Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa
File: 3230322e3134382e32342e302f32342d3234203d3e203338373738.roa (raw, json)
Hash identifier: YfJKuUY/AbRgnmE3Pp7duZ0VjH9HrSmJOQpOmWWXiko=
Subject key identifier: A4:4A:F1:AA:A8:E9:DE:4D:7B:36:4E:BE:75:C1:6D:7E:64:0B:DD:9D
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 2D8E9E96A53BF5344FDD80814E313F7A6E2C555D
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa
Signing time: Mon 01 Jul 2024 01:02:57 +0000
ROA not before: Mon 01 Jul 2024 00:57:57 +0000
ROA not after: Mon 30 Jun 2025 01:02:57 +0000
asID: 38778
IP address blocks: 202.148.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:8e:9e:96:a5:3b:f5:34:4f:dd:80:81:4e:31:3f:7a:6e:2c:55:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Jul 1 00:57:57 2024 GMT
Not After : Jun 30 01:02:57 2025 GMT
Subject: CN=A44AF1AAA8E9DE4D7B364EBE75C16D7E640BDD9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:4f:6b:a7:8b:c7:db:e2:b0:fe:d0:0e:49:f5:
7a:ac:28:6a:74:7a:4c:7d:8f:16:2d:2f:da:d5:46:
f6:ac:95:f7:e7:4d:17:8c:e0:d8:6b:f5:4b:a7:6c:
37:00:7c:33:14:71:5c:fd:29:6c:3b:52:b1:f6:63:
a1:df:fd:72:6a:12:90:5f:38:4e:f2:db:ac:cc:eb:
32:e7:25:3b:67:26:f1:bb:c6:77:6c:3b:86:1b:d6:
56:a2:53:bc:83:74:1d:0f:df:ce:7c:20:06:b7:65:
37:56:07:bb:cb:42:45:e6:11:0c:65:d2:56:5f:cf:
7b:89:b5:73:04:c5:1e:b7:23:4c:dd:e3:b9:c3:2f:
70:c3:f1:60:97:78:24:8d:94:02:75:3e:99:8e:31:
77:d1:57:47:41:bb:de:ab:a5:54:56:82:7f:31:0b:
3e:56:a9:03:03:c2:99:62:4a:e7:9d:3d:74:f3:12:
98:a7:26:6a:70:e2:4d:a1:6a:63:80:4a:c1:1d:25:
b6:0e:ca:fc:96:a4:ab:4f:6b:79:71:40:c8:0d:95:
f7:23:a1:9a:84:c0:04:a7:16:88:21:2d:86:c3:aa:
9e:ca:08:63:8c:9f:ce:da:00:73:a9:5f:f1:2d:2f:
e6:21:52:c4:33:e5:74:24:96:62:0d:72:5d:a6:7a:
6e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4A:F1:AA:A8:E9:DE:4D:7B:36:4E:BE:75:C1:6D:7E:64:0B:DD:9D
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32342e302f32342d3234203d3e203338373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.148.24.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:e2:a0:9b:76:2f:1e:5d:ab:4b:0b:63:d8:c2:d8:1f:f1:d7:
f7:3b:e6:e5:09:02:71:9f:37:46:fa:01:7a:0c:9b:53:ea:f0:
26:6b:64:60:02:b4:05:fe:e2:f4:69:d0:7f:98:6f:7d:96:3b:
30:c2:ab:c2:76:b3:f7:4a:d6:f0:57:e6:b3:a5:72:ed:26:02:
2f:97:b8:4f:c9:db:71:0b:4e:a4:24:20:7b:4e:31:03:e4:a8:
f2:f2:be:6b:0a:19:79:3f:b7:c9:16:cc:52:55:51:fa:a1:8c:
4d:87:30:98:ec:ff:28:d8:45:8d:50:b8:1a:a4:cd:35:fb:1e:
73:a7:f5:5a:54:2b:20:e3:1b:c5:64:03:bf:92:d0:ba:36:82:
fb:46:ce:2f:06:e9:90:2f:46:22:b5:64:b2:39:4a:50:f1:91:
1e:85:b8:37:da:24:c0:ca:75:a5:7c:7e:21:ca:4f:98:bb:09:
cb:01:72:ce:24:8e:b5:44:8e:ef:83:23:7e:82:9b:ea:09:84:
ec:88:ed:72:8c:71:0e:83:46:9a:b6:0c:f4:ae:99:d1:0f:d7:
15:52:ff:d2:e5:2f:85:20:5e:37:de:d2:be:b8:de:c7:87:88:
d6:64:40:a1:87:87:dd:38:c5:5b:b4:da:ca:f5:83:08:48:f9:
31:60:57:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:08 2025 by rpki-client