Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136322e302f32342d3234203d3e203137373639.roa
File: 3230322e35352e3136322e302f32342d3234203d3e203137373639.roa (raw, json)
Hash identifier: GxlygWgwwXSgX7kQBxUFnJkMJD7Fxqb8DLIN6hy94xY=
Subject key identifier: 6B:1E:47:CE:97:1E:30:C4:0C:4C:FF:6F:D4:C1:37:D6:5C:49:66:8B
Certificate issuer: /CN=C451166D49539649063AF8F493F51CB1ACE0AB09
Certificate serial: 2D199D03157A0FDB038D29640E16E39440E8EDF2
Authority key identifier: C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136322e302f32342d3234203d3e203137373639.roa
Signing time: Fri 27 Sep 2024 06:01:28 +0000
ROA not before: Fri 27 Sep 2024 05:56:28 +0000
ROA not after: Fri 26 Sep 2025 06:01:28 +0000
asID: 17769
IP address blocks: 202.55.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:19:9d:03:15:7a:0f:db:03:8d:29:64:0e:16:e3:94:40:e8:ed:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C451166D49539649063AF8F493F51CB1ACE0AB09
Validity
Not Before: Sep 27 05:56:28 2024 GMT
Not After : Sep 26 06:01:28 2025 GMT
Subject: CN=6B1E47CE971E30C40C4CFF6FD4C137D65C49668B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:73:dd:b7:ae:5e:3c:c0:b1:ea:8a:20:f7:68:
49:ac:06:6f:94:78:0c:94:70:22:15:ec:76:46:96:
7d:68:f2:25:dc:bd:dd:0f:72:ae:96:d2:0a:75:e2:
49:aa:7d:31:74:b9:bb:00:9b:fa:44:7a:d8:40:54:
08:42:51:f5:cf:6d:03:81:cf:8f:04:13:9a:74:98:
ad:3f:c5:17:53:db:c3:7a:73:cf:12:bd:35:e0:19:
b1:53:e4:d2:e2:06:83:b4:b9:53:1c:be:eb:ea:da:
3e:0f:ca:b6:08:10:9b:65:8d:b9:8e:71:c6:a0:42:
6a:06:6c:fc:13:13:f6:15:74:b5:d7:da:e0:26:da:
d4:c6:de:d7:9f:67:9e:e6:d5:69:04:80:eb:9e:4c:
c8:5c:3d:37:b5:34:e9:44:9a:ca:67:d6:fc:19:43:
b3:14:dd:bf:69:89:d7:af:44:8f:bc:34:9e:90:2e:
01:b4:31:21:8a:d8:f4:43:86:ba:6b:59:ed:8f:ab:
f5:f1:30:73:0b:a6:63:a8:5c:d1:81:b9:fa:53:28:
85:89:e9:67:7b:ac:18:d4:9b:3a:e6:11:5c:6f:31:
7e:b2:ce:29:9e:aa:4a:89:ef:85:27:32:a1:9b:61:
1f:b2:d6:a6:6a:f8:36:8b:58:28:ef:3c:40:94:c9:
c9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1E:47:CE:97:1E:30:C4:0C:4C:FF:6F:D4:C1:37:D6:5C:49:66:8B
X509v3 Authority Key Identifier:
keyid:C4:51:16:6D:49:53:96:49:06:3A:F8:F4:93:F5:1C:B1:AC:E0:AB:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/C451166D49539649063AF8F493F51CB1ACE0AB09.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C451166D49539649063AF8F493F51CB1ACE0AB09.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/130dc140-6cd4-4a59-b25c-3a141851c9ec/0/3230322e35352e3136322e302f32342d3234203d3e203137373639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.55.162.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:df:97:40:c7:0e:3f:8e:90:0a:13:08:63:87:d9:ea:61:9a:
a8:86:63:44:a6:00:a6:3a:ab:cc:c5:d1:21:b2:01:87:50:92:
c0:03:b1:42:46:00:a9:c0:a1:31:32:51:76:1e:81:26:56:bd:
29:3b:d6:de:39:25:ef:87:31:d9:c8:0a:ad:ec:eb:1f:1f:74:
2e:8d:12:01:c4:98:ac:13:aa:f5:b4:3e:8b:52:ec:61:d4:ca:
5c:74:fe:d1:2f:d6:c2:66:c7:f7:03:d9:0c:8a:25:76:6e:d5:
cf:8e:3d:4f:24:24:af:96:37:eb:b8:4b:03:ad:fa:2a:19:9a:
be:05:2f:e3:26:a1:23:01:06:97:be:9d:1e:aa:77:44:05:d5:
d7:d5:d9:73:c3:65:ab:fe:f5:2a:4d:fd:eb:d9:84:47:d8:cd:
ef:49:fc:19:f1:92:0b:f1:7d:1a:4b:5d:98:93:27:20:47:17:
42:26:4f:8f:25:a9:f2:de:cd:c6:28:f7:83:05:da:b5:da:c1:
52:b9:a7:a7:13:6a:ec:10:5a:87:ea:e5:5f:b5:f9:17:aa:82:
08:e4:e1:85:b4:45:b1:b8:8e:66:5f:93:e5:92:ed:e9:f3:90:
d1:9d:4e:7a:4f:a8:21:bb:cc:1e:eb:01:9e:46:bf:dd:bb:7f:
e4:0a:75:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:09 2025 by rpki-client