Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa
File: 3230322e3134382e32352e302f32342d3234203d3e203338373738.roa (raw, json)
Hash identifier: Gj9wnAjTE9EIy05ANKIktQWXlrihFWllUyLsi+TK7jw=
Subject key identifier: EF:E8:67:15:B4:B3:42:F2:29:25:52:0A:AD:4A:78:E8:58:FD:07:9F
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 6E607C87D66E8817A8D6668676CE3F6DB357B098
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa
Signing time: Mon 01 Jul 2024 01:02:57 +0000
ROA not before: Mon 01 Jul 2024 00:57:57 +0000
ROA not after: Mon 30 Jun 2025 01:02:57 +0000
asID: 38778
IP address blocks: 202.148.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:60:7c:87:d6:6e:88:17:a8:d6:66:86:76:ce:3f:6d:b3:57:b0:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Jul 1 00:57:57 2024 GMT
Not After : Jun 30 01:02:57 2025 GMT
Subject: CN=EFE86715B4B342F22925520AAD4A78E858FD079F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:4d:9d:a2:71:d0:5f:d7:69:9c:f9:39:02:59:
d8:11:91:9a:f3:f4:24:68:73:1e:e5:4b:69:b0:e0:
4d:e9:86:34:6e:71:b4:26:45:db:3a:05:64:80:ac:
a6:8b:ab:5a:00:b3:81:1f:8e:b0:06:ea:b5:55:62:
15:a5:8f:b4:34:f8:87:55:24:9c:2e:46:aa:fa:c6:
b9:d7:aa:87:14:f8:35:83:ee:53:3f:ee:b7:0e:f1:
d9:4e:87:c3:17:73:2c:f2:d5:bb:30:e1:ad:7f:c8:
81:f0:14:47:39:ba:3d:07:df:ec:6f:a2:7b:6b:eb:
89:f8:e8:b5:79:c2:af:61:dc:ea:04:a0:12:4c:d0:
ab:46:cc:f3:5c:86:8a:e5:f7:23:77:44:9a:10:f8:
47:f3:dc:c9:58:5e:9a:e0:6f:79:95:57:4c:92:b8:
e4:80:f8:9d:9a:a7:2e:ca:82:a7:8b:4e:4f:1b:75:
92:bb:c7:2d:49:3e:a7:9d:b8:3b:da:86:58:28:0b:
fd:2a:da:4a:d2:2c:90:cb:ac:d2:cd:83:7e:ff:28:
fc:92:b5:37:79:da:18:25:19:11:b5:5e:1c:6e:86:
c7:82:33:af:e5:83:59:fa:63:99:6e:bd:d2:5c:d5:
c0:dc:ab:bf:42:13:85:32:56:9d:38:72:4e:5a:56:
a6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:E8:67:15:B4:B3:42:F2:29:25:52:0A:AD:4A:78:E8:58:FD:07:9F
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e32352e302f32342d3234203d3e203338373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.148.25.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:a2:1c:dd:56:db:d2:f1:b7:b2:67:45:33:3c:4e:3c:fa:b1:
b7:6e:4e:2c:9c:65:e4:ca:eb:21:4d:9a:1c:d5:fc:6e:9e:4b:
0a:b3:ff:12:3e:cd:27:c6:24:78:c3:bd:a5:dc:88:76:27:4a:
a0:2f:ad:de:69:1b:31:f2:1c:be:f0:54:15:cc:d6:0f:90:ec:
4c:98:58:d4:cd:8e:1c:4b:de:90:88:5d:1c:16:a4:bc:c8:d1:
bb:f4:3c:eb:ee:99:6a:71:25:84:24:31:98:d6:71:84:5e:bf:
4a:c6:f0:71:4a:aa:c7:2f:11:f0:c7:f0:a3:3f:08:41:cf:45:
76:20:f2:98:71:8a:02:75:73:d6:08:35:e5:db:3b:41:11:75:
9b:d6:a8:4d:ba:88:ea:01:ba:cb:d7:b6:de:e3:0f:5e:5d:46:
cb:69:14:b6:48:02:d5:fb:17:cf:d6:1e:98:20:22:b3:f4:f1:
ff:d7:95:fc:47:83:9e:10:c3:b4:35:2f:ba:15:93:97:8c:9e:
8f:e2:97:56:7c:9e:cc:44:8d:53:62:3d:1d:c9:e7:cc:ee:0d:
85:e2:df:4a:e0:62:9f:f1:dc:ec:68:df:ab:49:09:81:81:d4:
dd:30:cd:53:9a:be:3e:0f:fc:4f:75:0f:3f:f9:e2:db:39:d0:
84:dd:6f:ee
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUbmB8h9ZuiBeo1maGds4/bbNXsJgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3
NjNDRjM2MTAeFw0yNDA3MDEwMDU3NTdaFw0yNTA2MzAwMTAyNTdaMDMxMTAvBgNV
BAMTKEVGRTg2NzE1QjRCMzQyRjIyOTI1NTIwQUFENEE3OEU4NThGRDA3OUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlTZ2icdBf12mc+TkCWdgRkZrz
9CRocx7lS2mw4E3phjRucbQmRds6BWSArKaLq1oAs4EfjrAG6rVVYhWlj7Q0+IdV
JJwuRqr6xrnXqocU+DWD7lM/7rcO8dlOh8MXcyzy1bsw4a1/yIHwFEc5uj0H3+xv
ontr64n46LV5wq9h3OoEoBJM0KtGzPNchorl9yN3RJoQ+Efz3MlYXprgb3mVV0yS
uOSA+J2apy7KgqeLTk8bdZK7xy1JPqeduDvahlgoC/0q2krSLJDLrNLNg37/KPyS
tTd52hglGRG1XhxuhseCM6/lg1n6Y5luvdJc1cDcq79CE4UyVp04ck5aVqZFAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU7+hnFbSzQvIpJVIKrUp46Fj9B58wHwYDVR0j
BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m
MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG
QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND
RjM2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i
NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzMjM1MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqUGTANBgkqhkiG
9w0BAQsFAAOCAQEAG6Ic3Vbb0vG3smdFMzxOPPqxt25OLJxl5MrrIU2aHNX8bp5L
CrP/Ej7NJ8YkeMO9pdyIdidKoC+t3mkbMfIcvvBUFczWD5DsTJhY1M2OHEvekIhd
HBakvMjRu/Q86+6ZanElhCQxmNZxhF6/SsbwcUqqxy8R8Mfwoz8IQc9FdiDymHGK
AnVz1gg15ds7QRF1m9aoTbqI6gG6y9e23uMPXl1Gy2kUtkgC1fsXz9YemCAis/Tx
/9eV/EeDnhDDtDUvuhWTl4yej+KXVnyezESNU2I9HcnnzO4NheLfSuBin/Hc7Gjf
q0kJgYHU3TDNU5q+Pg/8T3UPP/ni2znQhN1v7g==
-----END CERTIFICATE-----
Generated at Thu Apr 10 02:14:03 2025 by rpki-client