Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa
File: 3230322e35312e39362e302f31392d3234203d3e203137393935.roa (raw, json)
Hash identifier: RzpF8tFy62QFxO5rx50rJvqckeHeBS/lfFxDrWgg/Gw=
Subject key identifier: 71:27:BE:0D:A3:B2:7C:E9:E5:BA:56:81:19:C2:4F:7B:64:AF:DB:13
Certificate issuer: /CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE
Certificate serial: 1B69A04C7E9E568F14E0B648285A892697AB17A9
Authority key identifier: 3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa
Signing time: Mon 01 Jul 2024 01:05:30 +0000
ROA not before: Mon 01 Jul 2024 01:00:30 +0000
ROA not after: Mon 30 Jun 2025 01:05:30 +0000
asID: 17995
IP address blocks: 202.51.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:69:a0:4c:7e:9e:56:8f:14:e0:b6:48:28:5a:89:26:97:ab:17:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3EDBB7844714C545CED724120ED0E5A34EFB45EE
Validity
Not Before: Jul 1 01:00:30 2024 GMT
Not After : Jun 30 01:05:30 2025 GMT
Subject: CN=7127BE0DA3B27CE9E5BA568119C24F7B64AFDB13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:db:e2:d2:08:5f:d9:63:7e:a8:99:e4:0a:3b:
93:ac:ca:2e:dc:98:d5:b5:21:35:86:da:0b:93:42:
e0:6e:de:58:b4:07:79:9f:7d:55:f8:bf:80:63:4f:
aa:fd:bf:d0:b3:d0:2d:f5:d7:57:83:ee:76:bf:bf:
1b:a7:94:5e:1f:76:ef:35:9d:dd:bd:63:cf:75:9c:
46:80:d5:9c:29:c1:28:50:76:48:e9:3b:a8:a8:9c:
06:b1:49:c2:ca:f6:45:60:f8:67:3d:88:ae:19:c1:
10:91:60:57:b6:47:43:87:0b:85:4b:03:aa:af:2c:
ab:22:af:f8:ef:5f:9b:a3:81:d5:62:ae:4d:06:1c:
9e:67:9f:e1:5c:05:d0:68:9e:ef:af:98:5b:18:e1:
77:86:ed:50:4a:c8:5c:9e:5f:98:bc:24:3c:94:73:
5a:8c:56:1c:3b:9f:0a:fe:61:fb:c4:c0:19:c7:2f:
0f:43:22:70:f9:00:f8:d1:c8:0e:c3:10:3c:27:7d:
85:d3:d8:d8:8c:43:35:17:3e:85:92:25:5e:c0:28:
57:6a:27:59:d7:15:37:7e:42:bf:b4:08:60:4d:5b:
e5:c8:3e:89:bf:1f:f4:cb:53:8b:4e:9a:e2:45:41:
be:2b:1f:30:6d:cb:99:cf:21:45:76:9b:18:e6:c9:
c7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:27:BE:0D:A3:B2:7C:E9:E5:BA:56:81:19:C2:4F:7B:64:AF:DB:13
X509v3 Authority Key Identifier:
keyid:3E:DB:B7:84:47:14:C5:45:CE:D7:24:12:0E:D0:E5:A3:4E:FB:45:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3EDBB7844714C545CED724120ED0E5A34EFB45EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3EDBB7844714C545CED724120ED0E5A34EFB45EE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ed955c8-e6d3-49c2-abd8-e0f92c081247/0/3230322e35312e39362e302f31392d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.96.0/19
Signature Algorithm: sha256WithRSAEncryption
12:97:33:f1:0f:05:3b:2f:9e:94:8a:86:c7:41:bf:f8:32:8e:
ea:50:9c:0e:ec:5a:98:d3:80:7c:ba:0a:5c:b9:9c:1e:27:d4:
7e:0a:c3:62:a1:40:37:5c:91:42:43:b9:3f:b7:0c:57:2c:f7:
8a:ab:ed:ea:f7:40:00:96:98:68:21:a5:09:51:84:51:fc:a4:
24:ca:a2:a0:2a:57:da:72:43:2a:5d:a9:1c:57:e5:1f:d7:4c:
75:7b:9e:91:55:f3:85:63:f6:d5:f7:76:d8:b2:df:71:12:fc:
f6:79:ae:5b:fc:0b:9a:91:ad:ff:d8:90:b2:d3:b3:85:af:7d:
8e:fd:22:21:82:8c:93:f6:4d:99:ce:88:f6:fd:ce:21:3f:19:
d9:1f:71:49:64:d4:1a:7b:c8:72:ae:ac:3a:74:66:fc:38:56:
6e:43:f4:66:e6:35:8f:63:9c:ab:d7:6c:35:0a:73:e2:bc:ed:
4c:05:db:97:6c:dc:3c:63:32:2f:a5:74:b6:f1:15:52:31:16:
76:c7:da:52:c4:50:41:76:6e:2d:10:4f:45:bf:98:ca:c1:59:
ac:25:9b:01:fe:eb:7e:9f:43:79:c3:b5:8d:9d:a3:06:92:52:
79:2e:c7:10:4b:0f:3a:72:2b:16:80:f5:19:af:bb:d8:58:78:
bb:97:f6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:11:36 2025 by rpki-client