Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa
File: 3230322e3134382e382e302f32312d3231203d3e203338373738.roa (raw, json)
Hash identifier: jkIG83Fu7sT6OSyYX/zPiwYJBTugi7PaNi1HYuBsLjs=
Subject key identifier: 8C:58:8C:7C:9B:E7:D5:B7:49:1F:F1:70:8C:F0:60:91:78:DE:DF:91
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 213D744EFEAEB78082BBCCCEE1C25D89A327BE4C
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa
Signing time: Mon 01 Jul 2024 01:03:02 +0000
ROA not before: Mon 01 Jul 2024 00:58:02 +0000
ROA not after: Mon 30 Jun 2025 01:03:02 +0000
asID: 38778
IP address blocks: 202.148.8.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:3d:74:4e:fe:ae:b7:80:82:bb:cc:ce:e1:c2:5d:89:a3:27:be:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Jul 1 00:58:02 2024 GMT
Not After : Jun 30 01:03:02 2025 GMT
Subject: CN=8C588C7C9BE7D5B7491FF1708CF0609178DEDF91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bb:30:68:79:b0:0e:12:37:3e:15:c8:fc:f5:
14:87:3a:be:81:41:2c:45:53:b7:9c:db:57:25:70:
25:62:d2:09:d3:1e:1b:49:34:dc:16:ac:c9:e5:dc:
b9:1b:31:05:72:ce:82:cd:07:c6:25:29:6b:9c:6a:
14:5c:50:62:fa:1b:93:17:fb:96:5b:bb:52:dc:82:
25:ef:d1:6c:dc:43:c0:ce:5a:a4:a2:43:fc:d1:79:
7b:8e:17:76:37:a8:05:3e:db:ed:39:96:20:4c:47:
28:34:94:b7:27:91:77:ba:3c:79:47:63:02:03:5e:
b2:d9:36:61:1d:61:b7:57:91:73:85:7d:d8:be:e7:
ee:b6:32:21:97:31:70:a3:0e:93:c5:24:0a:4d:4e:
0a:b5:78:c3:52:c6:99:7a:0a:a4:d0:ec:e4:5e:ec:
50:56:0f:d0:34:02:82:53:4e:0c:25:47:e3:ab:cb:
ff:ab:5c:80:95:78:04:a6:a1:f4:d4:de:c5:ed:2a:
cc:9d:d4:7d:2e:c8:42:e5:1b:13:3e:27:3c:4f:75:
aa:2f:3b:1a:af:38:e5:a2:ce:d6:7b:f1:f3:9c:a4:
52:60:96:79:e3:33:a3:fb:e6:77:99:e9:09:f3:3d:
67:e7:e9:3f:fe:40:4e:7e:5b:3c:36:64:78:35:94:
4f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:58:8C:7C:9B:E7:D5:B7:49:1F:F1:70:8C:F0:60:91:78:DE:DF:91
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230322e3134382e382e302f32312d3231203d3e203338373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.148.8.0/21
Signature Algorithm: sha256WithRSAEncryption
ac:aa:81:b7:76:f2:73:b2:75:58:f9:b1:57:8a:3d:9a:ec:67:
9f:f3:32:58:cc:93:13:29:21:17:95:41:b3:af:b3:44:f1:9c:
c6:21:58:8f:91:f6:97:81:df:73:c7:80:75:01:2f:26:0c:2e:
33:e9:6d:96:ad:0d:d4:38:41:0c:ea:b7:b3:7d:74:84:4f:a8:
