Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa
File: 3230332e3231302e38342e302f32322d3232203d3e203535363939.roa (raw, json)
Hash identifier: S14Z6UvQgxm3zvnB7IqJQnjifft19IGaxbuliv63HPA=
Subject key identifier: 2C:C9:EC:9F:E2:39:7B:94:EE:56:29:F3:FE:0C:C2:12:40:36:49:C4
Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872
Certificate serial: 3DCF0366C74F642F437912C3A138E21364228D6D
Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa
Signing time: Mon 01 Jul 2024 01:04:04 +0000
ROA not before: Mon 01 Jul 2024 00:59:04 +0000
ROA not after: Mon 30 Jun 2025 01:04:04 +0000
asID: 55699
IP address blocks: 203.210.84.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:cf:03:66:c7:4f:64:2f:43:79:12:c3:a1:38:e2:13:64:22:8d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872
Validity
Not Before: Jul 1 00:59:04 2024 GMT
Not After : Jun 30 01:04:04 2025 GMT
Subject: CN=2CC9EC9FE2397B94EE5629F3FE0CC212403649C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:20:35:86:b8:f0:18:0c:5f:fd:52:f3:f3:b1:
84:8b:8d:4a:cc:87:33:1a:76:b8:d5:0c:43:93:75:
07:8a:18:f7:2b:9e:34:c1:79:aa:40:30:03:4b:c6:
6d:03:b6:55:70:f6:a3:30:91:b9:6f:07:67:0c:8e:
f6:de:b6:df:ba:12:51:af:9b:68:c9:e0:a6:46:a2:
b5:fa:f8:17:7c:a3:ab:dc:3b:ad:9a:d1:ec:e8:a8:
14:b4:92:8c:db:d4:2b:50:a2:d2:1c:17:2e:af:e6:
cb:64:ee:66:0e:eb:a3:0a:48:48:23:33:20:a2:a3:
0a:f6:8e:99:b8:ff:23:66:4c:79:f2:99:5b:42:43:
18:d3:b1:94:db:6d:be:e7:69:e3:38:d2:c2:cf:14:
3e:65:85:f9:ec:06:49:91:a3:5b:fc:d6:6e:b3:e2:
c0:39:4f:42:54:12:13:4e:ae:6c:2b:02:99:ea:fd:
fa:87:39:3f:fe:f0:d0:2d:a5:68:e4:93:c6:c2:7b:
32:20:06:98:10:ed:83:85:a7:bc:4e:15:61:1d:b2:
84:92:22:54:09:83:cc:f3:86:ea:f9:f2:f8:d1:fa:
e6:a6:58:e4:57:af:dc:1d:9b:bf:9e:29:8d:fe:79:
66:64:2d:29:39:84:0d:64:57:0d:a4:7d:15:85:97:
71:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C9:EC:9F:E2:39:7B:94:EE:56:29:F3:FE:0C:C2:12:40:36:49:C4
X509v3 Authority Key Identifier:
keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3230332e3231302e38342e302f32322d3232203d3e203535363939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.210.84.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:c5:fb:2a:e8:ed:19:f2:0b:a6:a1:2d:66:68:fd:d1:59:4e:
36:9f:da:4a:c6:be:89:7c:e0:76:eb:7a:e4:6a:ba:b7:85:ab:
3c:8d:e4:5c:d1:ea:68:05:ef:02:65:75:8d:98:5f:d5:ca:f7:
df:bf:ae:64:26:20:07:27:eb:44:6d:ad:1b:9e:f7:ec:6e:b0:
19:16:30:c6:82:33:ae:61:e5:d5:5b:20:14:95:47:07:03:a5:
ea:9a:52:b2:0b:d7:0f:02:b5:b2:95:79:dc:8a:bd:28:88:dd:
04:a3:ee:87:23:14:08:13:63:2e:97:be:26:40:9d:48:3f:6b:
a9:15:76:3f:e9:35:e9:28:37:61:9f:64:06:d5:a8:ab:1f:21:
31:cf:27:2c:31:22:b8:b1:4a:e7:fd:9a:05:b5:81:8c:3f:11:
d0:28:03:66:5f:94:ce:d9:5a:e7:aa:fb:06:92:9a:a6:90:96:
de:60:81:f8:ed:27:c2:33:45:c2:9b:22:cd:eb:26:61:30:91:
d6:7e:0d:97:e0:85:88:b6:7b:50:ea:80:b2:99:e3:85:da:e6:
09:89:df:c4:46:f8:17:21:fd:a6:be:6c:1c:33:24:f2:ad:cb:
bc:c3:a1:2a:d4:4d:75:75:6b:c2:5c:bd:a9:00:90:39:83:e4:
17:4c:01:b5
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUPc8DZsdPZC9DeRLDoTjiE2QijW0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5
RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDRaFw0yNTA2MzAwMTA0MDRaMDMxMTAvBgNV
BAMTKDJDQzlFQzlGRTIzOTdCOTRFRTU2MjlGM0ZFMENDMjEyNDAzNjQ5QzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTIDWGuPAYDF/9UvPzsYSLjUrM
hzMadrjVDEOTdQeKGPcrnjTBeapAMANLxm0DtlVw9qMwkblvB2cMjvbett+6ElGv
m2jJ4KZGorX6+Bd8o6vcO62a0ezoqBS0kozb1CtQotIcFy6v5stk7mYO66MKSEgj
MyCiowr2jpm4/yNmTHnymVtCQxjTsZTbbb7naeM40sLPFD5lhfnsBkmRo1v81m6z
4sA5T0JUEhNOrmwrApnq/fqHOT/+8NAtpWjkk8bCezIgBpgQ7YOFp7xOFWEdsoSS
IlQJg8zzhur58vjR+uamWORXr9wdm7+eKY3+eWZkLSk5hA1kVw2kfRWFl3FnAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQULMnsn+I5e5TuVinz/gzCEkA2ScQwHwYDVR0j
BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG
QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw
Njg3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i
ODJhLTVkNWE4ZTY2NTdmMy8wLzMyMzAzMzJlMzIzMTMwMmUzODM0MmUzMDJmMzIz
MjJkMzIzMjIwM2QzZTIwMzUzNTM2MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsvSVDANBgkqhkiG
9w0BAQsFAAOCAQEAocX7KujtGfILpqEtZmj90VlONp/aSsa+iXzgdut65Gq6t4Wr
PI3kXNHqaAXvAmV1jZhf1cr337+uZCYgByfrRG2tG5737G6wGRYwxoIzrmHl1Vsg
FJVHBwOl6ppSsgvXDwK1spV53Iq9KIjdBKPuhyMUCBNjLpe+JkCdSD9rqRV2P+k1
6Sg3YZ9kBtWoqx8hMc8nLDEiuLFK5/2aBbWBjD8R0CgDZl+Uztla56r7BpKappCW
3mCB+O0nwjNFwpsizesmYTCR1n4Nl+CFiLZ7UOqAspnjhdrmCYnfxEb4FyH9pr5s
HDMk8q3LvMOhKtRNdXVrwly9qQCQOYPkF0wBtQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:04:19 2025 by rpki-client