Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130382e302f32322d3234203d3e2039393035.roa
File: 3230322e37372e3130382e302f32322d3234203d3e2039393035.roa (raw, json)
Hash identifier: OBG3bCCLdIuoVVqc7QPv9AGcRLqJlbXoO48ljeOca8I=
Subject key identifier: F8:50:D5:7C:D6:58:69:05:D5:D7:CE:2A:62:9F:18:FE:AB:B4:9F:15
Certificate issuer: /CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7
Certificate serial: 5744CF7F6BF48B668F42E7C82350A9160D400053
Authority key identifier: 78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130382e302f32322d3234203d3e2039393035.roa
Signing time: Tue 14 May 2024 23:00:01 +0000
ROA not before: Tue 14 May 2024 22:55:01 +0000
ROA not after: Tue 13 May 2025 23:00:01 +0000
asID: 9905
IP address blocks: 202.77.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:44:cf:7f:6b:f4:8b:66:8f:42:e7:c8:23:50:a9:16:0d:40:00:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=782637B58B8E07EC64A0FAAE1769AF17AF0999E7
Validity
Not Before: May 14 22:55:01 2024 GMT
Not After : May 13 23:00:01 2025 GMT
Subject: CN=F850D57CD6586905D5D7CE2A629F18FEABB49F15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9e:2f:77:85:26:a6:2d:f2:7b:e5:e8:99:5d:
07:3a:bd:64:4b:c3:2d:af:47:69:d8:b0:1f:f9:23:
be:04:c1:29:01:21:00:0b:13:e3:0b:6d:e2:98:c7:
89:04:b2:f0:f9:26:65:2d:39:cf:a4:2d:47:03:93:
ab:1f:7f:f5:39:1c:ce:07:98:b3:46:07:53:a3:67:
ce:bd:55:ea:62:fc:aa:c0:6a:7d:78:b7:99:e9:10:
23:58:d8:d7:62:32:4c:92:a4:02:3a:75:3b:c1:74:
b4:5b:8e:61:97:db:98:68:3c:db:71:ef:b1:0e:cf:
86:79:0a:81:3b:ee:26:34:c8:9a:1d:d4:75:38:97:
c4:b9:df:15:60:c8:ac:f1:3c:63:24:68:7b:f7:3b:
7b:f4:02:31:74:a5:10:d8:e5:d6:c2:83:81:29:26:
ac:26:dd:89:a4:40:e3:1a:e6:15:29:18:bf:84:04:
60:9d:0e:13:36:7b:3d:e9:2d:13:5a:90:19:ae:9f:
19:49:91:8e:22:7f:33:b9:39:88:b1:a1:07:64:67:
1e:cd:3d:8b:76:77:7d:a6:d7:48:c2:7a:00:f6:8f:
ce:9a:45:61:ce:b7:a1:2a:b1:4e:83:d5:04:b3:c4:
6e:b5:2a:d9:53:f6:85:97:a1:7d:5b:03:d6:8e:3f:
61:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:50:D5:7C:D6:58:69:05:D5:D7:CE:2A:62:9F:18:FE:AB:B4:9F:15
X509v3 Authority Key Identifier:
keyid:78:26:37:B5:8B:8E:07:EC:64:A0:FA:AE:17:69:AF:17:AF:09:99:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782637B58B8E07EC64A0FAAE1769AF17AF0999E7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79c05ee3-7fc8-4407-b2c0-cb40bfcfb866/0/3230322e37372e3130382e302f32322d3234203d3e2039393035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.77.108.0/22
Signature Algorithm: sha256WithRSAEncryption
66:52:e9:de:dc:04:b4:ea:0b:42:0c:c3:09:a7:31:6e:d9:4e:
96:d9:d1:f8:ee:2b:3d:52:a0:72:9a:6f:93:ad:22:3a:73:c7:
0e:67:6e:3d:46:93:1c:bf:4b:c7:c0:ff:f9:44:c1:78:b8:cb:
ed:a6:fb:ea:88:a1:dc:bd:79:c3:0f:56:6f:02:66:2e:cc:e6:
ad:5c:cb:e6:4f:77:3c:0b:ee:c5:09:ce:23:d6:4f:61:21:93:
f5:17:7f:d3:01:f0:25:f4:fa:89:23:9b:14:fc:d0:57:7b:81:
67:e6:cb:7e:a4:77:f3:d9:f7:b0:8f:02:7d:d9:48:39:9b:bf:
d7:67:fb:a1:3f:90:8e:99:ef:1c:61:06:ea:10:9c:eb:be:71:
5b:07:81:3a:d9:31:87:7e:a2:89:b9:12:ec:0a:5f:ae:fd:6f:
06:ae:f5:43:4f:78:44:9f:5d:d6:1b:36:ae:9f:be:eb:dd:09:
0a:10:da:0f:0a:09:d2:b2:03:d3:a8:29:e8:75:81:d6:9a:39:
e9:74:18:32:13:39:ed:f4:f6:37:4e:55:4c:c2:9b:e9:d0:4a:
70:a1:fe:90:a8:e6:17:21:fd:63:b9:cc:0f:64:2a:c7:90:6f:
93:7f:5b:7d:97:10:58:07:05:cf:9b:a5:2b:c1:f4:64:1a:0d:
cf:78:49:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 06:40:16 2025 by rpki-client