address blocks: 202.43.72.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:d0:90:5f:a9:75:87:f2:b9:bb:63:5a:57:03:36:60:25:7c:e8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE
Validity
Not Before: Jul 16 16:55:01 2024 GMT
Not After : Jul 15 17:00:01 2025 GMT
Subject: CN=FA2ED9E333F004CA85DE842F7500EF724D999ADD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:28:4d:14:f1:e3:60:d7:e4:d5:5d:71:45:9b:
19:a8:4c:34:42:1a:b5:62:22:e8:2a:23:12:a3:d4:
d4:91:09:6e:4b:e1:4f:ac:8f:00:28:26:a2:29:75:
c6:c6:69:13:a7:6d:7b:eb:27:0f:4f:a3:4b:0b:d0:
cd:e7:21:f3:77:81:ea:3c:68:34:bb:81:bd:6a:d7:
9a:75:dd:6e:b1:b0:0a:1c:9b:eb:ad:bd:42:d0:db:
f6:93:61:d6:d3:1b:d1:0e:f2:a2:8d:64:dd:7b:8c:
11:9c:35:7a:ea:54:09:74:d2:dc:7f:34:f1:fd:5c:
78:fe:c7:c7:61:b9:9a:1a:1b:be:d4:7b:19:55:fc:
3c:fa:f2:83:6f:89:02:dd:e9:46:52:2c:c4:6e:39:
63:f4:2d:9b:94:5a:26:09:2e:3b:22:73:f8:2f:a5:
8e:c2:c9:ec:2d:96:a4:6d:d5:fd:a7:54:05:70:19:
b4:ea:38:72:dc:eb:0b:17:9b:27:c2:95:67:7b:f2:
8a:3d:a5:b1:c1:1c:c6:2c:17:e4:7b:33:1f:0d:ef:
5a:e6:94:9c:26:25:f9:f5:7b:7a:6a:5e:f0:e0:5d:
0d:e7:d6:60:6e:6b:68:fe:8d:42:24:38:cf:43:1f:
3e:be:c0:2b:8b:ea:71:9d:8a:45:d6:c9:5b:3f:06:
02:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2E:D9:E3:33:F0:04:CA:85:DE:84:2F:75:00:EF:72:4D:99:9A:DD
X509v3 Authority Key Identifier:
keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/3230322e34332e37322e302f32332d3233203d3e203435323938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.43.72.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:ab:c2:bf:86:e1:82:53:10:0f:dc:2d:cf:f0:c6:eb:c6:61:
0e:1e:f7:a4:1a:61:fb:a0:22:2d:50:08:83:70:20:02:17:ae:
e6:9b:e3:a7:c0:d6:fe:a4:5b:e2:a4:07:f5:87:35:a5:6f:6d:
91:53:d1:e0:3e:00:ba:79:e6:c0:21:f0:98:4b:73:1b:6f:8f:
a6:9f:fa:ac:2f:c9:2d:b8:e7:96:07:ec:1a:b8:79:e5:0f:a8:
e6:0e:7d:42:65:fa:2b:5e:9a:22:6d:c5:a8:0b:f7:9f:b1:76:
57:94:9e:82:58:0f:18:e5:d1:97:e2:e6:21:5f:9a:8c:e8:58:
5e:51:d8:58:75:72:10:d9:e0:ea:0a:60:c6:96:ca:f0:b3:99:
c7:66:c3:95:b1:16:d6:a8:72:02:aa:c3:ea:af:7f:49:4a:fa:
7f:c2:c6:29:c8:9d:70:3c:38:61:35:c0:68:79:59:45:56:54:
df:4b:b4:2f:94:46:0d:09:10:59:56:34:03:6d:95:49:3d:f9:
34:47:7e:50:9d:fa:9d:39:65:af:8c:ff:10:36:b3:23:f3:41:
b0:29:e7:23:d3:29:da:17:90:86:aa:53:01:6b:8e:2a:25:46:
fd:c3:11:be:0e:4b:f1:29:1a:1f:58:9d:4e:f2:0d:a8:6c:e2:
32:59:26:a2
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUSdCQX6l1h/K5u2NaVwM2YCV86KYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD
ODg2RjFERTAeFw0yNDA3MTYxNjU1MDFaFw0yNTA3MTUxNzAwMDFaMDMxMTAvBgNV
BAMTKEZBMkVEOUUzMzNGMDA0Q0E4NURFODQyRjc1MDBFRjcyNEQ5OTlBREQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLKE0U8eNg1+TVXXFFmxmoTDRC
GrViIugqIxKj1NSRCW5L4U+sjwAoJqIpdcbGaROnbXvrJw9Po0sL0M3nIfN3geo8
aDS7gb1q15p13W6xsAocm+utvULQ2/aTYdbTG9EO8qKNZN17jBGcNXrqVAl00tx/
NPH9XHj+x8dhuZoaG77UexlV/Dz68oNviQLd6UZSLMRuOWP0LZuUWiYJLjsic/gv
pY7CyewtlqRt1f2nVAVwGbTqOHLc6wsXmyfClWd78oo9pbHBHMYsF+R7Mx8N71rm
lJwmJfn1e3pqXvDgXQ3n1mBua2j+jUIkOM9DHz6+wCuL6nGdikXWyVs/BgIjAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU+i7Z4zPwBMqF3oQvdQDvck2Zmt0wHwYDVR0j
BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw
M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2
RjFERS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05
MDk3LWMwYmVjMGIyNjZhNy8wLzMyMzAzMjJlMzQzMzJlMzczMjJlMzAyZjMyMzMy
ZDMyMzMyMDNkM2UyMDM0MzUzMjM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKK0gwDQYJKoZIhvcN
AQELBQADggEBAG+rwr+G4YJTEA/cLc/wxuvGYQ4e96QaYfugIi1QCINwIAIXruab
46fA1v6kW+KkB/WHNaVvbZFT0eA+ALp55sAh8JhLcxtvj6af+qwvyS2455YH7Bq4
eeUPqOYOfUJl+itemiJtxagL95+xdleUnoJYDxjl0Zfi5iFfmozoWF5R2Fh1chDZ
4OoKYMaWyvCzmcdmw5WxFtaocgKqw+qvf0lK+n/CxinInXA8OGE1wGh5WUVWVN9L
tC+URg0JEFlWNANtlUk9+TRHflCd+p05Za+M/xA2syPzQbAp5yPTKdoXkIaqUwFr
jiolRv3DEb4OS/EpGh9YnU7yDahs4jJZJqI=
-----END CERTIFICATE-----
Generated at Mon Apr 7 01:10:32 2025 by rpki-client