Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa
File: 3230322e3138302e31362e302f32302d3234203d3e203338373538.roa (raw, json)
Hash identifier: bXRD5DYpUOHeCiXubU6nJTSoa02/Z8k3WnCQ8nyGZyc=
Subject key identifier: 26:84:49:DC:87:EE:D0:C3:91:A0:57:C4:20:56:42:C6:ED:D5:FA:38
Certificate issuer: /CN=42042E672B688C3072FD4743B3E7DD81EC7CA306
Certificate serial: 3FE4D3B04F4D13CBED4E98ED1B57D332CDCE1019
Authority key identifier: 42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa
Signing time: Tue 16 Jul 2024 15:00:00 +0000
ROA not before: Tue 16 Jul 2024 14:55:00 +0000
ROA not after: Tue 15 Jul 2025 15:00:00 +0000
asID: 38758
IP address blocks: 202.180.16.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:e4:d3:b0:4f:4d:13:cb:ed:4e:98:ed:1b:57:d3:32:cd:ce:10:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42042E672B688C3072FD4743B3E7DD81EC7CA306
Validity
Not Before: Jul 16 14:55:00 2024 GMT
Not After : Jul 15 15:00:00 2025 GMT
Subject: CN=268449DC87EED0C391A057C4205642C6EDD5FA38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:23:ce:64:d3:31:77:b0:8c:43:9d:1a:f7:7f:
47:b4:08:5d:d5:08:5d:17:f8:c2:10:6e:38:76:40:
26:3d:96:e0:bc:84:07:04:03:b3:ce:0c:28:1f:c6:
78:e4:28:4b:ab:88:4e:76:e4:8a:16:9b:e1:d1:57:
b1:65:80:2b:f0:4a:60:ef:f9:0c:7e:6b:4a:46:ea:
83:a7:e7:27:e3:e3:7d:e4:27:a5:0a:04:09:88:f2:
5e:d4:d0:4e:fe:0a:53:7c:3a:f3:64:22:00:f0:54:
d9:cd:96:92:75:45:22:44:ab:20:be:c8:4d:bb:54:
17:35:2f:ab:66:da:a1:9e:be:fe:24:44:76:16:8c:
f0:2f:6d:40:e6:28:6e:35:22:b4:af:18:c9:1e:9c:
25:a7:5f:44:e7:b6:3b:24:5f:8e:25:53:41:ed:ba:
f1:db:7a:70:e9:d9:c8:08:80:ad:f0:45:1e:7c:e9:
2d:92:2d:4c:e0:2f:5a:30:e7:04:a2:ec:55:a1:f1:
16:11:62:6c:c5:34:b6:ef:8f:b3:3b:90:e3:79:4b:
39:90:af:75:a5:9b:53:dd:2f:0e:31:3f:44:cb:d1:
7f:df:8b:89:4a:3d:36:28:5a:26:be:11:d8:fe:d2:
ea:1e:b4:bb:03:4f:eb:a7:fa:27:76:07:4a:ac:84:
20:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:84:49:DC:87:EE:D0:C3:91:A0:57:C4:20:56:42:C6:ED:D5:FA:38
X509v3 Authority Key Identifier:
keyid:42:04:2E:67:2B:68:8C:30:72:FD:47:43:B3:E7:DD:81:EC:7C:A3:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/42042E672B688C3072FD4743B3E7DD81EC7CA306.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42042E672B688C3072FD4743B3E7DD81EC7CA306.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a12f228c-df20-4728-9f96-8faa1340017a/0/3230322e3138302e31362e302f32302d3234203d3e203338373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.180.16.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:f2:4b:ac:4a:8f:a1:fb:84:7b:50:d2:9b:27:74:74:92:68:
