Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31302e302f32342d3234203d3e203338313530.roa
File: 3230322e39312e31302e302f32342d3234203d3e203338313530.roa (raw, json)
Hash identifier: DLxQo0gdb9JVW6MFJYL4swYph24mURb/ELIJzCfK7Kk=
Subject key identifier: 42:C1:45:DB:A3:6A:AB:28:8D:2A:E8:DE:BD:A6:F8:C6:D5:3B:D7:A9
Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Certificate serial: 239BE929239C9B958A3AE2E26813C90CDE25CD47
Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31302e302f32342d3234203d3e203338313530.roa
Signing time: Mon 01 Jul 2024 01:03:29 +0000
ROA not before: Mon 01 Jul 2024 00:58:29 +0000
ROA not after: Mon 30 Jun 2025 01:03:29 +0000
asID: 38150
IP address blocks: 202.91.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:9b:e9:29:23:9c:9b:95:8a:3a:e2:e2:68:13:c9:0c:de:25:cd:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9
Validity
Not Before: Jul 1 00:58:29 2024 GMT
Not After : Jun 30 01:03:29 2025 GMT
Subject: CN=42C145DBA36AAB288D2AE8DEBDA6F8C6D53BD7A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1e:d2:24:45:44:ef:1c:e2:fd:85:a1:aa:17:
8d:52:69:45:57:71:92:46:d8:e9:5c:11:c4:97:41:
68:e6:08:8f:98:4c:2d:4f:53:42:b6:ae:25:99:ee:
14:34:bb:af:bd:2d:01:e0:4f:0c:6a:50:23:8d:0b:
fb:92:bd:40:e2:18:5c:c2:98:d2:52:6b:f2:ad:56:
9a:50:68:4f:20:5e:bd:c2:6e:a0:e4:bd:18:af:84:
f9:92:0b:72:ab:fa:bd:21:d3:98:7b:dc:f8:7c:41:
ac:10:c8:1b:a6:52:9b:d5:2d:57:af:d3:2d:6b:63:
db:51:29:9d:8c:2c:4f:46:d8:24:42:b5:8d:2c:a1:
e3:64:52:9d:1e:7f:3e:6d:77:9e:e3:18:f7:0a:23:
fd:40:fc:07:79:91:6f:f1:67:ec:bc:54:1f:c8:53:
b1:05:ef:42:5d:f7:06:57:40:66:47:30:11:c2:f6:
0e:a1:0c:b9:d0:6b:3d:9f:51:9b:03:34:40:21:0e:
c9:94:d2:c5:f3:e8:40:01:ba:df:60:bc:96:ca:6d:
f8:09:db:65:67:e1:f6:6c:b0:8e:a4:fa:31:04:97:
1e:db:96:66:03:ac:07:54:52:23:c3:3d:6e:7a:d8:
64:02:88:b5:80:b8:0b:9f:05:1b:48:b1:cb:b7:a9:
e3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C1:45:DB:A3:6A:AB:28:8D:2A:E8:DE:BD:A6:F8:C6:D5:3B:D7:A9
X509v3 Authority Key Identifier:
keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/3230322e39312e31302e302f32342d3234203d3e203338313530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.91.10.0/24
Signature Algorithm: sha256WithRSAEncryption
72:ed:38:fb:35:96:fa:38:29:e2:d7:6d:f0:b8:50:d0:65:4c:
9d:57:cb:d6:8c:8e:72:8c:31:66:ed:2c:5f:49:d0:a1:dc:82:
f0:aa:3b:f9:58:55:19:4f:e6:7d:bb:68:b7:d0:05:60:65:e5:
06:d8:db:4f:6e:70:84:71:5f:4b:1b:40:46:78:cc:af:50:8a:
df:9b:7d:f3:93:08:5c:f1:0a:d2:9b:6b:e2:72:a5:e8:e6:36:
7c:8b:10:7d:55:e4:33:ef:31:77:1f:ee:c5:00:43:5c:1d:df:
c7:58:6c:b9:ad:3e:d5:a4:05:5a:ff:f1:1c:25:54:0c:41:e2:
db:ac:fd:ea:f6:90:f8:f4:c5:11:46:75:12:7f:a1:64:9c:56:
6c:1b:d3:f8:09:2a:5c:ff:89:51:99:4c:4a:ad:7e:98:c2:38:
19:8e:46:92:6d:57:d6:22:81:e9:1d:d8:a4:66:75:8d:fa:a1:
b4:d1:94:4c:1e:8f:1f:df:89:1a:9e:c8:2f:00:9c:2c:08:fa:
72:34:a2:67:1d:71:85:32:28:74:3f:8b:78:dd:e5:b6:48:8d:
2a:e1:6c:54:0b:a7:ee:29:7f:a8:00:af:0d:0f:b2:bb:0d:c6:
9e:f0:6d:b9:62:e3:7f:87:b1:a8:e8:8e:2d:62:2a:b0:47:40:
3a:dd:e6:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:55 2025 by rpki-client