Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa
File: 3230322e35322e31322e302f32322d3234203d3e203535363533.roa (raw, json)
Hash identifier: zzu9Pa4aUrYBrkU/dzzrAVQ+KTnyVkmxoRDur+r4jp0=
Subject key identifier: 8D:3C:A4:D6:0D:37:16:A1:4C:59:F7:E1:1B:19:CA:62:57:DD:E6:AF
Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3
Certificate serial: 12AE8DB0335189A5044677187C701CDD5DB9D0F3
Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa
Signing time: Mon 01 Jul 2024 01:05:00 +0000
ROA not before: Mon 01 Jul 2024 01:00:00 +0000
ROA not after: Mon 30 Jun 2025 01:05:00 +0000
asID: 55653
IP address blocks: 202.52.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:ae:8d:b0:33:51:89:a5:04:46:77:18:7c:70:1c:dd:5d:b9:d0:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3
Validity
Not Before: Jul 1 01:00:00 2024 GMT
Not After : Jun 30 01:05:00 2025 GMT
Subject: CN=8D3CA4D60D3716A14C59F7E11B19CA6257DDE6AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:46:25:36:37:c4:43:01:52:9b:21:19:ab:6c:
3d:cc:15:9b:90:44:a9:57:18:09:36:86:e9:8f:0c:
95:c6:9d:40:b5:70:b4:01:d4:67:cb:74:28:b3:c4:
99:ec:49:74:77:93:15:20:52:99:60:3a:69:6f:cf:
93:ce:11:8c:f6:23:b6:f7:14:59:82:82:56:34:28:
88:2e:a4:ea:9f:76:86:cf:75:4e:31:15:67:38:de:
55:e5:58:e8:f0:74:7f:67:1a:58:88:79:bc:e6:a0:
e3:be:ea:5a:d1:86:24:f0:7a:83:e4:b5:e7:b3:91:
52:11:8d:d5:34:9e:e2:c8:53:72:ba:ab:ea:10:11:
2a:9d:fd:ab:68:ff:47:59:c7:03:a9:d9:72:97:23:
fe:66:58:69:89:93:7f:ff:6d:95:93:32:07:fc:a4:
b5:a0:82:2b:72:8c:9a:15:9f:91:32:88:67:47:43:
27:2f:35:73:20:cc:1a:b6:45:2a:2e:c4:7f:1c:5a:
a8:81:a0:10:02:36:a0:fb:75:c8:1d:71:e0:0e:fa:
9c:aa:62:aa:50:0f:94:b9:21:11:79:43:f7:82:bf:
29:73:55:fc:70:55:62:f3:69:8e:37:f4:44:80:88:
78:d9:cc:6f:b3:a4:5c:8d:4f:6c:10:24:da:6b:ec:
56:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:3C:A4:D6:0D:37:16:A1:4C:59:F7:E1:1B:19:CA:62:57:DD:E6:AF
X509v3 Authority Key Identifier:
keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3230322e35322e31322e302f32322d3234203d3e203535363533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.52.12.0/22
Signature Algorithm: sha256WithRSAEncryption
62:cf:bf:65:98:e8:36:e5:c6:86:df:48:68:28:39:78:54:88:
83:43:b1:42:e3:07:71:70:87:28:88:4f:ca:bd:61:db:12:ef:
79:cc:b4:26:03:22:e0:e8:b2:4b:33:4b:7f:36:17:6f:4a:18:
88:d4:53:e0:20:e2:51:4a:3e:86:b6:0d:9d:a2:82:77:e2:40:
a4:23:a4:25:78:21:08:32:fd:da:bc:52:6a:3e:36:39:67:11:
51:f3:1a:67:f3:48:8d:5b:74:ad:00:ac:1a:5a:b3:9e:6d:4b:
db:bc:93:80:24:a1:9c:b1:bb:e4:54:4f:68:43:ec:8a:84:1d:
ad:4a:11:e9:19:58:7e:44:59:f8:ad:61:e7:b2:d7:fd:ba:4c:
f8:cc:89:ae:ec:3b:86:56:80:3e:64:0d:f0:f3:d0:c9:2c:a3:
fe:8d:4d:2c:30:f4:6a:b3:19:e2:26:25:35:b5:1c:e9:40:a0:
25:7b:dd:8c:70:af:9c:e2:9b:0b:da:5f:23:5d:0e:fc:a0:39:
07:74:26:f0:ab:d2:fc:5f:98:3b:12:58:5c:e6:c1:a4:8f:06:
96:df:1e:1e:f4:7e:84:b6:87:c7:ac:ce:a3:97:b0:15:b0:0f:
4e:2e:33:b0:14:5c:5a:c2:3d:46:7d:7c:d6:cb:a0:ea:02:cd:
c6:42:e4:d3
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUEq6NsDNRiaUERncYfHAc3V250PMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1
MzU3RTZBMzAeFw0yNDA3MDEwMTAwMDBaFw0yNTA2MzAwMTA1MDBaMDMxMTAvBgNV
BAMTKDhEM0NBNEQ2MEQzNzE2QTE0QzU5RjdFMTFCMTlDQTYyNTdEREU2QUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSRiU2N8RDAVKbIRmrbD3MFZuQ
RKlXGAk2humPDJXGnUC1cLQB1GfLdCizxJnsSXR3kxUgUplgOmlvz5POEYz2I7b3
FFmCglY0KIgupOqfdobPdU4xFWc43lXlWOjwdH9nGliIebzmoOO+6lrRhiTweoPk
teezkVIRjdU0nuLIU3K6q+oQESqd/ato/0dZxwOp2XKXI/5mWGmJk3//bZWTMgf8
pLWggityjJoVn5EyiGdHQycvNXMgzBq2RSouxH8cWqiBoBACNqD7dcgdceAO+pyq
YqpQD5S5IRF5Q/eCvylzVfxwVWLzaY439ESAiHjZzG+zpFyNT2wQJNpr7FZhAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUjTyk1g03FqFMWffhGxnKYlfd5q8wHwYDVR0j
BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2
ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3
RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h
ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMyMzAzMjJlMzUzMjJlMzEzMjJlMzAyZjMyMzIy
ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKNAwwDQYJKoZIhvcN
AQELBQADggEBAGLPv2WY6DblxobfSGgoOXhUiINDsULjB3FwhyiIT8q9YdsS73nM
tCYDIuDoskszS382F29KGIjUU+Ag4lFKPoa2DZ2ignfiQKQjpCV4IQgy/dq8Umo+
NjlnEVHzGmfzSI1bdK0ArBpas55tS9u8k4AkoZyxu+RUT2hD7IqEHa1KEekZWH5E
WfitYeey1/26TPjMia7sO4ZWgD5kDfDz0Mkso/6NTSww9GqzGeImJTW1HOlAoCV7
3Yxwr5zimwvaXyNdDvygOQd0JvCr0vxfmDsSWFzmwaSPBpbfHh70foS2h8eszqOX
sBWwD04uM7AUXFrCPUZ9fNbLoOoCzcZC5NM=
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:46:44 2025 by rpki-client