Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa
File: 3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa (raw, json)
Hash identifier: BF2kNGqqMGuXEf5s5bpL5k8ADzYxq1Gxw3hsda3hiqk=
Subject key identifier: 05:FF:A9:05:B8:C3:16:83:49:EC:CD:DD:D9:70:31:AF:EB:31:CB:4C
Certificate issuer: /CN=49CDCA308C289D688C649C2303BECB3ED76B5054
Certificate serial: 1A8D77824A9D0D0642F24FEC7A0BD7869FA769F9
Authority key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa
Signing time: Mon 01 Jul 2024 01:03:46 +0000
ROA not before: Mon 01 Jul 2024 00:58:46 +0000
ROA not after: Mon 30 Jun 2025 01:03:46 +0000
asID: 131775
IP address blocks: 202.74.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:8d:77:82:4a:9d:0d:06:42:f2:4f:ec:7a:0b:d7:86:9f:a7:69:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49CDCA308C289D688C649C2303BECB3ED76B5054
Validity
Not Before: Jul 1 00:58:46 2024 GMT
Not After : Jun 30 01:03:46 2025 GMT
Subject: CN=05FFA905B8C3168349ECCDDDD97031AFEB31CB4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:94:cf:2f:eb:dc:be:9c:fd:a4:59:a5:34:e9:
08:13:79:f5:0e:50:0e:d5:5e:71:56:15:f2:c6:0e:
71:07:42:8f:96:b9:2e:f0:e5:a4:85:c9:13:8e:b0:
03:4d:c1:cb:15:1c:0a:41:a8:15:20:53:ed:af:2c:
bd:2d:42:ab:49:8f:52:73:7c:0b:ab:bb:8d:c2:8f:
a6:ce:bd:55:fa:15:83:32:c6:7f:95:df:f0:1d:88:
f9:44:94:55:da:29:3d:fa:e1:17:2c:11:07:b4:1e:
72:06:03:68:46:52:10:98:9d:b4:8b:03:1b:03:7c:
3a:75:46:e6:00:73:85:9e:60:a8:c6:53:86:01:2d:
1d:e5:b1:42:9a:3b:e1:49:8f:7c:27:fb:10:4f:57:
d2:38:1f:14:42:00:17:31:0e:72:cd:c2:33:78:30:
0a:3a:14:cb:73:2f:59:cf:ec:a0:ed:64:ef:19:54:
be:06:2d:47:d8:ac:05:8f:46:04:8d:dc:3b:d4:20:
64:17:a5:5b:81:1f:2b:3d:11:e3:ff:38:9d:57:77:
87:06:9f:9f:0b:06:6a:a5:70:b3:aa:ee:e2:39:00:
bd:86:44:f4:dd:76:fe:7b:48:d2:60:12:a3:55:3c:
e5:ac:44:7c:72:f5:a7:20:13:fa:dc:d3:3d:a0:aa:
5d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FF:A9:05:B8:C3:16:83:49:EC:CD:DD:D9:70:31:AF:EB:31:CB:4C
X509v3 Authority Key Identifier:
keyid:49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/3230322e37342e3233392e302f32342d3234203d3e20313331373735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.74.239.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:31:ca:04:8f:f1:63:04:a8:5f:a3:ee:5b:70:ca:18:f1:84:
94:81:39:e0:2b:00:61:d6:1d:1b:2b:7e:7d:c7:8d:be:a4:ec:
a1:35:69:92:ad:4a:fc:9a:ea:f7:69:2a:d6:dd:9a:25:cd:50:
af:1d:2a:c0:a4:75:81:5e:22:24:91:c3:82:84:38:63:db:b1:
d3:96:ee:15:f5:78:7c:cc:b1:4f:33:be:17:da:b3:95:07:31:
2d:fd:21:35:c4:d7:d7:11:e9:53:cc:bc:84:17:31:74:5b:89:
e1:07:db:02:7f:a0:58:ee:12:24:8a:e1:1c:45:1e:29:8c:93:
7c:13:8d:07:e4:99:8e:bc:26:3e:88:8a:db:01:1e:ec:f2:a8:
9f:5d:db:c0:d6:36:bd:86:95:11:20:73:56:ac:d1:53:ce:52:
65:29:90:4c:44:79:43:71:4c:07:2a:09:ad:c0:af:74:75:bd:
73:e4:e2:ea:fe:c7:ce:fd:14:f7:96:00:fb:d3:0c:3b:1d:43:
59:71:04:fa:35:3a:e3:8f:7e:74:3d:b7:da:38:93:c9:72:f3:
be:57:57:f5:ae:e6:e4:8c:1b:81:0c:68:81:e5:fa:e4:94:b6:
d9:54:73:c7:39:0e:49:cb:82:89:8b:e9:7f:55:45:d5:e5:3e:
30:7b:a2:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:36 2025 by rpki-client