eb:6a:2e:1b:e2:28:da:89:30:9b:45:5b:1f:59:86:68:b6:80:
17:1f:bb:9c:e9:c7:e6:06:7e:67:63:11:44:26:8c:6c:b1:e5:
13:8b:1e:15:ae:06:8f:90:a3:24:1b:de:cf:4d:76:7f:98:25:
55:49:f0:4f:59:63:d3:da:44:c1:d2:4a:2a:d1:82:ff:b2:54:
23:99:eb:97:1e:9a:a8:d1:d1:3e:2a:c5:47:d3:cf:1e:86:9c:
db:ee:61:a4:ba:da:6f:b1:94:40:23:62:19:c0:6e:8c:14:b3:
ee:95:f8:f8:f4:b5:e2:7e:84:15:8f:ad:b8:64:cf:46:e4:9b:
7c:7f:6d:cb:d3:d6:f8:78:3a:ef:dd:08:5a:1a:bb:52:10:e3:
49:1f:94:3c:02:38:16:88:05:4e:18:e1:84:83:d7:07:d4:cc:
d6:fc:81:8c:1a:6f:73:18:ea:08:01:72:6e:c8:6f:dc:83:8b:
b9:fb:c6:fe
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUIT10Tv6ut4CCu8zO4cJdiaMnvkwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3
NjNDRjM2MTAeFw0yNDA3MDEwMDU4MDJaFw0yNTA2MzAwMTAzMDJaMDMxMTAvBgNV
BAMTKDhDNTg4QzdDOUJFN0Q1Qjc0OTFGRjE3MDhDRjA2MDkxNzhERURGOTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZuzBoebAOEjc+Fcj89RSHOr6B
QSxFU7ec21clcCVi0gnTHhtJNNwWrMnl3LkbMQVyzoLNB8YlKWucahRcUGL6G5MX
+5Zbu1LcgiXv0WzcQ8DOWqSiQ/zReXuOF3Y3qAU+2+05liBMRyg0lLcnkXe6PHlH
YwIDXrLZNmEdYbdXkXOFfdi+5+62MiGXMXCjDpPFJApNTgq1eMNSxpl6CqTQ7ORe
7FBWD9A0AoJTTgwlR+Ory/+rXICVeASmofTU3sXtKsyd1H0uyELlGxM+JzxPdaov
OxqvOOWiztZ78fOcpFJglnnjM6P75neZ6QnzPWfn6T/+QE5+Wzw2ZHg1lE+XAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQUjFiMfJvn1bdJH/FwjPBgkXje35EwHwYDVR0j
BBgwFoAUCabx+k/FMta04TRi/CNMnHY882EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m
MzRlY2M0MC02Yjg0LTQ5ZTgtYjYwYi02ZTk5MDQxMjhjYTgvMC8wOUE2RjFGQTRG
QzUzMkQ2QjRFMTM0NjJGQzIzNEM5Qzc2M0NGMzYxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDlBNkYxRkE0RkM1MzJENkI0RTEzNDYyRkMyMzRDOUM3NjND
RjM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzNGVjYzQwLTZiODQtNDllOC1i
NjBiLTZlOTkwNDEyOGNhOC8wLzMyMzAzMjJlMzEzNDM4MmUzODJlMzAyZjMyMzEy
ZDMyMzEyMDNkM2UyMDMzMzgzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKlAgwDQYJKoZIhvcN
AQELBQADggEBAKyqgbd28nOydVj5sVeKPZrsZ5/zMljMkxMpIReVQbOvs0TxnMYh
WI+R9peB33PHgHUBLyYMLjPpbZatDdQ4QQzqt7N9dIRPqOtqLhviKNqJMJtFWx9Z
hmi2gBcfu5zpx+YGfmdjEUQmjGyx5ROLHhWuBo+QoyQb3s9Ndn+YJVVJ8E9ZY9Pa
RMHSSirRgv+yVCOZ65cemqjR0T4qxUfTzx6GnNvuYaS62m+xlEAjYhnAbowUs+6V
+Pj0teJ+hBWPrbhkz0bkm3x/bcvT1vh4Ou/dCFoau1IQ40kflDwCOBaIBU4Y4YSD
1wfUzNb8gYwab3MY6ggBcm7Ib9yDi7n7xv4=
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:28 2025 by rpki-client