Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e302e302f32322d3232203d3e2039393035.roa
File: 3230322e3133372e302e302f32322d3232203d3e2039393035.roa (raw, json)
Hash identifier: 2iDSlrQoznt9f5GMWVzI8SdfIdboE2LrFqnkBmGHT+c=
Subject key identifier: 61:20:06:A4:ED:8C:6B:11:FE:DF:D4:21:A6:A7:1C:FF:11:C2:38:16
Certificate issuer: /CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7
Certificate serial: 5C568227DDB4BB44D6228BAAABF43D05793B2230
Authority key identifier: 78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e302e302f32322d3232203d3e2039393035.roa
Signing time: Tue 14 May 2024 16:00:01 +0000
ROA not before: Tue 14 May 2024 15:55:01 +0000
ROA not after: Tue 13 May 2025 16:00:01 +0000
asID: 9905
IP address blocks: 202.137.0.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:56:82:27:dd:b4:bb:44:d6:22:8b:aa:ab:f4:3d:05:79:3b:22:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7
Validity
Not Before: May 14 15:55:01 2024 GMT
Not After : May 13 16:00:01 2025 GMT
Subject: CN=612006A4ED8C6B11FEDFD421A6A71CFF11C23816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d0:7b:54:d0:6f:39:6d:3c:5f:e4:ac:f4:77:
47:8d:ce:8e:4b:f7:65:56:3d:e5:5c:5f:a0:8f:d6:
f9:04:b8:f2:c0:ef:47:f3:1c:65:9d:0a:6b:0d:c7:
2b:e7:18:89:4e:5c:a4:97:d5:f6:87:af:ce:5e:ab:
4b:2d:d9:cc:6e:67:f0:4c:5b:49:2a:99:9a:5b:fd:
2d:68:65:82:78:ca:09:b3:d6:5e:e9:d9:e0:86:2a:
17:e9:85:53:3c:eb:28:a3:92:f8:97:4d:f0:c5:d6:
42:ce:f8:01:61:43:ea:b0:af:ae:d6:f2:6f:79:ce:
c0:6f:56:87:61:d2:be:8b:90:db:1c:5e:c1:c8:fd:
04:79:87:48:5e:f1:43:53:91:c7:39:a4:64:38:12:
d3:45:b1:43:fe:e4:61:76:b0:4f:68:aa:4d:fa:43:
0f:c6:13:8d:a0:1f:99:af:c9:aa:c2:58:36:c0:dd:
28:d3:46:4d:32:a2:91:3d:c4:bd:d6:5f:e1:42:df:
ab:6b:74:be:dc:87:9e:21:77:cd:e2:af:12:ee:65:
36:30:16:33:8b:61:8e:21:05:99:13:26:ab:6c:6f:
65:9c:1a:67:03:9b:b2:64:1f:86:a1:aa:34:65:00:
19:b4:7a:03:4a:47:81:97:25:58:e7:c7:4b:12:cc:
16:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:20:06:A4:ED:8C:6B:11:FE:DF:D4:21:A6:A7:1C:FF:11:C2:38:16
X509v3 Authority Key Identifier:
keyid:78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e3133372e302e302f32322d3232203d3e2039393035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.137.0.0/22
Signature Algorithm: sha256WithRSAEncryption
52:dc:d1:c7:8d:3a:a2:ea:0b:23:a5:08:62:4d:f0:3e:6c:90:
da:aa:72:dc:0c:8e:5a:1c:a5:7a:e5:95:46:6f:42:91:f4:6a:
d0:b5:4b:93:63:4f:a3:86:73:28:e6:85:a0:de:19:c7:ed:c5:
