Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e35302e302f32332d3234203d3e203435373239.roa
File: 3230322e3135392e35302e302f32332d3234203d3e203435373239.roa (raw, json)
Hash identifier: 7LPe2lEj9jSSghBzwzWvEJHD1rdTalK2jKZeyt7h7R0=
Subject key identifier: 03:DC:24:99:2F:B6:4A:C5:B3:CB:63:E3:DA:19:F1:8F:9F:EA:E6:BD
Certificate issuer: /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308
Certificate serial: 380EA3F64371470CB1CA3D9E795AB9B8ADACA57F
Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e35302e302f32332d3234203d3e203435373239.roa
Signing time: Fri 14 Feb 2025 10:00:01 +0000
ROA not before: Fri 14 Feb 2025 09:55:01 +0000
ROA not after: Fri 13 Feb 2026 10:00:01 +0000
asID: 45729
IP address blocks: 202.159.50.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:0e:a3:f6:43:71:47:0c:b1:ca:3d:9e:79:5a:b9:b8:ad:ac:a5:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308
Validity
Not Before: Feb 14 09:55:01 2025 GMT
Not After : Feb 13 10:00:01 2026 GMT
Subject: CN=03DC24992FB64AC5B3CB63E3DA19F18F9FEAE6BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e6:af:ac:f2:0e:bb:4f:14:e4:95:fb:14:4d:
55:9c:8e:51:8d:09:9d:17:da:f5:37:f6:99:9a:f1:
70:af:b5:9f:c4:7a:cb:06:81:f7:b9:af:96:cb:52:
ff:b7:1f:6d:e9:9a:e8:fa:b8:b4:30:fd:e3:d7:a5:
67:48:b5:16:fa:ec:97:39:4c:ad:74:ec:ca:b0:fb:
5b:be:1e:85:b7:cc:17:64:93:a6:2f:08:34:0e:3f:
d8:d2:08:70:54:6d:05:b5:40:9f:96:97:4b:da:75:
62:37:72:96:3a:46:c4:67:25:5b:56:44:b8:32:81:
7d:9b:de:ba:dc:b9:c0:94:e0:a2:8a:13:a3:0c:fb:
1a:84:d2:25:a6:ef:d4:a2:1a:b7:d7:aa:2a:77:49:
0a:da:02:35:42:7b:46:c5:72:4d:56:b2:f3:77:3c:
e3:23:74:13:41:f4:ba:42:1c:61:9e:3c:16:e3:b6:
f7:34:6f:bf:d0:e1:69:1d:02:a3:73:78:9f:d9:04:
2f:cb:e9:d2:46:03:49:2e:78:36:14:c7:18:bd:54:
03:2c:b5:21:8d:85:c0:aa:9e:a5:14:51:4a:29:42:
c2:59:f3:96:c5:7a:2a:6f:2c:ae:5c:04:e7:98:fd:
fa:b3:13:b9:cf:f0:fa:57:30:28:8a:2c:d8:fb:f5:
35:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:DC:24:99:2F:B6:4A:C5:B3:CB:63:E3:DA:19:F1:8F:9F:EA:E6:BD
X509v3 Authority Key Identifier:
keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/3230322e3135392e35302e302f32332d3234203d3e203435373239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.159.50.0/23
Signature Algorithm: sha256WithRSAEncryption
72:b9:7b:e4:b4:a8:4a:3a:3b:a4:6d:e5:09:ec:73:91:4e:91:
17:af:bd:c5:15:09:5d:a2:64:d6:4a:ed:a4:af:8f:83:f0:d0:
1e:fc:de:4c:0b:25:c7:a7:07:ad:6b:a7:17:3d:d9:94:77:03:
15:cc:f5:bd:75:1c:ed:d0:67:80:4d:92:c6:cf:27:d3:35:76:
13:d5:18:2c:58:cd:91:c3:27:51:74:13:15:56:7a:48:98:68:
ce:04:17:be:0f:1f:c7:ac:d9:7a:a4:f3:20:46:84:d4:57:ed:
76:c6:7f:15:d6:1c:5a:5a:bf:eb:37:d2:93:96:eb:9c:b6:56:
b4:58:5a:8e:c1:ce:42:fe:e1:71:24:06:ee:e5:24:4c:4c:08:
4c:23:9d:1b:cb:5a:32:9e:98:25:f3:e6:bf:02:fb:41:60:93:
49:6e:33:0f:56:4b:6a:a8:91:b5:e4:df:4d:69:51:ba:8d:47:
c9:91:77:7f:4f:69:5e:ae:7f:dc:d5:71:d1:f9:c9:65:02:0f:
95:9d:f9:f2:13:74:82:55:85:4d:64:ca:ac:73:cb:d3:fd:0a:
3e:d5:12:28:0a:35:77:d1:ac:39:c6:97:5b:07:49:ee:5a:b2:
e4:b3:19:4b:fa:7c:54:9c:24:3c:17:fc:2a:d3:51:9a:c3:bd:
65:85:7f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:44:05 2025 by rpki-client