Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/3230322e39302e3139392e302f32342d3234203d3e203338373739.roa
File: 3230322e39302e3139392e302f32342d3234203d3e203338373739.roa (raw, json)
Hash identifier: uYzs+p1vNU4q3UnY6dxGmF6ROTnds5qtaQgqOkbuJ7s=
Subject key identifier: EF:6F:E5:49:2B:E0:E7:BC:D5:78:CC:17:A6:25:A1:73:DE:00:17:84
Certificate issuer: /CN=9C11A28FECE27B65C7E6475906C6CCB974C04C40
Certificate serial: 3F8575B00CBE61AD89B9CA7FA0C6A2F0B4CAACCF
Authority key identifier: 9C:11:A2:8F:EC:E2:7B:65:C7:E6:47:59:06:C6:CC:B9:74:C0:4C:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9C11A28FECE27B65C7E6475906C6CCB974C04C40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/3230322e39302e3139392e302f32342d3234203d3e203338373739.roa
Signing time: Mon 30 Dec 2024 18:20:07 +0000
ROA not before: Mon 30 Dec 2024 18:15:07 +0000
ROA not after: Mon 29 Dec 2025 18:20:07 +0000
asID: 38779
IP address blocks: 202.90.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:85:75:b0:0c:be:61:ad:89:b9:ca:7f:a0:c6:a2:f0:b4:ca:ac:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9C11A28FECE27B65C7E6475906C6CCB974C04C40
Validity
Not Before: Dec 30 18:15:07 2024 GMT
Not After : Dec 29 18:20:07 2025 GMT
Subject: CN=EF6FE5492BE0E7BCD578CC17A625A173DE001784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:01:07:36:8a:f8:a8:c3:89:47:54:80:db:82:
c8:82:15:14:36:c8:6a:12:cc:87:00:e4:e1:1e:6d:
78:e5:d5:b6:bf:92:80:c9:ef:8f:1e:d5:c4:93:37:
42:07:1b:57:32:77:d6:26:56:93:11:0f:f5:71:99:
ff:84:9c:cf:b3:65:82:67:01:90:ca:de:3e:11:26:
8d:f2:c2:a2:5a:5a:02:06:b9:14:1a:04:ee:dc:20:
d4:87:28:92:c0:26:bb:17:07:38:49:29:b8:eb:1a:
88:4f:f6:0a:cd:e4:56:72:7c:3a:44:a4:bc:9d:dc:
d8:f3:1c:2b:fa:68:12:ea:40:27:1a:80:77:43:34:
e1:0e:c7:a5:f1:f0:15:b3:f2:4b:e8:37:0c:65:86:
65:70:0e:91:7a:4c:c1:b1:6f:9e:07:7d:69:81:5f:
13:7b:c4:0f:49:d8:bc:ee:21:44:9a:fe:7d:15:90:
26:28:f9:53:c2:bd:46:e7:de:b4:9d:76:48:82:78:
c8:12:74:08:72:bb:f6:1c:21:d5:68:76:ee:70:c9:
9f:1e:28:b3:25:b8:15:1c:e8:81:ac:16:76:e5:5e:
ef:93:a1:86:00:e0:c9:80:95:d9:b4:72:85:77:b5:
59:d3:6a:c3:3d:61:19:e3:ba:cc:8c:0f:aa:77:29:
26:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:6F:E5:49:2B:E0:E7:BC:D5:78:CC:17:A6:25:A1:73:DE:00:17:84
X509v3 Authority Key Identifier:
keyid:9C:11:A2:8F:EC:E2:7B:65:C7:E6:47:59:06:C6:CC:B9:74:C0:4C:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/9C11A28FECE27B65C7E6475906C6CCB974C04C40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9C11A28FECE27B65C7E6475906C6CCB974C04C40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/3230322e39302e3139392e302f32342d3234203d3e203338373739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.90.199.0/24
