Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203338313439.roa
File: 3230322e3135322e3139352e302f32342d3234203d3e203338313439.roa (raw, json)
Hash identifier: y2aUif7W/txDPkDXe3uJOWzIfOvdsbSbvH5QAlIWzY8=
Subject key identifier: C6:AD:6E:0E:46:3F:59:23:04:E6:B4:6A:61:29:0B:9B:16:70:00:96
Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Certificate serial: 03D80EFBE7C4B215F261951714BB360673EFC135
Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203338313439.roa
Signing time: Tue 17 Sep 2024 00:53:21 +0000
ROA not before: Tue 17 Sep 2024 00:48:21 +0000
ROA not after: Tue 16 Sep 2025 00:53:21 +0000
asID: 38149
IP address blocks: 202.152.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:d8:0e:fb:e7:c4:b2:15:f2:61:95:17:14:bb:36:06:73:ef:c1:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150
Validity
Not Before: Sep 17 00:48:21 2024 GMT
Not After : Sep 16 00:53:21 2025 GMT
Subject: CN=C6AD6E0E463F592304E6B46A61290B9B16700096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ba:46:34:46:89:ab:aa:75:03:60:91:a9:0f:
c9:06:2a:5a:4b:57:bc:04:26:b6:55:ea:cd:f5:9a:
4c:d6:6f:7c:d3:76:e1:c6:7e:80:dc:4f:d9:4a:19:
2f:f8:1f:32:2c:ee:ee:3e:26:73:4f:8f:1e:79:0e:
44:4c:12:43:f6:9d:30:3c:6f:73:57:73:c9:8f:02:
03:33:b2:9a:f1:ee:90:57:a9:9a:c0:96:d6:9d:ee:
42:5a:25:1b:ff:22:bd:0d:ca:c7:5a:a3:d4:d2:9e:
05:68:3b:54:79:74:cb:b5:91:c1:5c:5c:c3:f2:d9:
42:6f:a2:72:5f:6a:16:8b:18:b8:3e:22:65:4a:0b:
a5:75:b8:6d:e0:74:62:d8:1a:3b:f4:2e:a7:79:f9:
9e:c7:2c:f2:ed:4c:71:e2:74:e5:2e:15:89:fa:42:
18:37:16:89:45:3f:af:65:8a:fd:72:ef:33:7d:9b:
76:02:11:79:f6:a8:a3:4e:20:50:0c:b6:f8:fa:8d:
45:d8:b8:0e:94:3d:22:8b:67:84:d5:60:a3:47:38:
d9:17:01:ee:1d:d3:53:8b:4f:a0:18:4f:f2:1f:e9:
02:57:29:82:c0:76:fd:dd:ca:5b:49:ee:63:48:76:
bf:4c:de:bc:9e:bd:fc:47:7d:b2:ca:d3:01:2e:02:
23:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:AD:6E:0E:46:3F:59:23:04:E6:B4:6A:61:29:0B:9B:16:70:00:96
X509v3 Authority Key Identifier:
keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3230322e3135322e3139352e302f32342d3234203d3e203338313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.152.195.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:4d:d8:ae:e2:b8:77:3f:81:9b:71:d8:1b:a8:f0:de:ae:d9:
3d:47:d9:83:2d:db:8d:1e:fb:11:dc:3b:92:b4:01:95:e9:d0:
75:3e:94:cb:00:16:a8:0a:e3:d2:18:63:87:19:96:4d:a8:c8:
01:67:6d:4b:33:de:9a:29:30:62:4c:ce:f7:f5:a4:b6:4f:ea:
43:49:e7:f4:c5:d5:f6:0a:b6:5d:c9:06:58:d6:e6:45:a8:8d:
6f:7e:92:5c:9f:73:3c:54:4d:03:4b:25:6d:32:80:4f:7f:4d:
b2:c9:29:16:2e:90:08:a3:78:ee:6e:be:60:e8:93:58:ee:7e:
cb:cb:fd:6c:4a:b8:70:31:84:1e:3c:27:7d:cd:f1:19:e5:02:
31:bb:cd:6c:b5:99:59:f1:11:00:71:42:de:d9:c0:44:0d:a0:
fc:36:22:b8:5e:c2:b4:79:b7:cb:7f:ea:da:ee:90:2f:f3:a0:
d8:77:c4:c8:ee:62:d0:97:c9:41:65:89:25:30:00:59:97:5b:
d4:66:d6:0c:e4:15:f9:a7:03:e7:0c:8e:da:49:3d:c6:d0:11:
b0:81:36:d9:05:de:63:1d:a2:09:8b:a1:4c:f5:0a:f9:d4:5f:
5c:7b:32:f2:3a:17:9e:af:3f:af:6a:ac:80:ba:54:f0:17:df:
43:58:09:56
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUA9gO++fEshXyYZUXFLs2BnPvwTUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB
OEY5OTE1MDAeFw0yNDA5MTcwMDQ4MjFaFw0yNTA5MTYwMDUzMjFaMDMxMTAvBgNV
BAMTKEM2QUQ2RTBFNDYzRjU5MjMwNEU2QjQ2QTYxMjkwQjlCMTY3MDAwOTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ukY0RomrqnUDYJGpD8kGKlpL
V7wEJrZV6s31mkzWb3zTduHGfoDcT9lKGS/4HzIs7u4+JnNPjx55DkRMEkP2nTA8
b3NXc8mPAgMzsprx7pBXqZrAltad7kJaJRv/Ir0Nysdao9TSngVoO1R5dMu1kcFc
XMPy2UJvonJfahaLGLg+ImVKC6V1uG3gdGLYGjv0Lqd5+Z7HLPLtTHHidOUuFYn6
Qhg3FolFP69liv1y7zN9m3YCEXn2qKNOIFAMtvj6jUXYuA6UPSKLZ4TVYKNHONkX
Ae4d01OLT6AYT/If6QJXKYLAdv3dyltJ7mNIdr9M3ryevfxHfbLK0wEuAiP5AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUxq1uDkY/WSME5rRqYSkLmxZwAJYwHwYDVR0j
BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG
MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5
OTE1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h
YWIzLTVjYjE0ZWM0NDcwYy8wLzMyMzAzMjJlMzEzNTMyMmUzMTM5MzUyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAypjDMA0GCSqG
SIb3DQEBCwUAA4IBAQANTdiu4rh3P4GbcdgbqPDertk9R9mDLduNHvsR3DuStAGV
6dB1PpTLABaoCuPSGGOHGZZNqMgBZ21LM96aKTBiTM739aS2T+pDSef0xdX2CrZd
yQZY1uZFqI1vfpJcn3M8VE0DSyVtMoBPf02yySkWLpAIo3jubr5g6JNY7n7Ly/1s
SrhwMYQePCd9zfEZ5QIxu81stZlZ8REAcULe2cBEDaD8NiK4XsK0ebfLf+ra7pAv
86DYd8TI7mLQl8lBZYklMABZl1vUZtYM5BX5pwPnDI7aST3G0BGwgTbZBd5jHaIJ
i6FM9Qr51F9cezLyOheerz+vaqyAulTwF99DWAlW
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:54:47 2025 by rpki-client