Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32342d3234203d3e20313331373735.roa
File: 3230322e37342e3233382e302f32342d3234203d3e20313331373735.roa (raw, json)
Hash identifier: BDI2F/n8+wwvcxzHCXbwTf7px0iRNJAvIJjn+PRQZfo=
Subject key identifier: 2C:54:7D:CF:79:E4:BC:55:6F:C7:58:A6:B2:A5:39:7E:CB:DD:CA:0E
Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054
Certificate serial: 22CA456609A1907E90E078D37A5737CE9C6509E4
Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32342d3234203d3e20313331373735.roa
Signing time: Mon 01 Jul 2024 01:03:47 +0000
ROA not before: Mon 01 Jul 2024 00:58:47 +0000
ROA not after: Mon 30 Jun 2025 01:03:47 +0000
asID: 131775
IP address blocks: 202.74.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:ca:45:66:09:a1:90:7e:90:e0:78:d3:7a:57:37:ce:9c:65:09:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054
Validity
Not Before: Jul 1 00:58:47 2024 GMT
Not After : Jun 30 01:03:47 2025 GMT
Subject: CN=2C547DCF79E4BC556FC758A6B2A5397ECBDDCA0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8b:f3:0c:41:12:b1:d8:91:89:47:32:ac:84:
d2:b9:b0:94:c2:13:cd:0e:07:08:0a:8e:c9:7d:3c:
4e:58:74:d9:65:ce:79:e9:4d:79:cd:34:c9:d5:de:
51:56:06:fc:03:08:05:9f:ac:1d:cc:15:af:76:0b:
d9:a0:ed:ab:82:04:3d:c6:0a:65:05:dd:67:83:7a:
29:2d:58:a0:ac:06:49:9b:88:11:6e:6c:18:59:34:
93:70:c1:30:58:9b:b0:e3:75:f6:10:1d:95:09:a8:
90:c1:54:6f:ab:97:d4:03:26:db:f5:02:38:d6:06:
67:7c:9c:31:37:7c:57:3e:f0:d5:d6:d6:4f:bd:25:
ac:a3:a0:c5:9d:86:d6:f4:df:df:32:67:e5:29:11:
b1:ac:50:ca:08:fc:0e:51:86:f0:31:b2:18:68:21:
96:04:8e:bc:25:c3:49:42:00:64:19:c5:26:50:59:
04:c1:93:9e:ec:f2:8b:2e:23:6e:57:2c:a9:91:1d:
f1:6a:b9:24:ba:8d:61:94:93:60:b4:87:93:b7:7b:
ba:ac:9a:74:e9:75:21:01:72:b9:1f:e6:35:fe:86:
28:ea:7e:c4:28:df:bd:80:67:b2:48:27:e3:5f:d3:
bc:12:7b:75:17:c1:76:f4:ce:ca:f5:55:7f:9a:fa:
a6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:54:7D:CF:79:E4:BC:55:6F:C7:58:A6:B2:A5:39:7E:CB:DD:CA:0E
X509v3 Authority Key Identifier:
keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233382e302f32342d3234203d3e20313331373735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.74.238.0/24
Signature Algorithm: sha256WithRSAEncryption
14:78:fb:d8:84:d4:b9:39:fe:a2:14:94:f6:01:04:30:4e:6e:
1d:a2:9a:73:3a:7e:f7:9b:aa:15:4b:6d:2c:55:5b:6a:56:6d:
34:91:d0:6b:a8:a1:a0:8a:5d:1a:1a:71:5b:fc:7a:87:80:d5:
b5:b9:4f:49:c0:16:60:8c:5c:c1:92:47:35:6a:e4:d3:6c:88:
cf:b5:48:6d:af:49:4e:4c:ee:47:df:8e:52:3c:f2:01:6b:dc:
99:ca:a4:b2:0e:11:14:5b:dc:da:a5:20:48:67:33:53:1f:82:
f0:2d:43:2e:94:14:61:36:85:17:15:5c:78:76:08:14:3b:e6:
4e:ad:5d:1a:6b:f7:83:a2:fe:01:c7:a1:8d:07:7f:02:82:62:
9e:18:61:2f:60:30:96:ed:7a:6b:81:ac:12:61:d9:07:b0:d6:
ac:1a:79:08:71:c8:ce:5b:ea:59:51:77:d6:25:e5:4d:72:5a:
68:c1:2e:c8:31:ef:ac:e5:b9:19:28:a6:e3:7c:bd:a9:9e:ac:
7e:30:24:53:bd:fd:e8:0f:ee:71:85:7d:53:62:75:53:5b:7f:
1a:eb:9b:62:24:c9:8d:4a:4c:25:af:39:f5:24:9e:26:fd:27:
a3:31:d7:7b:8c:81:d2:93:c0:f9:b3:43:d2:a3:60:d1:d0:77:
4b:ab:d3:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:15 2025 by rpki-client