Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa
File: 3230322e3134382e31372e302f32342d3234203d3e2039373934.roa (raw, json)
Hash identifier: tezQRMPQIhXNPsQs7q8Z5Lbow275EwCYOnOn6JJgnlw=
Subject key identifier: 38:9A:3A:EA:1E:7B:C3:26:65:92:75:C3:BA:B4:7F:93:62:04:FD:12
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 5F1F726B35348C0110240AFA752BC213F61D6E71
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa
Signing time: Mon 01 Jul 2024 01:02:57 +0000
ROA not before: Mon 01 Jul 2024 00:57:57 +0000
ROA not after: Mon 30 Jun 2025 01:02:57 +0000
asID: 9794
IP address blocks: 202.148.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:1f:72:6b:35:34:8c:01:10:24:0a:fa:75:2b:c2:13:f6:1d:6e:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Jul 1 00:57:57 2024 GMT
Not After : Jun 30 01:02:57 2025 GMT
Subject: CN=389A3AEA1E7BC326659275C3BAB47F936204FD12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:97:2f:51:cc:98:37:74:47:6d:3f:c5:b5:cc:
e5:51:23:4e:49:6f:26:56:fd:4c:ea:ee:07:c7:b0:
60:51:c8:31:e4:fc:b8:25:df:13:75:5b:a9:83:ff:
3e:a3:48:bf:43:dd:dc:f8:0e:5b:6f:48:cf:65:97:
62:c1:22:16:0a:ed:55:d0:94:5b:a7:d9:c5:ab:95:
0b:0b:d1:37:90:eb:fe:db:90:58:56:51:d0:49:d3:
ae:36:e3:20:cf:c9:8e:88:cf:b0:81:16:66:64:3b:
10:7e:4a:84:c1:48:81:a9:2b:ab:48:6b:a5:0d:90:
78:97:ea:c3:83:c7:f8:7f:75:8f:fd:22:47:90:7c:
a6:bf:16:4a:23:78:2d:4d:85:17:ef:4d:a5:49:dd:
db:07:b5:40:ba:8b:85:9e:c4:9c:8c:3a:bb:7e:fd:
13:90:f9:33:ed:f6:91:a9:fe:60:fc:de:ed:8f:a4:
db:b5:5f:0c:83:5e:d7:ac:64:66:c8:b9:24:95:4f:
f0:8d:5e:5d:44:7e:6d:62:97:65:5d:82:bc:5b:af:
f2:8a:b1:7c:c6:bf:9d:d3:91:cf:0c:a2:10:e3:49:
9d:6c:39:5f:b9:c8:29:5b:76:a6:72:fa:6e:42:cc:
9d:c7:5d:d8:e6:41:68:08:42:98:9b:f7:52:c2:e4:
b2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9A:3A:EA:1E:7B:C3:26:65:92:75:C3:BA:B4:7F:93:62:04:FD:12
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e31372e302f32342d3234203d3e2039373934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.148.17.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:7c:b7:72:a3:f9:11:43:ad:be:f0:95:bf:82:b1:c9:18:c3:
88:b7:1d:05:d6:30:78:97:38:39:8e:3b:d5:c9:ab:6a:c8:4e:
de:fb:68:27:db:4a:69:9c:51:2e:50:c6:cf:80:5a:9a:31:97:
e9:f7:73:83:b6:fa:bf:f2:f3:84:44:64:1b:8d:b7:c5:b7:6c:
34:c5:e0:40:a3:4d:1b:ee:88:b8:c8:d9:c6:4a:22:c3:4a:45:
98:38:7d:5f:f6:7f:10:28:21:0e:9e:ea:1e:41:49:ec:15:10:
e1:b4:90:c7:e3:40:83:76:fb:cd:ad:d3:6a:1b:48:23:4b:11:
a5:94:9b:6f:d4:d6:60:80:da:c6:cc:48:3d:78:ff:7f:26:38:
9c:ec:ac:3a:bd:a8:f8:20:8c:3f:40:4b:96:49:05:7e:b3:26:
73:a6:a7:7d:9e:bf:f1:c7:95:30:b1:7b:ed:0e:be:a2:a1:40:
b7:66:35:fd:d2:0b:f8:68:b8:3b:c8:c7:85:fe:4d:d6:89:35:
1c:ee:0c:a2:29:d8:0f:ef:48:fa:82:84:80:d9:a6:ec:8e:53:
b2:da:fc:5a:6c:56:6e:c5:82:53:f9:73:c9:f5:10:14:5f:c5:
d0:64:48:7d:0c:bd:ce:1e:61:fb:8a:63:d0:8e:ba:24:89:fe:
41:82:d7:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:55 2025 by rpki-client