Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34352e302f32342d3234203d3e203538343837.roa
File: 3230322e31302e34352e302f32342d3234203d3e203538343837.roa (raw, json)
Hash identifier: hnTOURzzaJFePxETwo6KOPuWh1c2mWrXiDyNegk+2Rk=
Subject key identifier: AA:93:7C:ED:82:15:BC:A2:A1:BF:41:05:C4:70:7C:39:87:B8:93:FB
Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E
Certificate serial: 29D7AB97DAD9AF89CE7F19A35196E721B07E6920
Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34352e302f32342d3234203d3e203538343837.roa
Signing time: Thu 13 Mar 2025 11:02:23 +0000
ROA not before: Thu 13 Mar 2025 10:57:23 +0000
ROA not after: Thu 12 Mar 2026 11:02:23 +0000
asID: 58487
IP address blocks: 202.10.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:d7:ab:97:da:d9:af:89:ce:7f:19:a3:51:96:e7:21:b0:7e:69:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E
Validity
Not Before: Mar 13 10:57:23 2025 GMT
Not After : Mar 12 11:02:23 2026 GMT
Subject: CN=AA937CED8215BCA2A1BF4105C4707C3987B893FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2a:2c:ea:51:63:78:5b:24:4f:46:45:c9:30:
40:cb:d7:7c:29:a7:ac:de:c3:d3:42:c2:e7:33:3a:
52:3f:f9:51:27:ee:4e:fe:4c:f7:86:af:0f:44:29:
cf:42:25:cf:01:b9:53:3d:3f:e7:37:af:5f:92:6a:
e7:d5:e6:f2:ef:57:42:52:08:f4:32:a7:b1:7b:72:
e2:93:91:da:5a:e5:34:c5:f5:4f:d8:37:0b:14:a3:
98:64:0f:3b:35:bc:e0:36:37:79:62:9e:2e:5e:e4:
e4:95:80:db:92:10:ac:5c:8d:a7:d2:8e:4c:10:01:
d8:08:8b:f4:1f:6e:97:6a:69:e6:a4:51:ff:c1:ce:
0f:74:7a:eb:82:5a:b7:90:29:52:c8:86:2c:59:05:
ee:ab:3d:65:3f:14:06:46:90:74:b3:31:34:21:c5:
d0:00:54:78:eb:b8:ac:56:f0:86:9b:4d:c2:2a:bb:
1b:fd:6e:6f:8a:2b:5a:69:bb:8e:58:0a:71:64:b7:
45:75:ff:d9:22:36:64:e5:b1:ad:2d:8e:58:ca:b0:
1d:67:c0:52:d6:4d:0e:e3:e0:b5:1a:75:c5:36:64:
db:8c:6d:92:90:85:bc:23:15:c0:83:42:83:80:6b:
3d:8f:bb:55:12:27:01:a0:90:33:ba:9a:92:f5:e9:
33:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:93:7C:ED:82:15:BC:A2:A1:BF:41:05:C4:70:7C:39:87:B8:93:FB
X509v3 Authority Key Identifier:
keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3230322e31302e34352e302f32342d3234203d3e203538343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.10.45.0/24
Signature Algorithm: sha256WithRSAEncryption
69:f9:ff:62:21:37:f5:47:5b:1e:74:42:d1:65:06:3f:f2:8f:
c8:4a:85:4e:f2:a2:4d:a6:fd:21:c6:f6:d9:2b:ad:7e:1e:8f:
58:ba:86:43:e8:50:cd:d7:9f:85:6b:0a:fe:3a:9a:9d:ac:80:
51:c0:39:69:dd:6c:38:66:99:20:fd:26:2d:33:a5:3b:1d:c4:
e4:e6:d6:a2:ae:f5:fd:c7:93:8c:8c:e8:59:13:32:0b:87:71:
3d:dc:f0:c7:a6:df:aa:37:07:f1:b0:f6:ee:9f:67:9d:5a:7b:
34:28:5a:1d:9a:5b:1c:5d:93:8f:2f:03:98:a3:db:d9:f8:4d:
fe:bb:08:5c:30:ce:6e:eb:9f:1d:87:5c:e2:65:59:1d:71:75:
37:58:6c:83:c1:76:26:3e:75:a7:ee:28:39:9c:c1:a2:5e:bd:
b4:7b:9f:11:50:bf:84:4a:f6:43:65:de:bf:b0:5c:5d:b8:25:
23:8e:64:95:df:1f:14:09:33:d6:e6:95:b2:46:60:9d:3b:b6:
b3:63:66:e0:88:22:e2:96:c0:a7:92:57:f4:a0:de:1a:04:fe:
48:86:3c:76:83:42:30:9c:b0:bc:27:61:41:f2:a1:c4:99:97:
e4:6d:b5:a9:1b:fb:7a:bb:99:d9:7a:cd:01:31:c2:a0:37:03:
4d:8f:9b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:52 2025 by rpki-client