Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32342d3234203d3e20313331373735.roa
File: 3230322e37342e3233362e302f32342d3234203d3e20313331373735.roa (raw, json)
Hash identifier: 4j5vhDURFqO3r1XbGTEQbWCsrbsggAil7Eg3BjT1pnE=
Subject key identifier: 05:05:0F:35:07:42:5D:3B:EE:FF:FD:3A:BC:E1:8E:A3:4B:E7:EB:19
Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054
Certificate serial: 342570750E225BEB3C753CE0153FE8BDC70F8FB7
Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32342d3234203d3e20313331373735.roa
Signing time: Mon 01 Jul 2024 01:03:46 +0000
ROA not before: Mon 01 Jul 2024 00:58:46 +0000
ROA not after: Mon 30 Jun 2025 01:03:46 +0000
asID: 131775
IP address blocks: 202.74.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:25:70:75:0e:22:5b:eb:3c:75:3c:e0:15:3f:e8:bd:c7:0f:8f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054
Validity
Not Before: Jul 1 00:58:46 2024 GMT
Not After : Jun 30 01:03:46 2025 GMT
Subject: CN=05050F3507425D3BEEFFFD3ABCE18EA34BE7EB19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b7:25:3c:0e:99:5d:b4:a1:3a:e7:d6:b8:de:
d3:ab:7c:d1:32:3f:f7:a8:2a:fc:79:ef:94:e8:d2:
d3:36:3d:aa:5c:7f:ed:79:69:0b:15:3d:be:aa:2e:
37:f9:2a:3f:df:3e:9a:ff:05:fe:2c:f9:da:48:f7:
a8:fb:bd:54:90:23:b7:e7:4d:fd:48:80:ea:56:d4:
8e:b1:17:19:17:07:e3:a4:a4:e1:3d:c5:76:4e:b2:
01:f0:3e:a3:fc:ff:ad:6e:eb:69:e8:24:3e:ea:3a:
fb:2e:f0:9a:e7:a4:aa:5a:0b:7d:71:d1:8a:62:db:
8c:de:b8:ed:35:45:38:ac:7e:7b:52:67:cf:d0:1c:
11:e0:37:b0:18:c2:97:51:9d:0b:39:70:3b:c0:15:
22:f8:e9:db:cd:d4:8d:70:54:5c:4e:32:b0:79:85:
8d:ee:01:fb:4c:bc:d8:44:bb:12:3a:af:50:6d:26:
8a:98:d4:6a:08:28:78:15:a1:46:b1:00:a2:f3:80:
59:c3:9e:4f:d6:97:c0:23:15:b7:b7:3f:12:9a:1b:
66:4b:ca:a0:4f:aa:58:c6:4d:0d:0f:20:84:ba:31:
19:25:91:da:46:b6:ab:94:c9:a2:ad:94:62:aa:2a:
dd:9e:8c:93:12:9a:ad:12:f8:c0:e6:a5:40:0f:19:
5b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:05:0F:35:07:42:5D:3B:EE:FF:FD:3A:BC:E1:8E:A3:4B:E7:EB:19
X509v3 Authority Key Identifier:
keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233362e302f32342d3234203d3e20313331373735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.74.236.0/24
Signature Algorithm: sha256WithRSAEncryption
05:38:27:6c:97:d2:50:34:7a:31:e2:c8:0f:6a:dc:d9:6a:7c:
f2:88:53:fb:93:a1:bb:3e:60:9d:fa:2b:2e:3f:7e:03:65:30:
ba:27:bb:f0:13:79:86:ec:77:7b:99:87:ad:9f:cf:f2:a1:36:
74:03:87:7d:49:13:4d:1b:7b:ef:66:a6:7e:31:37:b6:74:b1:
63:83:5d:ca:20:1c:19:57:3f:3d:8f:ac:da:0a:bd:4f:08:a8:
fe:78:4e:3b:d3:b9:30:9e:dc:9e:e7:79:a6:15:c5:ca:91:49:
e5:f4:82:15:a5:95:c8:54:fd:b0:e3:ab:76:7c:a2:c9:93:21:
26:5c:b2:66:c7:df:71:db:ee:81:37:37:48:92:6d:9a:58:fe:
62:a7:b9:fa:92:04:66:70:8c:8c:99:83:b5:ce:88:02:e9:68:
77:3f:7e:41:8f:eb:14:0f:57:d6:46:a1:ca:c8:d6:e2:8c:3d:
ae:56:18:2d:d0:32:67:bc:25:6b:3e:e0:76:95:b3:bb:40:58:
da:c7:15:89:38:0e:bb:c0:06:ea:87:e3:8d:b4:a0:8a:87:3c:
fe:85:f6:4e:1d:8b:44:66:71:58:69:88:f9:52:2c:8a:88:8a:
a2:35:02:66:b8:a7:01:71:bf:62:61:8b:dd:00:bf:97:42:01:
a9:ff:82:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:59:09 2025 by rpki-client