Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31312e302f32342d3234203d3e203338373738.roa
File: 3230322e3134382e31312e302f32342d3234203d3e203338373738.roa (raw, json)
Hash identifier: A69zkQKEj2eIUUCQWGKYWmjmSNNtBNPqu3cYPbB4Q3E=
Subject key identifier: 12:BC:80:6B:F5:9A:C4:87:A8:0A:B8:88:AD:9A:65:FF:12:A1:9C:B6
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 554B0FDBEB29EAB5E9F7262156F9D7278DC4CAB4
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31312e302f32342d3234203d3e203338373738.roa
Signing time: Mon 01 Jul 2024 01:03:02 +0000
ROA not before: Mon 01 Jul 2024 00:58:02 +0000
ROA not after: Mon 30 Jun 2025 01:03:02 +0000
asID: 38778
IP address blocks: 202.148.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:4b:0f:db:eb:29:ea:b5:e9:f7:26:21:56:f9:d7:27:8d:c4:ca:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Jul 1 00:58:02 2024 GMT
Not After : Jun 30 01:03:02 2025 GMT
Subject: CN=12BC806BF59AC487A80AB888AD9A65FF12A19CB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e8:27:75:63:c6:1d:18:5d:12:bd:67:ba:85:
14:87:48:3b:f8:ca:0e:c5:c7:b0:ef:cb:90:5e:f8:
4c:b5:3d:66:57:00:d1:71:d6:8e:d2:8e:b7:b2:5e:
9e:92:20:57:30:2e:e0:93:df:d3:fb:d6:3c:4b:42:
c8:0a:9f:53:a8:13:c4:34:ae:3d:e9:f0:3f:85:b8:
12:6a:92:58:e7:c9:4f:d6:56:d9:b6:84:2a:1b:20:
2c:b9:ec:5b:01:77:a3:c5:d3:51:45:22:da:81:d9:
2b:86:75:09:8f:80:89:eb:a1:22:57:c5:c2:f6:d3:
dd:ea:d0:02:7e:dd:04:1b:ed:77:f8:de:01:d3:24:
6a:2b:5e:39:2a:04:97:86:0d:9f:e7:54:de:d2:1c:
e1:ef:45:7a:84:68:9e:71:f6:7c:0a:94:5c:b4:7b:
8b:2b:77:4f:fc:f6:42:3f:99:e7:93:2a:f0:45:98:
e8:33:76:78:dd:c2:c3:7f:74:02:2d:61:7f:7b:a7:
99:8b:23:dd:7f:6a:6b:ee:2f:5c:25:d3:2c:92:88:
83:b5:c5:8c:9e:e3:d8:c2:49:b3:12:d1:e4:80:6e:
de:be:31:45:2b:02:f5:45:b1:fe:7a:95:75:b1:1b:
43:48:5c:08:db:11:f7:b6:a2:45:43:2d:2e:a7:d0:
a1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BC:80:6B:F5:9A:C4:87:A8:0A:B8:88:AD:9A:65:FF:12:A1:9C:B6
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31312e302f32342d3234203d3e203338373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.148.11.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:31:2b:ee:f4:01:9f:b9:7c:31:60:0e:9e:d7:88:fb:16:50:
b3:1c:10:5c:5e:aa:65:24:8e:d1:db:52:21:84:36:58:bd:ad:
5e:1a:11:6c:fd:28:79:c5:6c:a8:78:35:c8:c6:49:be:ad:20:
50:68:b7:0a:56:36:5a:81:34:0d:1e:e6:57:62:13:43:3b:bc:
07:b6:cd:40:e8:20:74:71:bd:d8:e0:e0:90:4a:36:3b:3b:9d:
b0:64:0f:94:63:22:17:b7:59:ec:67:59:7c:62:a8:72:93:0d:
78:a0:d0:84:da:b5:11:ed:9f:11:25:47:20:4a:f1:fc:ee:08:
b3:62:26:dc:99:fe:95:d4:ac:0c:88:e9:ac:05:75:77:54:4b:
4f:ca:1f:79:31:4e:ae:e3:c3:e5:03:f3:97:3b:c1:59:f2:dd:
bf:c8:a9:0a:57:b1:aa:75:d9:c4:18:a0:1c:d0:5f:f0:22:22:
54:e4:c8:78:12:15:91:95:b6:b4:21:dd:1d:ac:be:61:13:82:
ba:6e:f6:c4:01:5a:fd:e7:78:df:61:e4:ff:40:d4:f8:f9:55:
6f:9e:20:d7:81:d5:ad:45:6b:ec:2c:3e:dd:08:aa:69:ac:b1:
18:fd:64:e4:d7:f3:1c:36:d1:79:9c:0a:e5:60:9f:46:3b:6c:
8a:fb:35:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:34:17 2025 by rpki-client