Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3137362e302f32312d3234203d3e203234353236.roa
File: 3230322e35382e3137362e302f32312d3234203d3e203234353236.roa (raw, json)
Hash identifier: hoFhirnLUQz/p84odzqMxw9tsnTuNV/GRFdBFOkjvGI=
Subject key identifier: AC:7C:C4:4E:EB:DD:1E:D6:C7:99:3F:C7:85:C1:B2:CC:16:67:ED:EA
Certificate issuer: /CN=E42B0752D5FFAB254C3F0E221499F67420870FEB
Certificate serial: 15876C2A7ADD4ED49B86A64B7C4EE89396D06AE7
Authority key identifier: E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3137362e302f32312d3234203d3e203234353236.roa
Signing time: Sat 09 Nov 2024 09:00:00 +0000
ROA not before: Sat 09 Nov 2024 08:55:00 +0000
ROA not after: Sat 08 Nov 2025 09:00:00 +0000
asID: 24526
IP address blocks: 202.58.176.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:87:6c:2a:7a:dd:4e:d4:9b:86:a6:4b:7c:4e:e8:93:96:d0:6a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E42B0752D5FFAB254C3F0E221499F67420870FEB
Validity
Not Before: Nov 9 08:55:00 2024 GMT
Not After : Nov 8 09:00:00 2025 GMT
Subject: CN=AC7CC44EEBDD1ED6C7993FC785C1B2CC1667EDEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:de:60:c5:85:b7:df:b3:2c:0d:0e:8f:04:12:
ee:c5:70:c0:8b:72:9a:42:4c:7b:f9:20:82:9f:06:
73:4a:df:30:04:58:d9:44:8d:cc:27:64:ac:f5:43:
f8:6c:86:b3:b6:13:45:0a:65:95:1c:2a:aa:1c:7a:
aa:f6:f7:80:f3:15:ac:42:98:55:02:7c:44:cf:70:
ef:0e:7d:87:c1:81:e9:83:c7:ed:36:95:e2:15:97:
96:ca:af:7b:e1:5d:ab:ef:17:a9:eb:dd:f9:23:00:
b8:bb:23:bb:56:1e:c2:da:dc:89:d9:82:91:c6:93:
e1:cb:3d:25:d4:c4:1e:ad:69:e1:4a:06:e0:41:87:
d5:cb:00:d6:c0:5c:c1:24:f4:dc:b9:e1:2a:f4:6c:
d5:ed:32:7c:b8:3b:d8:76:3d:69:ec:ee:5b:99:7e:
59:5b:f9:7c:e9:6c:25:cb:3e:03:34:52:c7:0d:46:
cc:b1:ac:e3:ca:1c:e4:b7:bb:5a:bc:e9:35:e6:cb:
47:e4:c5:0b:ca:0a:87:2c:7a:e7:4b:77:27:ae:3e:
9d:52:ac:3a:c2:b3:df:f3:b0:7e:7f:77:67:0d:89:
d2:6f:a1:d3:78:f8:d8:91:52:9c:f9:89:01:be:1b:
25:f6:ef:66:8d:85:e1:c2:e5:7a:52:ae:e9:97:ad:
fa:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7C:C4:4E:EB:DD:1E:D6:C7:99:3F:C7:85:C1:B2:CC:16:67:ED:EA
X509v3 Authority Key Identifier:
keyid:E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/3230322e35382e3137362e302f32312d3234203d3e203234353236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.58.176.0/21
Signature Algorithm: sha256WithRSAEncryption
73:dc:07:e0:0a:dd:83:8e:d1:03:dd:ab:a7:68:2a:19:31:a4:
d8:3f:ac:fa:3f:18:e9:5a:fc:a0:9f:ea:b6:4e:d2:1f:be:9b:
