Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa
File: 3230322e3134382e32342e302f32332d3233203d3e203338373738.roa (raw, json)
Hash identifier: n++SRNeITfdsMp6DJ9MBUs/+FI435tUUA2wenE3X/Rk=
Subject key identifier: 75:45:01:CF:89:90:3C:8D:F8:05:C6:56:F9:65:47:91:5F:5F:37:0F
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 01A67478068192546B4F630301F699C0EA443466
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa
Signing time: Mon 01 Jul 2024 01:02:59 +0000
ROA not before: Mon 01 Jul 2024 00:57:59 +0000
ROA not after: Mon 30 Jun 2025 01:02:59 +0000
asID: 38778
IP address blocks: 202.148.24.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:a6:74:78:06:81:92:54:6b:4f:63:03:01:f6:99:c0:ea:44:34:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Jul 1 00:57:59 2024 GMT
Not After : Jun 30 01:02:59 2025 GMT
Subject: CN=754501CF89903C8DF805C656F96547915F5F370F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:62:ad:5a:d3:58:f6:e2:95:8d:34:b9:4f:e4:
86:c1:2f:15:9b:01:2c:33:0f:f4:7f:1e:08:3d:b7:
ec:b2:9d:b5:b7:36:69:1d:35:0e:7b:c6:a1:84:cb:
f5:ee:ac:54:e3:0c:2c:c4:cc:67:de:a2:b2:c4:ab:
26:ca:c4:af:ad:3b:50:91:40:b2:91:47:da:35:d8:
94:f6:08:63:3b:82:3a:43:1f:dc:ec:00:0b:e0:d0:
e1:6a:d5:dc:f6:de:29:ec:65:6f:6d:2e:8f:b2:50:
30:19:e5:55:b1:10:24:72:60:7c:58:7d:b6:e2:ed:
5d:f4:7d:23:94:51:d0:2e:71:44:ef:c4:39:69:a5:
21:3b:eb:39:44:bb:c3:f5:f4:0c:81:5c:d7:3e:e6:
39:22:a0:5e:b7:54:bf:35:b0:59:63:74:26:27:0d:
0a:2a:a4:7d:fc:7c:16:72:a6:ae:d6:94:8d:1c:a1:
98:31:04:eb:a7:30:7e:44:b9:3a:56:38:e3:3b:70:
17:1d:4c:b5:f7:d8:d4:7c:6f:32:32:0f:7a:0a:07:
79:ff:ab:62:ca:8f:c4:31:e3:90:29:c5:e2:b5:02:
cd:ce:77:5f:61:15:61:07:31:6c:8a:62:fe:d3:ad:
0d:30:bd:73:3f:10:e7:83:39:d7:a9:6f:5e:9e:8d:
c5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:45:01:CF:89:90:3C:8D:F8:05:C6:56:F9:65:47:91:5F:5F:37:0F
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32332d3233203d3e203338373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.148.24.0/23
Signature Algorithm: sha256WithRSAEncryption
47:0c:e0:26:59:71:2c:f6:7f:65:0a:75:49:e6:cc:6e:4a:54:
57:09:0a:51:9b:0f:6a:4f:ef:4d:85:8a:ba:52:52:f4:ca:08:
ee:f9:5d:6c:56:5d:02:d2:59:7b:61:a0:7f:7e:05:28:9d:f0:
30:ac:1f:51:94:f5:d3:7c:b2:f9:14:c8:52:24:9b:68:fc:9e:
0d:39:b4:ab:dd:a8:16:d2:d3:7a:a8:fa:6c:94:48:3b:84:a6:
0c:7b:69:6f:c8:5d:74:e4:0b:5c:e0:fd:78:26:c9:a6:6e:0b:
df:c7:d7:63:27:7a:0e:76:e1:86:2b:00:09:8d:3e:40:26:83:
e3:6f:3f:97:ad:62:4a:4a:94:7f:f0:16:09:79:24:72:7f:9a:
82:69:fa:e6:0d:39:75:be:3c:88:5c:16:e3:dd:53:0d:1a:47:
a6:5a:02:3b:52:e4:6d:76:b7:cf:ec:5d:3f:cb:fe:e3:20:6e:
b1:23:b4:a7:ab:3a:89:71:10:6d:43:a2:d4:3a:f3:df:61:21:
59:28:4d:1b:d6:0b:ea:72:1d:3e:57:f3:52:08:1e:29:c0:46:
a3:d6:c0:ca:4c:13:56:27:10:f8:7c:c0:42:8a:34:24:14:fc:
36:cb:6a:8f:d8:98:2f:81:8d:be:12:75:5d:68:21:26:fb:94:
94:ae:8d:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:40 2025 by rpki-client