Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa
File: 3230322e36322e31322e302f32322d3234203d3e203234353233.roa (raw, json)
Hash identifier: zDNAzKqw5j02WXuh6T5DV38kgqgTtQhlXzyZ+EBpvWk=
Subject key identifier: E8:5D:6C:26:26:49:1C:D0:66:06:A9:33:45:97:75:B9:27:2F:00:F5
Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38
Certificate serial: 2CBE39BB5BD76DEA2AFBE5ACC10A779834070AAF
Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa
Signing time: Wed 21 Aug 2024 10:00:01 +0000
ROA not before: Wed 21 Aug 2024 09:55:01 +0000
ROA not after: Wed 20 Aug 2025 10:00:01 +0000
asID: 24523
IP address blocks: 202.62.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:be:39:bb:5b:d7:6d:ea:2a:fb:e5:ac:c1:0a:77:98:34:07:0a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38
Validity
Not Before: Aug 21 09:55:01 2024 GMT
Not After : Aug 20 10:00:01 2025 GMT
Subject: CN=E85D6C2626491CD06606A933459775B9272F00F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:37:99:17:82:9f:63:e2:08:ab:cc:2e:83:ba:
5b:c9:2a:2a:46:dd:57:9a:dc:48:97:41:a0:3d:73:
72:e2:bd:cf:b2:15:79:73:84:b3:f7:d4:97:2c:e5:
e3:d1:ca:f4:c7:70:96:99:fd:74:70:86:9c:b5:b1:
e7:1a:c9:55:cd:32:c5:86:64:35:f5:26:62:ee:b6:
45:35:25:f0:97:55:9e:5d:a7:ea:ae:77:47:24:5e:
27:6e:2a:72:a8:4f:3b:f8:be:aa:ec:92:dd:9c:c2:
4f:9a:c0:0a:26:50:a8:9d:a5:0e:4a:61:dd:66:3d:
7d:ca:01:90:8f:11:2e:32:ae:bd:02:68:ac:79:de:
f4:c8:3b:42:20:44:8f:1c:92:56:de:73:4e:16:e9:
5a:ea:eb:da:4c:68:8f:dc:f2:52:f2:61:22:a7:e6:
16:99:8e:17:cb:c4:9a:c3:65:37:83:8d:2a:78:dd:
04:8e:95:b6:61:12:d7:f9:93:e8:c2:12:62:73:6b:
6c:7a:b8:c6:f0:dd:19:47:c1:b1:c1:68:3a:0a:e1:
da:79:99:19:9e:0a:2b:4a:4d:29:d4:7b:29:a9:1c:
35:76:81:4d:45:36:24:c0:10:98:9d:75:96:55:cc:
4d:00:ed:7d:33:f6:d7:8f:f0:5b:3d:80:45:c0:59:
72:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5D:6C:26:26:49:1C:D0:66:06:A9:33:45:97:75:B9:27:2F:00:F5
X509v3 Authority Key Identifier:
keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/3230322e36322e31322e302f32322d3234203d3e203234353233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.62.12.0/22
Signature Algorithm: sha256WithRSAEncryption
83:3f:70:3a:dd:e5:6c:87:5a:67:a4:bc:63:32:a3:c3:f1:22:
b9:07:a4:04:eb:66:3d:c4:59:9f:e9:7a:93:eb:b6:f1:c0:13:
74:2a:f6:86:01:19:c7:8b:d5:ae:4e:5b:15:df:aa:5d:11:1a:
21:2c:c9:87:85:26:40:0d:a0:f8:52:d4:a2:56:35:84:fc:d5:
