Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa
File: 3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa (raw, json)
Hash identifier: yZ3S3VlEg8XhUnYFrYIEtsQAe3osggFJf6UwQXimraQ=
Subject key identifier: 7F:9B:8B:FE:F7:D8:45:FA:E2:7B:99:EF:9B:03:3F:57:E0:C9:77:34
Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B
Certificate serial: 0E0C8432C5A602333B65AAB1EE745F8D84781AC2
Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa
Signing time: Mon 11 Nov 2024 08:00:00 +0000
ROA not before: Mon 11 Nov 2024 07:55:00 +0000
ROA not after: Mon 10 Nov 2025 08:00:00 +0000
asID: 38750
IP address blocks: 202.179.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:0c:84:32:c5:a6:02:33:3b:65:aa:b1:ee:74:5f:8d:84:78:1a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B
Validity
Not Before: Nov 11 07:55:00 2024 GMT
Not After : Nov 10 08:00:00 2025 GMT
Subject: CN=7F9B8BFEF7D845FAE27B99EF9B033F57E0C97734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:18:a3:19:3c:39:40:16:a7:a8:7c:5d:18:e7:
86:6c:a0:d0:3d:2c:47:d8:c3:4c:ff:44:da:6c:c1:
c9:e8:a2:fb:f3:d2:3f:e4:ea:79:04:4b:93:25:d9:
c3:1a:aa:ac:e9:28:f2:ff:34:b9:8d:60:92:ed:b7:
f9:f4:c1:05:f3:37:ca:3e:a0:e5:54:e9:7c:6b:66:
d7:5d:e2:69:47:aa:b3:b4:53:5b:fc:9e:f9:e4:6e:
25:be:a5:a8:45:f2:72:4f:ee:7a:31:bc:f1:13:a6:
26:b1:f5:b3:67:61:0f:7a:93:41:a6:38:b3:8b:96:
80:0b:4e:39:70:a9:7a:ac:85:9c:eb:ab:76:44:27:
42:46:69:3c:67:b2:f5:8f:27:c0:82:87:ae:dc:ce:
d0:98:9b:b6:95:26:56:19:fd:81:bd:4c:57:6d:7a:
b5:2e:1f:70:24:27:d0:3e:92:33:11:7e:f0:37:51:
e6:45:cf:70:c6:9b:90:e8:90:dd:e6:05:5c:59:97:
fe:06:70:e5:de:ea:79:72:2f:2c:0c:cf:5c:7d:b5:
df:46:87:92:19:47:52:41:b9:9f:f0:b0:ff:d6:c3:
b6:c8:cf:a3:ca:1a:ab:5a:8f:44:d5:7d:6c:2b:77:
8a:44:d0:dc:ca:c2:9d:22:2b:25:3d:ec:c4:3a:3b:
95:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:9B:8B:FE:F7:D8:45:FA:E2:7B:99:EF:9B:03:3F:57:E0:C9:77:34
X509v3 Authority Key Identifier:
keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.179.186.0/24
Signature Algorithm: sha256WithRSAEncryption
54:21:4c:21:6f:db:40:58:66:ee:e1:05:2f:2d:d2:41:e8:cb:
42:dd:7f:40:7b:de:3c:ec:e5:23:29:cd:67:d4:cd:a3:90:43:
23:e6:6b:c7:17:78:49:b8:c0:0e:f5:a0:ab:7e:6a:a6:eb:3b:
b3:92:d8:f8:2f:46:ae:8a:14:86:3e:41:bc:fe:03:d5:ae:dd:
07:47:e3:a2:5b:05:15:c3:ba:73:67:03:19:ce:d6:bc:02:a6:
11:45:36:30:bd:fc:6a:29:25:22:bf:d0:dc:e2:77:c2:68:28:
f6:d1:cf:ed:4c:78:d1:78:8f:56:c9:ab:48:49:d7:3b:54:b6:
5f:d9:63:ee:2a:ce:eb:ea:f0:eb:46:35:7e:8c:8d:09:34:25:
cb:7c:58:ff:8a:51:50:eb:68:5f:9c:b8:55:f4:50:b6:e9:81:
f1:8b:b8:08:d3:3c:bc:fc:84:f7:7b:56:df:9f:81:68:d4:16:
25:5b:ee:17:99:9f:d6:5a:d9:e1:72:7b:d8:e1:83:45:b2:4f:
74:06:2a:f8:57:73:0e:b8:84:3c:0a:9e:e5:bd:7b:cb:1e:fd:
19:65:32:8e:e8:27:68:79:15:44:bb:fa:96:9d:99:a1:4c:a4:
18:5c:75:4c:a6:8c:a7:c1:9d:73:9f:1a:b1:98:2d:0d:af:89:
f5:81:a1:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:24:19 2025 by rpki-client