Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa
File: 3230322e36352e3132312e302f32342d3234203d3e203233393531.roa (raw, json)
Hash identifier: unueG7P54wUmQZvOUKrhpSAH4gB/UymG78WRnuwkjpw=
Subject key identifier: FA:11:7E:68:DE:F3:40:D0:29:D5:3C:75:6F:60:A4:27:FF:53:11:BA
Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F
Certificate serial: 2CC084E1410B4AC62254AFE27A4515139CF01A70
Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa
Signing time: Fri 02 Aug 2024 02:15:20 +0000
ROA not before: Fri 02 Aug 2024 02:10:20 +0000
ROA not after: Fri 01 Aug 2025 02:15:20 +0000
asID: 23951
IP address blocks: 202.65.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:c0:84:e1:41:0b:4a:c6:22:54:af:e2:7a:45:15:13:9c:f0:1a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F
Validity
Not Before: Aug 2 02:10:20 2024 GMT
Not After : Aug 1 02:15:20 2025 GMT
Subject: CN=FA117E68DEF340D029D53C756F60A427FF5311BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5d:06:b7:4c:2a:83:89:5f:c2:a4:5c:d2:4b:
e0:e3:cd:8d:94:dc:e4:68:65:3c:7d:56:86:68:ae:
c5:46:6a:7e:00:f7:21:d3:4a:fa:58:d0:71:70:7a:
79:01:5b:cf:da:97:c9:06:5e:2c:22:2b:db:cf:68:
5c:20:8c:70:ab:bd:5b:39:62:30:04:19:87:ef:6e:
32:51:bb:95:c5:64:85:8b:74:82:0a:4d:27:35:3d:
c0:1c:f2:85:c1:7e:c9:f6:e2:81:2e:07:1d:64:b9:
9e:ae:2b:5e:6f:0d:41:7f:31:18:5f:a7:a7:d9:b4:
6f:74:ab:c2:46:52:13:1c:3e:da:5d:c5:cc:83:18:
45:27:1d:4e:89:26:fa:ea:ad:7a:48:c8:4c:4d:e3:
f3:c3:47:41:2a:fc:a5:dd:1f:be:fc:70:59:df:41:
d4:6a:a2:bf:d4:6a:ca:20:be:4a:42:6e:72:d6:d1:
f9:7e:9a:20:16:90:9c:79:41:c0:88:be:78:79:c7:
ff:ab:db:e8:5f:4d:b8:a4:ab:22:69:6e:d1:9a:54:
08:0d:86:74:20:da:eb:8e:78:1f:9e:28:a0:06:ec:
a1:d4:52:b1:d3:a4:3f:cc:a9:da:37:8e:1c:67:ee:
fb:7d:65:3b:f0:a5:6a:5a:15:6e:9a:b6:3c:15:95:
ab:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:11:7E:68:DE:F3:40:D0:29:D5:3C:75:6F:60:A4:27:FF:53:11:BA
X509v3 Authority Key Identifier:
keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132312e302f32342d3234203d3e203233393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.65.121.0/24
Signature Algorithm: sha256WithRSAEncryption
65:5b:a8:dc:81:58:28:c7:3c:31:03:67:4c:ba:8d:10:38:77:
ff:70:8c:e1:c0:49:08:24:81:da:c6:b1:99:30:7f:de:ee:ea:
3e:8e:23:5e:54:1f:69:6a:c5:06:c7:0c:db:00:af:9a:aa:10:
42:b8:d1:69:bd:45:e0:9d:59:86:cb:c0:e7:5e:cc:ca:5e:81:
42:99:c9:68:94:dd:60:cd:68:68:15:0d:b4:86:dc:e8:50:2f:
6f:eb:a4:ea:e2:2f:a4:3c:24:fc:5e:c7:13:00:02:72:85:57:
0a:bc:65:9b:0d:e6:7d:d9:25:a5:ee:50:46:65:9a:65:a6:88:
d2:5e:d3:d3:89:e9:f1:be:88:d2:b0:35:f8:bd:ed:ad:32:b4:
ea:5d:e7:61:11:2a:13:43:f2:8c:33:72:30:cb:fd:ec:80:42:
6e:27:9e:f5:73:84:2d:5f:52:2e:d2:ed:78:88:0e:15:c1:08:
02:fe:58:50:7b:68:d1:f3:df:b7:cf:c5:75:be:eb:9d:95:c9:
c5:b3:62:5e:3a:c5:57:8b:08:9a:e5:70:54:6c:0a:7f:ba:41:
0b:1e:fe:25:2e:1a:43:6b:91:cf:6d:ee:be:1b:9d:39:a6:89:
0b:9a:89:bd:51:fb:b5:d8:b9:92:67:7d:c0:58:d7:09:dd:ac:
2e:e8:b9:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:27:08 2025 by rpki-client