9b:c0:ca:cd:65:94:73:13:2a:32:56:9f:9e:43:40:81:9c:14:
01:4f:44:ce:ab:97:b7:6c:58:b5:04:ad:f9:d9:d6:26:0a:cc:
90:22:0e:be:a9:87:49:79:d0:47:63:e1:56:f1:0c:e7:39:50:
98:de:bb:b4:36:36:5a:12:fe:62:86:5e:83:0b:2a:b3:b8:e9:
51:3b:27:1c:ff:d0:1c:24:c2:d9:ac:fe:95:30:3d:26:c5:f7:
c8:db:53:15:08:19:30:44:55:5c:c7:bd:42:5f:2c:d4:5e:ed:
07:b9:0a:2c:ad:03:4a:e4:28:a8:f1:ef:9a:7e:75:9c:4b:eb:
2d:35:34:a0:c9:82:b1:59:e0:72:d2:57:c0:23:8d:8d:3a:bb:
31:42:71:5b:05:9e:40:c9:df:99:78:7c:7b:92:ce:5b:9f:0a:
66:64:75:cf:24:75:ef:66:0e:1f:83:f0:b4:f1:28:f1:70:b7:
f0:db:a3:8e:6f:c8:d9:91:92:85:d4:f5:7c:82:2c:09:45:f8:
45:a2:64:d2:b7:55:eb:e3:40:36:8f:4b:38:05:f9:7e:02:f4:
c3:75:e7:f3
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUFYdsKnrdTtSbhqZLfE7ok5bQaucwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQy
MDg3MEZFQjAeFw0yNDExMDkwODU1MDBaFw0yNTExMDgwOTAwMDBaMDMxMTAvBgNV
BAMTKEFDN0NDNDRFRUJERDFFRDZDNzk5M0ZDNzg1QzFCMkNDMTY2N0VERUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC33mDFhbffsywNDo8EEu7FcMCL
cppCTHv5IIKfBnNK3zAEWNlEjcwnZKz1Q/hshrO2E0UKZZUcKqoceqr294DzFaxC
mFUCfETPcO8OfYfBgemDx+02leIVl5bKr3vhXavvF6nr3fkjALi7I7tWHsLa3InZ
gpHGk+HLPSXUxB6taeFKBuBBh9XLANbAXMEk9Ny54Sr0bNXtMny4O9h2PWns7luZ
fllb+XzpbCXLPgM0UscNRsyxrOPKHOS3u1q86TXmy0fkxQvKCocseudLdyeuPp1S
rDrCs9/zsH5/d2cNidJvodN4+NiRUpz5iQG+GyX272aNheHC5XpSrumXrfrrAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUrHzETuvdHtbHmT/HhcGyzBZn7eowHwYDVR0j
BBgwFoAU5CsHUtX/qyVMPw4iFJn2dCCHD+swDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
MzUxMjllNC0yMzI4LTQzZDItYTQ1OC05ZDM4Mjk2MTQ4MTUvMC9FNDJCMDc1MkQ1
RkZBQjI1NEMzRjBFMjIxNDk5RjY3NDIwODcwRkVCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQyMDg3
MEZFQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNTEyOWU0LTIzMjgtNDNkMi1h
NDU4LTlkMzgyOTYxNDgxNS8wLzMyMzAzMjJlMzUzODJlMzEzNzM2MmUzMDJmMzIz
MTJkMzIzNDIwM2QzZTIwMzIzNDM1MzIzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8o6sDANBgkqhkiG
9w0BAQsFAAOCAQEAc9wH4Ardg47RA92rp2gqGTGk2D+s+j8Y6Vr8oJ/qtk7SH76b
m8DKzWWUcxMqMlafnkNAgZwUAU9EzquXt2xYtQSt+dnWJgrMkCIOvqmHSXnQR2Ph
VvEM5zlQmN67tDY2WhL+YoZegwsqs7jpUTsnHP/QHCTC2az+lTA9JsX3yNtTFQgZ
MERVXMe9Ql8s1F7tB7kKLK0DSuQoqPHvmn51nEvrLTU0oMmCsVngctJXwCONjTq7
MUJxWwWeQMnfmXh8e5LOW58KZmR1zyR172YOH4PwtPEo8XC38Nujjm/I2ZGShdT1
fIIsCUX4RaJk0rdV6+NANo9LOAX5fgL0w3Xn8w==
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:56:44 2025 by rpki-client