6f:bb:8d:54:bb:36:b0:e5:a9:ce:7f:c3:b3:f5:9e:b3:48:0b:
0c:78:fe:bb:8f:5e:01:75:5d:ac:13:13:4f:2f:55:4e:48:bb:
11:dc:7a:0b:22:de:d4:5e:0d:c4:6d:0a:9e:76:a3:d3:4d:d5:
f7:22:8e:8d:6e:92:b4:0c:4f:a4:30:a6:c6:8d:aa:0a:73:53:
26:45:02:8d:d6:2d:ba:67:5d:75:5c:85:b5:f0:c6:cd:10:09:
99:d8:22:59:e3:56:42:d3:62:cd:8a:d4:05:f3:60:28:e7:ea:
12:7d:3c:7e:ed:c4:ab:8b:e5:cd:2c:8d:b6:0c:70:00:00:5f:
6a:76:9b:74:db:52:12:cf:e5:b2:58:72:a3:ea:43:e7:d9:33:
b4:6b:e9:10:4e:fb:95:29:a3:8d:a7:68:99:79:8c:98:d6:74:
3b:f1:de:da:27:65:72:ff:5c:fb:fc:e3:e2:cc:dc:16:d1:a7:
37:39:85:8d:a1:d4:8d:63:cc:49:c5:5c:88:91:b9:8c:53:24:
de:52:96:90:66:38:1b:c5:9f:fd:0a:50:9a:da:25:0e:26:c4:
09:32:5d:1e:9f:01:4f:ef:35:d9:02:c5:68:db:0b:52:13:f9:
5a:24:54:91
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUP+TTsE9NE8vtTpjtG1fTMs3OEBkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFF
QzdDQTMwNjAeFw0yNDA3MTYxNDU1MDBaFw0yNTA3MTUxNTAwMDBaMDMxMTAvBgNV
BAMTKDI2ODQ0OURDODdFRUQwQzM5MUEwNTdDNDIwNTY0MkM2RURENUZBMzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZI85k0zF3sIxDnRr3f0e0CF3V
CF0X+MIQbjh2QCY9luC8hAcEA7PODCgfxnjkKEuriE525IoWm+HRV7FlgCvwSmDv
+Qx+a0pG6oOn5yfj433kJ6UKBAmI8l7U0E7+ClN8OvNkIgDwVNnNlpJ1RSJEqyC+
yE27VBc1L6tm2qGevv4kRHYWjPAvbUDmKG41IrSvGMkenCWnX0TntjskX44lU0Ht
uvHbenDp2cgIgK3wRR586S2SLUzgL1ow5wSi7FWh8RYRYmzFNLbvj7M7kON5SzmQ
r3Wlm1PdLw4xP0TL0X/fi4lKPTYoWia+Edj+0uoetLsDT+un+id2B0qshCA1AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUJoRJ3Ifu0MORoFfEIFZCxu3V+jgwHwYDVR0j
BBgwFoAUQgQuZytojDBy/UdDs+fdgex8owYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
MTJmMjI4Yy1kZjIwLTQ3MjgtOWY5Ni04ZmFhMTM0MDAxN2EvMC80MjA0MkU2NzJC
Njg4QzMwNzJGRDQ3NDNCM0U3REQ4MUVDN0NBMzA2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDIwNDJFNjcyQjY4OEMzMDcyRkQ0NzQzQjNFN0REODFFQzdD
QTMwNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMmYyMjhjLWRmMjAtNDcyOC05
Zjk2LThmYWExMzQwMDE3YS8wLzMyMzAzMjJlMzEzODMwMmUzMTM2MmUzMDJmMzIz
MDJkMzIzNDIwM2QzZTIwMzMzODM3MzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMq0EDANBgkqhkiG
9w0BAQsFAAOCAQEALvJLrEqPofuEe1DSmyd0dJJob7uNVLs2sOWpzn/Ds/Wes0gL
DHj+u49eAXVdrBMTTy9VTki7Edx6CyLe1F4NxG0Knnaj003V9yKOjW6StAxPpDCm
xo2qCnNTJkUCjdYtumdddVyFtfDGzRAJmdgiWeNWQtNizYrUBfNgKOfqEn08fu3E
q4vlzSyNtgxwAABfanabdNtSEs/lslhyo+pD59kztGvpEE77lSmjjadomXmMmNZ0
O/He2idlcv9c+/zj4szcFtGnNzmFjaHUjWPMScVciJG5jFMk3lKWkGY4G8Wf/QpQ
mtolDibECTJdHp8BT+812QLFaNsLUhP5WiRUkQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:31 2025 by rpki-client