Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa
File: 3230322e36352e3132302e302f32322d3233203d3e203233393531.roa (raw, json)
Hash identifier: mwYMKgumoG9KUXW9CmbB5xkKPC0iVTbXFYBRWL88eZY=
Subject key identifier: C5:C4:8D:EE:68:71:A2:B7:5F:B7:A0:DE:F3:1B:EA:54:7B:1D:77:70
Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F
Certificate serial: 7749566A909D04BA224EEB2E811F9F19557892D8
Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa
Signing time: Fri 02 Aug 2024 02:14:04 +0000
ROA not before: Fri 02 Aug 2024 02:09:04 +0000
ROA not after: Fri 01 Aug 2025 02:14:04 +0000
asID: 23951
IP address blocks: 202.65.120.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:49:56:6a:90:9d:04:ba:22:4e:eb:2e:81:1f:9f:19:55:78:92:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F
Validity
Not Before: Aug 2 02:09:04 2024 GMT
Not After : Aug 1 02:14:04 2025 GMT
Subject: CN=C5C48DEE6871A2B75FB7A0DEF31BEA547B1D7770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:ed:0f:00:d2:11:69:4e:34:df:a5:04:0b:
7b:24:69:14:26:be:bd:1b:16:63:f3:82:c8:73:2d:
44:7e:88:27:ee:95:9f:3a:88:7b:cd:2d:f1:0f:4e:
a5:98:ec:05:2d:5e:e4:50:9d:ad:8a:79:d1:99:cf:
3b:c7:0e:2b:f3:b1:dc:d7:4c:8d:cb:d2:bc:9c:69:
17:39:23:7d:82:ea:70:cf:47:f2:3a:d4:69:7f:27:
9a:aa:a6:53:02:48:6a:a9:55:4a:33:17:bf:17:05:
d6:cd:39:53:cd:71:59:db:83:ad:61:3e:87:57:ee:
18:d4:a7:68:5d:b2:91:bb:a8:e3:75:91:96:2b:cf:
9c:fd:a8:5e:d1:da:76:44:71:dc:db:33:7b:dd:2c:
c2:55:ac:c1:f2:42:6f:30:1b:1e:fa:28:ca:3a:a7:
29:1e:43:04:8b:e3:fc:4b:de:b2:94:55:27:1a:44:
c1:24:89:06:d0:ae:c1:a1:98:d4:fe:6a:25:90:c3:
89:d2:56:1b:91:c8:35:f6:17:91:e1:d2:7a:4e:f3:
39:05:c7:0c:64:c4:78:91:13:24:1a:60:3c:8d:04:
0a:d3:71:96:3c:20:33:90:27:18:79:64:b9:c7:fa:
b1:b8:2f:04:b5:65:9b:a1:99:fc:d8:c7:62:d2:ad:
e7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C4:8D:EE:68:71:A2:B7:5F:B7:A0:DE:F3:1B:EA:54:7B:1D:77:70
X509v3 Authority Key Identifier:
keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132302e302f32322d3233203d3e203233393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.65.120.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:ad:c1:51:d7:c8:eb:ab:56:59:87:8b:38:eb:5c:06:fa:86:
8b:20:38:f2:6f:ba:0b:ed:61:54:9f:47:ae:5a:b6:52:d9:d1:
e9:5c:53:66:0e:dc:6f:79:4e:6c:3a:32:5f:31:4a:e2:57:63:
f4:fd:e3:9e:06:cb:44:3c:74:b5:aa:3c:a0:c0:cd:9e:ee:93:
7d:dd:96:ae:98:10:48:6f:48:50:05:b5:6d:33:af:be:ea:85:
0e:8e:a6:0f:5b:86:43:99:79:51:28:df:e3:f8:8a:06:0a:67:
96:9e:83:ac:f6:17:88:88:89:d1:a5:8c:01:09:73:38:39:ef:
15:f2:23:f0:22:0f:84:fd:5d:4f:02:5b:35:57:7d:76:2c:f8:
81:8a:ee:df:12:7d:08:58:ee:1b:3f:9d:90:02:d9:d2:64:7f:
22:0a:81:29:84:6f:f6:02:39:60:da:0b:94:3e:48:6e:bd:9c:
46:e5:19:52:44:64:6f:e0:c6:c0:dd:b5:66:3b:90:c4:6e:03:
01:09:bc:2d:48:e7:a6:20:57:ad:ce:79:89:47:4d:32:e0:f1:
94:9f:2f:6b:0d:11:42:c2:33:07:33:0e:8a:57:d4:66:05:1d:
f9:a5:d4:0d:fc:cb:fa:69:80:af:d7:78:10:8d:c3:df:5b:a6:
68:1d:f7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:19:57 2025 by rpki-client