Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32312d3234203d3e203137363731.roa
File: 3230322e35382e3231362e302f32312d3234203d3e203137363731.roa (raw, json)
Hash identifier: TKmQLSnqsDsUsamlEvxOYssu2CiPjiYskS+NWVZwi4E=
Subject key identifier: F5:8D:8B:3D:DA:FF:44:44:C9:A4:7A:03:E9:B7:C9:21:68:F5:60:66
Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Certificate serial: 2FD3B063172EA11C9B225B963A168EC80DE1AB00
Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32312d3234203d3e203137363731.roa
Signing time: Sat 15 Jun 2024 12:01:52 +0000
ROA not before: Sat 15 Jun 2024 11:56:52 +0000
ROA not after: Sat 14 Jun 2025 12:01:52 +0000
asID: 17671
IP address blocks: 202.58.216.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:d3:b0:63:17:2e:a1:1c:9b:22:5b:96:3a:16:8e:c8:0d:e1:ab:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Validity
Not Before: Jun 15 11:56:52 2024 GMT
Not After : Jun 14 12:01:52 2025 GMT
Subject: CN=F58D8B3DDAFF4444C9A47A03E9B7C92168F56066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f7:d7:95:74:50:31:44:c3:fa:c3:9c:0c:b3:
13:70:0d:a0:4f:d8:83:4a:81:f3:7b:92:83:37:81:
2e:18:76:75:76:ca:6c:1b:26:78:05:77:59:d7:5b:
e8:08:1b:58:17:53:bc:45:06:26:7d:c2:95:5b:19:
db:28:8c:a7:07:eb:1d:b3:50:a4:32:6b:04:1b:81:
5e:d0:95:74:26:07:86:2d:99:84:3b:69:17:82:41:
a5:92:b6:90:80:b5:81:72:2e:9f:36:f0:72:a1:64:
20:ec:8a:da:e8:3b:2c:60:44:d3:5b:93:63:e8:37:
d9:4e:d4:4a:22:8d:ad:39:6a:36:7f:40:e1:23:35:
f4:7d:95:0b:d1:09:48:01:a6:0e:5b:ec:af:03:50:
bb:92:29:f7:ce:1b:48:c0:04:b1:f9:74:5b:89:72:
4c:20:e7:dc:10:86:6d:71:95:fb:20:cb:5a:01:8a:
4c:5d:49:88:76:1c:e2:43:8d:2d:c6:d7:8f:12:ad:
b8:5d:21:30:15:00:37:b3:38:de:eb:d3:23:f0:9e:
16:27:56:48:87:37:f7:14:c7:4b:dc:64:17:b4:9f:
a2:b1:76:1d:e0:ab:80:d2:2e:e5:a7:e8:48:4a:62:
c6:bd:f9:8e:e3:ca:ea:97:9a:02:63:7c:e0:9a:0a:
7a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8D:8B:3D:DA:FF:44:44:C9:A4:7A:03:E9:B7:C9:21:68:F5:60:66
X509v3 Authority Key Identifier:
keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3230322e35382e3231362e302f32312d3234203d3e203137363731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.58.216.0/21
Signature Algorithm: sha256WithRSAEncryption
53:5f:64:b5:1f:29:1e:be:89:bb:3a:b8:42:0b:c7:d3:17:6c:
ca:15:cd:ba:9b:82:d6:db:50:a4:19:8b:f8:83:1e:4c:df:71:
43:58:fe:51:12:31:20:5d:91:7e:72:ea:54:17:4a:90:9c:d7:
c3:1b:a2:53:e4:ca:0d:87:66:45:8d:fe:c2:95:a8:95:7d:16:
29:5e:33:8f:ed:2f:d2:da:62:40:a5:48:46:2a:89:bb:5d:2c:
35:3e:4c:e2:5f:bf:c3:36:7d:af:29:51:28:25:54:b2:fa:a8:
d1:9e:16:de:a1:3e:a3:20:ab:57:e2:55:f5:8d:ff:42:bc:04:
15:de:68:00:1f:0c:53:05:91:68:c2:a2:92:ab:6f:2a:c5:9d:
2b:0b:3c:fc:a7:5a:f4:f7:a9:5e:f8:4b:99:ee:a7:04:f5:cd:
67:f1:3c:d0:4b:7b:35:4f:6a:26:68:87:f4:8e:d0:cf:12:7c:
fe:c0:f7:f7:e0:89:5a:a6:a0:7f:17:77:a9:a1:d5:af:11:6d:
81:f1:b6:1d:bd:1d:6d:af:47:e1:37:1c:96:70:e8:c3:7a:17:
2b:7d:98:47:5b:e1:c6:fc:95:06:18:8b:da:ff:ba:c3:bf:ad:
c2:e3:e0:f1:20:05:12:e5:cd:01:e0:da:5a:60:c2:c2:c1:e7:
5c:9a:96:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:14 2025 by rpki-client