Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa
File: 3230322e3135382e302e302f31372d3234203d3e2034373837.roa (raw, json)
Hash identifier: p280zmCEiJc2CEWyy/Nv8OcRDzCQrCDBOrLwXFfDaPg=
Subject key identifier: 15:77:B0:BC:80:A0:41:B4:9A:6E:6A:C7:D5:BF:B4:7D:00:D4:96:66
Certificate issuer: /CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Certificate serial: 15CE66B4F5560AB60AF3E707EFC8DC78A920812A
Authority key identifier: 7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa
Signing time: Mon 22 Jul 2024 16:35:43 +0000
ROA not before: Mon 22 Jul 2024 16:30:43 +0000
ROA not after: Mon 21 Jul 2025 16:35:43 +0000
asID: 4787
IP address blocks: 202.158.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:ce:66:b4:f5:56:0a:b6:0a:f3:e7:07:ef:c8:dc:78:a9:20:81:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E2CF346D5DE840DC0EE944C918EDC5137D6998A
Validity
Not Before: Jul 22 16:30:43 2024 GMT
Not After : Jul 21 16:35:43 2025 GMT
Subject: CN=1577B0BC80A041B49A6E6AC7D5BFB47D00D49666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:20:0d:94:c3:ad:97:a2:19:dc:2b:9e:0a:32:
6e:ae:4f:b9:a0:f1:db:f8:80:7a:62:9d:91:dd:73:
2e:5d:e8:f3:45:91:11:df:37:3f:4e:72:c6:e5:4a:
27:2b:39:0d:98:1e:f4:36:91:b1:11:2a:a4:6e:d5:
f2:e1:4b:e0:b1:2d:4e:b8:8e:91:d2:9c:5f:16:52:
ff:73:51:35:2c:57:40:1c:d7:6f:27:9d:55:47:b9:
66:ad:4f:28:1d:89:9c:7b:69:36:01:99:be:d1:58:
03:de:2f:c3:25:3e:b9:03:ff:2c:44:2c:c5:a6:06:
75:3e:ce:9e:9d:78:ad:ba:0f:c3:fd:a1:f4:75:d4:
2c:93:67:ba:70:33:9f:69:cf:da:f3:5b:a9:9f:fd:
f1:f7:79:a9:7c:8b:ed:08:e1:b1:b6:e3:81:26:23:
1a:ef:6e:b7:7c:55:78:05:41:57:0c:06:d5:9d:9b:
69:a2:40:b0:e2:71:dc:c3:f5:8f:86:85:c3:04:bc:
60:19:bb:3e:62:c1:b4:6f:3a:aa:59:7e:cc:20:e6:
64:20:ad:0a:87:23:44:bb:9d:c7:8d:07:44:3a:03:
83:31:af:95:fe:5e:c2:99:a7:66:dc:3f:f1:3f:ba:
e3:c0:57:47:ed:89:c4:52:49:85:a0:e9:dd:ad:8b:
9d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:77:B0:BC:80:A0:41:B4:9A:6E:6A:C7:D5:BF:B4:7D:00:D4:96:66
X509v3 Authority Key Identifier:
keyid:7E:2C:F3:46:D5:DE:84:0D:C0:EE:94:4C:91:8E:DC:51:37:D6:99:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E2CF346D5DE840DC0EE944C918EDC5137D6998A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea702726-b2c6-46fc-8297-2dbdec6d6d5d/0/3230322e3135382e302e302f31372d3234203d3e2034373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.158.0.0/17
Signature Algorithm: sha256WithRSAEncryption
04:08:33:7a:fb:32:62:7d:de:fc:25:19:04:84:f5:82:a2:72:
cd:4c:53:1f:1c:da:c5:53:c4:12:46:9b:fd:99:d1:50:80:f7:
c9:c0:5f:05:30:47:a4:93:6c:62:fc:42:bf:70:68:b0:cb:88:
38:8c:e2:63:a6:80:a5:00:cd:8a:58:4a:5c:7a:68:e6:71:20:
0c:36:24:75:9c:0f:38:2b:20:f6:28:bc:d5:0e:dd:bc:43:53:
7f:b8:18:e5:c1:ba:76:81:82:f6:71:cb:b0:b6:af:59:4b:52:
f1:dc:f2:ed:bc:2b:7c:70:f0:9c:33:34:10:16:25:c7:f4:9d:
8e:01:a7:58:6f:fd:83:e0:d0:a5:c4:68:40:e2:da:c4:64:90:
f5:8e:ee:2d:d3:57:2d:63:c5:c3:b5:bc:cb:33:e2:1a:6b:ba:
ba:1b:2d:b9:2f:80:37:37:4f:97:28:9b:ee:88:22:80:b6:fc:
9b:c9:58:cc:ef:19:37:78:23:f1:a1:3d:bd:ac:a3:e8:f7:e3:
97:30:66:81:6e:9c:b5:57:e5:26:0c:b7:22:66:83:f9:1d:83:
96:fe:89:ea:75:16:4b:3e:bf:c2:2e:e1:d6:0d:1f:a0:4e:7c:
b2:06:14:43:3e:70:c4:5c:85:48:30:43:2f:28:6f:0b:d6:eb:
49:f7:f5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:53:22 2025 by rpki-client