Signature Algorithm: sha256WithRSAEncryption
66:a7:d7:a2:6b:6f:2f:44:23:13:e9:bf:d1:ab:0a:9e:80:11:
c9:7e:2c:fb:24:34:6d:12:28:c7:b7:3f:6e:0c:61:bc:08:4d:
0c:a3:83:a3:52:56:84:f9:55:b1:b5:7f:cb:a7:eb:0a:eb:35:
da:30:58:c1:5e:84:83:03:15:36:32:d4:02:89:74:9f:a9:c2:
43:0e:58:8a:c9:a2:f9:f0:4f:9d:7f:20:3d:b4:dc:00:cb:02:
b1:07:97:40:87:af:40:32:0c:63:0b:63:11:9c:16:28:52:b3:
02:e1:d3:c5:36:9b:50:35:ea:b4:e9:ac:57:f3:8c:25:67:d1:
9f:67:64:9f:f6:d1:4e:71:97:4b:ae:18:e2:d8:14:67:93:f4:
c2:38:b8:44:40:f2:41:6e:81:78:31:34:f7:a7:9e:96:38:42:
9f:fb:58:76:c0:73:94:cc:0f:70:87:9e:4c:b3:f6:91:a0:68:
ba:7c:36:d3:93:e2:ba:46:f5:76:57:7e:8f:1d:3e:7d:7d:10:
c9:29:b7:63:00:83:03:4b:c6:6d:92:16:dd:2c:3d:41:87:35:
2a:a6:f7:46:df:38:23:2d:e4:23:c0:b4:d3:87:f6:2a:64:b4:
e7:25:54:67:00:6f:6d:44:49:8d:7d:8b:87:58:56:74:76:8f:
07:8e:34:3e
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUP4V1sAy+Ya2Jucp/oMai8LTKrM8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUMxMUEyOEZFQ0UyN0I2NUM3RTY0NzU5MDZDNkNDQjk3
NEMwNEM0MDAeFw0yNDEyMzAxODE1MDdaFw0yNTEyMjkxODIwMDdaMDMxMTAvBgNV
BAMTKEVGNkZFNTQ5MkJFMEU3QkNENTc4Q0MxN0E2MjVBMTczREUwMDE3ODQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6AQc2iviow4lHVIDbgsiCFRQ2
yGoSzIcA5OEebXjl1ba/koDJ748e1cSTN0IHG1cyd9YmVpMRD/Vxmf+EnM+zZYJn
AZDK3j4RJo3ywqJaWgIGuRQaBO7cINSHKJLAJrsXBzhJKbjrGohP9grN5FZyfDpE
pLyd3NjzHCv6aBLqQCcagHdDNOEOx6Xx8BWz8kvoNwxlhmVwDpF6TMGxb54HfWmB
XxN7xA9J2LzuIUSa/n0VkCYo+VPCvUbn3rSddkiCeMgSdAhyu/YcIdVodu5wyZ8e
KLMluBUc6IGsFnblXu+ToYYA4MmAldm0coV3tVnTasM9YRnjusyMD6p3KSY1AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU72/lSSvg57zVeMwXpiWhc94AF4QwHwYDVR0j
BBgwFoAUnBGij+zie2XH5kdZBsbMuXTATEAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
NGUxZjM3MC1mMzFmLTQ3ZWQtOGE0MS1iMjhiYzhkYWY0MzUvMC85QzExQTI4RkVD
RTI3QjY1QzdFNjQ3NTkwNkM2Q0NCOTc0QzA0QzQwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOUMxMUEyOEZFQ0UyN0I2NUM3RTY0NzU5MDZDNkNDQjk3NEMw
NEM0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0ZTFmMzcwLWYzMWYtNDdlZC04
YTQxLWIyOGJjOGRhZjQzNS8wLzMyMzAzMjJlMzkzMDJlMzEzOTM5MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpaxzANBgkqhkiG
9w0BAQsFAAOCAQEAZqfXomtvL0QjE+m/0asKnoARyX4s+yQ0bRIox7c/bgxhvAhN
DKODo1JWhPlVsbV/y6frCus12jBYwV6EgwMVNjLUAol0n6nCQw5Yismi+fBPnX8g
PbTcAMsCsQeXQIevQDIMYwtjEZwWKFKzAuHTxTabUDXqtOmsV/OMJWfRn2dkn/bR
TnGXS64Y4tgUZ5P0wji4REDyQW6BeDE096eeljhCn/tYdsBzlMwPcIeeTLP2kaBo
unw205Piukb1dld+jx0+fX0QySm3YwCDA0vGbZIW3Sw9QYc1Kqb3Rt84Iy3kI8C0
04f2KmS05yVUZwBvbURJjX2Lh1hWdHaPB440Pg==
-----END CERTIFICATE-----
Generated at Thu Apr 10 16:42:13 2025 by rpki-client