Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31332e302f32342d3234203d3e203338373539.roa
File: 3230322e3138302e31332e302f32342d3234203d3e203338373539.roa (raw, json)
Hash identifier: 5IwAvBGpI+/LKg0jES5bmNJP2+g1hJrlMzWxKjmGjok=
Subject key identifier: 58:CF:1F:65:8B:94:04:8F:DF:58:B1:A7:A4:DD:B9:D6:CA:55:79:61
Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306
Certificate serial: 59BBBFC2681EEFC9C57E619CDF9F0F4FC07577CB
Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31332e302f32342d3234203d3e203338373539.roa
Signing time: Tue 16 Jul 2024 13:00:00 +0000
ROA not before: Tue 16 Jul 2024 12:55:00 +0000
ROA not after: Tue 15 Jul 2025 13:00:00 +0000
asID: 38759
IP address blocks: 202.180.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:bb:bf:c2:68:1e:ef:c9:c5:7e:61:9c:df:9f:0f:4f:c0:75:77:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306
Validity
Not Before: Jul 16 12:55:00 2024 GMT
Not After : Jul 15 13:00:00 2025 GMT
Subject: CN=58CF1F658B94048FDF58B1A7A4DDB9D6CA557961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7e:68:a1:da:90:37:b1:bb:d6:10:67:9d:25:
36:ad:1e:3c:24:66:a0:05:6f:77:ab:cc:15:0e:0f:
50:dd:f0:e7:a1:1e:5f:c6:52:83:8a:d9:e3:8b:ce:
28:2e:ea:ab:4e:51:01:ed:fb:f3:0d:11:61:52:a0:
fb:6e:23:1e:11:34:95:53:ac:a8:45:ed:d0:d2:ff:
af:12:f7:9a:e8:38:dc:45:26:a4:42:58:ef:82:53:
97:0c:c2:20:b0:b8:52:26:eb:d8:ab:b1:c5:0c:d5:
e1:ed:d4:37:cf:d3:b2:64:a3:27:00:e0:e4:a9:47:
88:c3:41:e1:fe:8a:c0:5a:8d:35:a7:80:0c:3f:15:
2c:5e:52:40:fd:af:b5:4d:bb:9a:d6:83:ef:77:8b:
f1:64:e4:15:66:83:09:cd:1e:c3:6d:55:83:28:80:
80:7e:3d:42:8e:7e:6a:82:93:fa:f0:65:13:aa:c1:
1e:7a:e2:ea:01:8d:5a:b6:34:cf:0b:99:37:45:a2:
89:06:ca:53:58:a9:7f:5a:b0:c6:30:f5:2a:54:99:
2e:ff:9b:3c:c1:49:98:dc:0b:d6:41:8f:af:ee:cd:
0a:77:da:51:ea:f1:10:b1:cc:48:dd:03:53:18:3b:
33:1d:9f:ff:10:89:f0:eb:75:17:d9:39:82:99:78:
32:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CF:1F:65:8B:94:04:8F:DF:58:B1:A7:A4:DD:B9:D6:CA:55:79:61
X509v3 Authority Key Identifier:
keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31332e302f32342d3234203d3e203338373539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.180.13.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:d4:44:1e:60:a2:17:8b:c9:9f:8f:bc:cf:6f:2a:65:6e:75:
39:25:dc:36:d0:dd:09:2d:8f:53:b8:cf:4b:84:53:fa:2e:8e:
47:fd:9c:b5:8f:9d:2e:04:5b:e9:37:a5:fa:0e:b1:8a:2a:0d:
16:ab:b7:05:f5:5b:5f:7c:09:f4:e2:21:4d:f3:fb:b9:ba:f1:
02:62:c5:0e:35:9c:31:4e:bf:44:a2:14:e2:b1:4a:21:ee:65:
78:c7:49:03:4e:43:9e:51:c6:df:cb:10:9d:3f:97:a8:04:84:
e1:6e:a6:a3:78:46:13:bc:ff:97:99:f0:41:48:af:3f:55:c2:
08:e0:bc:74:fb:2c:c8:53:37:eb:24:85:0a:66:8d:34:88:bb:
0c:6f:7d:44:b8:22:a9:2e:1e:b5:5b:35:ad:72:26:0c:af:41:
0b:85:1c:62:0a:7f:a3:3d:31:66:45:5a:94:aa:c9:5c:8d:4f:
da:1a:e2:01:08:19:8e:13:61:9d:a3:c1:b6:e0:40:7a:bb:45:
44:e0:c4:f8:e1:47:a8:da:5c:55:6e:08:f0:64:f8:bc:53:5e:
de:46:b4:44:92:f0:17:c1:09:50:ce:3b:c2:d3:4b:8d:5d:27:
89:d2:90:f4:5f:c9:6a:64:c7:fe:99:32:ba:d7:e7:6d:39:65:
f5:9d:3f:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:10 2025 by rpki-client