Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa
File: 3230322e312e3233362e302f32342d3234203d3e203435373233.roa (raw, json)
Hash identifier: PjOq+FNFeb3w0yAtv/+Tz1G1o/STxOGd/kpIjtd+xeA=
Subject key identifier: E6:63:EF:2F:24:B3:6F:35:B9:B0:1F:1B:37:2E:77:0B:D7:BA:92:A4
Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25
Certificate serial: 7BE80BD74802ED1CD0C3CF9B4930001CF8533267
Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa
Signing time: Fri 27 Dec 2024 04:00:00 +0000
ROA not before: Fri 27 Dec 2024 03:55:00 +0000
ROA not after: Fri 26 Dec 2025 04:00:00 +0000
asID: 45723
IP address blocks: 202.1.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:e8:0b:d7:48:02:ed:1c:d0:c3:cf:9b:49:30:00:1c:f8:53:32:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25
Validity
Not Before: Dec 27 03:55:00 2024 GMT
Not After : Dec 26 04:00:00 2025 GMT
Subject: CN=E663EF2F24B36F35B9B01F1B372E770BD7BA92A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e6:42:d7:e4:ba:03:f5:55:e7:b0:fb:ac:15:
4a:3f:f0:70:8a:eb:db:9f:57:23:55:ee:39:a0:01:
78:0c:f9:ea:64:bc:73:30:7a:a4:ec:10:c0:ae:7b:
7f:89:29:b6:6f:30:de:ad:90:b2:ed:23:3a:f7:69:
1c:a4:55:d6:20:fa:aa:f9:23:40:75:cc:3a:1b:96:
c8:58:8b:95:b7:50:af:91:3e:ec:a7:a1:c2:9b:22:
d8:9a:63:42:9e:d5:dc:f5:9b:69:db:7f:0a:12:90:
4b:0a:0c:0e:27:12:be:ee:0b:6c:b2:d2:88:6e:3c:
c0:fa:5e:78:28:79:76:48:64:53:b9:c0:04:eb:ba:
96:28:6a:92:92:41:b2:79:73:10:db:98:5c:d0:8a:
3d:73:7b:82:dd:45:ae:6e:49:84:9b:49:5d:e7:c9:
13:9c:a5:6e:bc:a2:81:75:0f:ec:1c:94:ce:28:29:
1d:22:0e:13:f2:ac:cc:8b:11:82:be:f9:b1:df:42:
d1:57:df:a2:3e:59:07:59:26:1f:69:f4:f0:8f:01:
c8:b4:ad:c5:05:b7:38:4b:2a:50:96:39:99:ab:f5:
4e:c3:e2:67:5f:69:b6:f8:89:31:44:ac:6e:a1:8b:
af:8a:15:b2:be:41:d9:f6:b7:62:42:d2:a0:f2:01:
d8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:63:EF:2F:24:B3:6F:35:B9:B0:1F:1B:37:2E:77:0B:D7:BA:92:A4
X509v3 Authority Key Identifier:
keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.1.236.0/24
Signature Algorithm: sha256WithRSAEncryption
50:41:4c:8b:04:4b:c3:ae:eb:75:f2:cc:a6:66:4a:42:67:89:
29:cd:54:75:d6:be:f6:ac:80:62:57:0d:8f:0a:5f:7d:07:71:
15:bd:43:32:b0:58:7a:f6:aa:b4:c1:51:78:61:b8:b8:5f:bf:
4c:c2:3a:58:52:ec:bb:a4:cb:0d:8e:ed:5b:1c:31:b1:8b:b5:
09:a7:6b:b3:e6:6f:04:39:ef:a4:39:24:c3:d4:f4:65:dd:e8:
24:7c:be:25:56:80:1c:0d:20:60:ba:e3:3d:06:fa:69:63:db:
8f:12:03:d0:a0:1a:c7:3c:37:29:ef:f2:1a:14:16:07:d0:bc:
f2:17:d9:03:7a:c9:cf:17:13:f7:8b:58:d8:e2:a7:53:79:3c:
0e:97:04:7e:e1:6a:45:71:a5:bb:c6:3c:0e:c2:a8:88:0d:9b:
e5:4c:c5:ad:32:66:75:83:c0:1c:03:7e:a4:80:d9:92:29:2c:
35:da:56:5d:7b:c7:62:f0:f6:41:db:9a:5a:16:89:a3:3c:c2:
84:e5:91:4e:18:0e:f0:6b:e7:60:ce:21:c5:75:a3:ba:dc:e9:
a6:dd:e5:1a:28:d1:d9:28:d2:27:57:75:e1:a9:b5:3f:8f:c4:
82:32:24:8c:98:eb:da:96:da:3b:1c:44:b0:7b:3e:69:ea:fd:
7d:72:6d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:25:27 2025 by rpki-client