73:cf:72:74:7f:f0:1f:19:48:f9:44:e3:eb:4c:a6:7c:37:46:
ca:4f:ef:84:f5:8a:f2:e7:30:f3:0c:f1:29:36:3f:97:a8:a1:
72:61:46:f6:32:5e:57:a9:e5:00:66:fe:24:30:d6:4b:48:95:
f3:b7:3c:28:9b:03:44:86:22:f7:40:03:51:ad:ba:80:7f:00:
0b:11:a3:50:0b:12:9e:8d:cb:6c:a2:95:f1:ed:61:11:4a:5b:
fd:b1:71:0c:67:c0:ff:19:ea:28:ef:32:e9:48:31:6d:6b:47:
bc:2e:94:de:68:97:5c:a4:e8:44:66:1e:76:b8:1c:40:20:bc:
2a:62:00:d8:d4:31:be:36:70:69:cd:d7:75:03:24:f9:65:48:
68:c8:11:df:54:c0:9e:8b:7b:66:39:97:e4:f3:e9:9a:ca:c8:
7e:42:0c:31:45:30:f8:7b:b9:db:f5:de:77:da:ba:15:38:93:
b4:3b:7a:aa:f2:8f:df:91:cc:82:43:48:03:2e:f8:7a:05:1c:
2e:d4:83:30
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIUXFaCJ920u0TWIouqq/Q9BXk7IjAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdB
RjA5OTlFNzAeFw0yNDA1MTQxNTU1MDFaFw0yNTA1MTMxNjAwMDFaMDMxMTAvBgNV
BAMTKDYxMjAwNkE0RUQ4QzZCMTFGRURGRDQyMUE2QTcxQ0ZGMTFDMjM4MTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC80HtU0G85bTxf5Kz0d0eNzo5L
92VWPeVcX6CP1vkEuPLA70fzHGWdCmsNxyvnGIlOXKSX1faHr85eq0st2cxuZ/BM
W0kqmZpb/S1oZYJ4ygmz1l7p2eCGKhfphVM86yijkviXTfDF1kLO+AFhQ+qwr67W
8m95zsBvVodh0r6LkNscXsHI/QR5h0he8UNTkcc5pGQ4EtNFsUP+5GF2sE9oqk36
Qw/GE42gH5mvyarCWDbA3SjTRk0yopE9xL3WX+FC36trdL7ch54hd83irxLuZTYw
FjOLYY4hBZkTJqtsb2WcGmcDm7JkH4ahqjRlABm0egNKR4GXJVjnx0sSzBZJAgMB
AAGjggItMIICKTAdBgNVHQ4EFgQUYSAGpO2MaxH+39Qhpqcc/xHCOBYwHwYDVR0j
BBgwFoAUeCY3tYuOB+xkoPquF2mvF68JmecwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83
OWMwNWVlMy03ZmM4LTQ0MDctYjJjMC1jYjQwYmZjZmI4NjYvMC83ODI2MzdCNThC
OEUwN0VDNjRBMEZBQUUxNzY5QUYxN0FGMDk5OUU3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNzgyNjM3QjU4QjhFMDdFQzY0QTBGQUFFMTc2OUFGMTdBRjA5
OTlFNy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzljMDVlZTMtN2ZjOC00NDA3LWIy
YzAtY2I0MGJmY2ZiODY2LzAvMzIzMDMyMmUzMTMzMzcyZTMwMmUzMDJmMzIzMjJk
MzIzMjIwM2QzZTIwMzkzOTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH
DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKiQAwDQYJKoZIhvcNAQEL
BQADggEBAFLc0ceNOqLqCyOlCGJN8D5skNqqctwMjlocpXrllUZvQpH0atC1S5Nj
T6OGcyjmhaDeGcftxXPPcnR/8B8ZSPlE4+tMpnw3RspP74T1ivLnMPMM8Sk2P5eo
oXJhRvYyXlep5QBm/iQw1ktIlfO3PCibA0SGIvdAA1GtuoB/AAsRo1ALEp6Ny2yi
lfHtYRFKW/2xcQxnwP8Z6ijvMulIMW1rR7wulN5ol1yk6ERmHna4HEAgvCpiANjU
Mb42cGnN13UDJPllSGjIEd9UwJ6Le2Y5l+Tz6ZrKyH5CDDFFMPh7udv13nfauhU4
k7Q7eqryj9+RzIJDSAMu+HoFHC7UgzA=
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:39:21 2025 by rpki-client