Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa
File: 3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa (raw, json)
Hash identifier: Ffr7HSxRfBzoFYefTz5XE3Cvp6ZJFdX7ThQTqqqgwdo=
Subject key identifier: 47:DA:31:D8:04:26:11:B1:3C:1D:FD:5A:27:83:A7:7F:65:A8:D1:C9
Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8
Certificate serial: 1F21728F46C8C73814293C6538430864D2CA9BF8
Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa
Signing time: Fri 01 Nov 2024 03:32:45 +0000
ROA not before: Fri 01 Nov 2024 03:27:45 +0000
ROA not after: Fri 31 Oct 2025 03:32:45 +0000
asID: 152032
IP address blocks: 202.47.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:21:72:8f:46:c8:c7:38:14:29:3c:65:38:43:08:64:d2:ca:9b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8
Validity
Not Before: Nov 1 03:27:45 2024 GMT
Not After : Oct 31 03:32:45 2025 GMT
Subject: CN=47DA31D8042611B13C1DFD5A2783A77F65A8D1C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:7d:65:f3:4f:1e:58:dd:2f:fe:22:d7:92:50:
c7:3e:3a:26:5a:68:a5:22:68:0b:f5:4a:b6:17:8e:
13:11:a9:f9:5e:8e:b9:c6:97:05:47:ad:98:de:e0:
80:40:d2:b0:a7:cc:f4:0a:49:87:e7:46:07:38:c7:
92:cc:92:06:41:e1:7d:76:dc:0b:3c:f9:02:82:b5:
d5:a8:96:8b:11:80:94:26:b3:6d:79:89:cf:0a:2f:
8e:f8:db:26:86:4d:d5:84:56:68:ff:06:1b:7f:02:
bd:ff:01:57:18:da:9c:6a:5b:51:16:92:97:1a:e5:
3c:a9:98:c6:6c:c9:cc:54:cb:b3:81:3f:ec:7b:b9:
0e:cc:c9:00:a7:8a:d4:9b:bf:ae:4d:62:88:ad:e0:
19:45:86:8e:a2:63:6f:70:09:64:9f:e0:44:b2:b5:
b5:70:70:1d:9d:c0:63:be:d7:08:f3:38:46:1e:fd:
72:23:49:1b:02:86:5a:9c:37:a7:b7:fc:dd:78:61:
81:23:88:00:ab:f6:ef:fa:e4:46:7a:79:e5:aa:3d:
45:42:8d:ef:ce:bb:6f:f5:fa:ba:41:95:f8:b7:c2:
df:be:bb:f3:49:70:22:ac:5c:e1:d7:d7:2f:80:6e:
2c:56:b2:9f:d8:55:d3:21:24:9a:d9:ba:a6:5a:6f:
3d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:DA:31:D8:04:26:11:B1:3C:1D:FD:5A:27:83:A7:7F:65:A8:D1:C9
X509v3 Authority Key Identifier:
keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/3230322e34372e3138352e302f32342d3234203d3e20313532303332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.47.185.0/24
Signature Algorithm: sha256WithRSAEncryption
06:8e:c1:91:52:39:02:ed:5e:56:6f:62:79:65:19:91:79:40:
ab:e1:c2:ef:92:8c:01:45:02:af:82:7d:3a:86:35:88:42:aa:
f4:a2:65:12:1d:7f:c8:4a:9d:87:35:d8:d4:ff:83:c0:36:a2:
ba:03:b4:48:fe:21:73:64:1f:b2:c5:e7:eb:48:6d:2f:bd:17:
79:1b:b0:62:05:3c:de:1c:46:63:41:00:9c:c6:3b:5c:fc:e1:
d0:86:a4:6c:8d:1c:3e:3b:21:f0:74:41:06:76:37:a9:b1:b5:
ca:c8:0e:9a:20:ec:46:74:0f:37:a0:82:96:e4:48:2a:4c:2a:
40:00:e8:2e:bc:e1:4d:7f:5a:2d:0e:77:96:36:7d:62:f3:84:
59:95:ff:e9:5b:db:78:a6:07:3e:90:80:f7:ed:e6:65:73:07:
55:23:69:38:76:10:81:25:ba:92:30:5f:3b:70:c0:20:62:66:
aa:35:59:cf:68:29:7e:16:cc:46:92:3c:f7:39:f1:30:ee:69:
f0:cf:63:d5:e0:e8:8b:3d:85:70:8a:2d:8b:09:e9:00:31:68:
0d:44:46:2c:42:98:c6:4a:3f:93:78:18:6c:0b:99:9f:09:ce:
b0:61:f5:58:a9:1b:96:01:ee:1b:07:21:bc:98:29:36:60:81:
64:cc:19:4a
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUHyFyj0bIxzgUKTxlOEMIZNLKm/gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlC
NEEzN0NFODAeFw0yNDExMDEwMzI3NDVaFw0yNTEwMzEwMzMyNDVaMDMxMTAvBgNV
BAMTKDQ3REEzMUQ4MDQyNjExQjEzQzFERkQ1QTI3ODNBNzdGNjVBOEQxQzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1fWXzTx5Y3S/+IteSUMc+OiZa
aKUiaAv1SrYXjhMRqflejrnGlwVHrZje4IBA0rCnzPQKSYfnRgc4x5LMkgZB4X12
3As8+QKCtdWolosRgJQms215ic8KL4742yaGTdWEVmj/Bht/Ar3/AVcY2pxqW1EW
kpca5TypmMZsycxUy7OBP+x7uQ7MyQCnitSbv65NYoit4BlFho6iY29wCWSf4ESy
tbVwcB2dwGO+1wjzOEYe/XIjSRsChlqcN6e3/N14YYEjiACr9u/65EZ6eeWqPUVC
je/Ou2/1+rpBlfi3wt++u/NJcCKsXOHX1y+AbixWsp/YVdMhJJrZuqZabz0bAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUR9ox2AQmEbE8Hf1aJ4Onf2Wo0ckwHwYDVR0j
BBgwFoAUzsJkKd8whhWHDB9H6M3k+bSjfOgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
ZTVmZGY2Yy0wZDAxLTQ5MmItODAwNC1hNDhlZTVhMTI0NzQvMC9DRUMyNjQyOURG
MzA4NjE1ODcwQzFGNDdFOENERTRGOUI0QTM3Q0U4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlCNEEz
N0NFOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNWZkZjZjLTBkMDEtNDkyYi04
MDA0LWE0OGVlNWExMjQ3NC8wLzMyMzAzMjJlMzQzNzJlMzEzODM1MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyi+5MA0GCSqG
SIb3DQEBCwUAA4IBAQAGjsGRUjkC7V5Wb2J5ZRmReUCr4cLvkowBRQKvgn06hjWI
Qqr0omUSHX/ISp2HNdjU/4PANqK6A7RI/iFzZB+yxefrSG0vvRd5G7BiBTzeHEZj
QQCcxjtc/OHQhqRsjRw+OyHwdEEGdjepsbXKyA6aIOxGdA83oIKW5EgqTCpAAOgu
vOFNf1otDneWNn1i84RZlf/pW9t4pgc+kID37eZlcwdVI2k4dhCBJbqSMF87cMAg
YmaqNVnPaCl+FsxGkjz3OfEw7mnwz2PV4OiLPYVwii2LCekAMWgNREYsQpjGSj+T
eBhsC5mfCc6wYfVYqRuWAe4bByG8mCk2YIFkzBlK
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:33 2025 by rpki-client