67:f4:ec:16:32:04:e6:a6:75:e7:20:d7:13:77:b9:96:55:46:
69:96:25:bb:4d:47:8b:2b:91:dd:a2:cd:77:72:c0:71:25:ba:
8b:20:ad:1a:73:61:33:fa:7a:f4:e6:a9:b8:ce:a0:9c:31:31:
59:89:78:32:81:5f:fc:7b:bf:75:9d:70:c6:67:91:93:e1:04:
fb:af:8f:69:2f:36:55:41:dc:4f:bf:5a:ab:ee:0f:16:3c:05:
50:a4:a6:fb:41:ad:e5:1f:42:93:c0:6c:40:90:85:fc:93:34:
8c:09:30:39:00:f8:11:3e:07:3f:47:31:77:7d:d1:c1:4f:f4:
19:8d:b8:c6:f3:01:c0:0c:28:b4:fd:4f:c7:02:56:df:0f:9b:
94:2a:c6:bc:f1:b3:fa:45:cd:f7:1e:4d:ae:00:96:75:6e:e3:
2d:de:6d:04:40:84:ba:da:e2:11:9d:54:32:0f:d0:fa:77:17:
97:0f:ba:4a
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIULL45u1vXbeoq++WswQp3mDQHCq8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFC
MjUwM0EzODAeFw0yNDA4MjEwOTU1MDFaFw0yNTA4MjAxMDAwMDFaMDMxMTAvBgNV
BAMTKEU4NUQ2QzI2MjY0OTFDRDA2NjA2QTkzMzQ1OTc3NUI5MjcyRjAwRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmN5kXgp9j4girzC6DulvJKipG
3Vea3EiXQaA9c3Livc+yFXlzhLP31Jcs5ePRyvTHcJaZ/XRwhpy1secayVXNMsWG
ZDX1JmLutkU1JfCXVZ5dp+qud0ckXiduKnKoTzv4vqrskt2cwk+awAomUKidpQ5K
Yd1mPX3KAZCPES4yrr0CaKx53vTIO0IgRI8cklbec04W6Vrq69pMaI/c8lLyYSKn
5haZjhfLxJrDZTeDjSp43QSOlbZhEtf5k+jCEmJza2x6uMbw3RlHwbHBaDoK4dp5
mRmeCitKTSnUeympHDV2gU1FNiTAEJiddZZVzE0A7X0z9teP8Fs9gEXAWXJjAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU6F1sJiZJHNBmBqkzRZd1uScvAPUwHwYDVR0j
BBgwFoAUEWsbSTEU5vhyRNpUyrjY6rJQOjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
YzY2Nzc2OS04MGRjLTQwOTMtYjVmNy1kZmU3YzU3MjA0ODYvMC8xMTZCMUI0OTMx
MTRFNkY4NzI0NERBNTRDQUI4RDhFQUIyNTAzQTM4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTE2QjFCNDkzMTE0RTZGODcyNDREQTU0Q0FCOEQ4RUFCMjUw
M0EzOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNjY3NzY5LTgwZGMtNDA5My1i
NWY3LWRmZTdjNTcyMDQ4Ni8wLzMyMzAzMjJlMzYzMjJlMzEzMjJlMzAyZjMyMzIy
ZDMyMzQyMDNkM2UyMDMyMzQzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKPgwwDQYJKoZIhvcN
AQELBQADggEBAIM/cDrd5WyHWmekvGMyo8PxIrkHpATrZj3EWZ/pepPrtvHAE3Qq
9oYBGceL1a5OWxXfql0RGiEsyYeFJkANoPhS1KJWNYT81Wf07BYyBOamdecg1xN3
uZZVRmmWJbtNR4srkd2izXdywHEluosgrRpzYTP6evTmqbjOoJwxMVmJeDKBX/x7
v3WdcMZnkZPhBPuvj2kvNlVB3E+/WqvuDxY8BVCkpvtBreUfQpPAbECQhfyTNIwJ
MDkA+BE+Bz9HMXd90cFP9BmNuMbzAcAMKLT9T8cCVt8Pm5Qqxrzxs/pFzfceTa4A
lnVu4y3ebQRAhLra4hGdVDIP0Pp3F5cPuko=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:37 2025 by rpki-client