Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa
File: 3230322e35392e3136302e302f32342d3234203d3e203137373237.roa (raw, json)
Hash identifier: cw9lflPoK3QxEJdWCjSKERvCKNspMXtp+cQ0zq5V62I=
Subject key identifier: CF:C7:E4:22:98:E4:08:59:B9:BB:0F:E4:9A:5E:A7:7F:8D:F7:0D:54
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 618961CC115217E10ABBD481F52FE73B9271B988
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa
Signing time: Sun 29 Sep 2024 09:00:01 +0000
ROA not before: Sun 29 Sep 2024 08:55:01 +0000
ROA not after: Sun 28 Sep 2025 09:00:01 +0000
asID: 17727
IP address blocks: 202.59.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:89:61:cc:11:52:17:e1:0a:bb:d4:81:f5:2f:e7:3b:92:71:b9:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Sep 29 08:55:01 2024 GMT
Not After : Sep 28 09:00:01 2025 GMT
Subject: CN=CFC7E42298E40859B9BB0FE49A5EA77F8DF70D54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ca:25:5b:88:25:d3:35:05:ec:13:24:15:a3:
31:df:d7:95:8d:15:aa:a8:9e:a9:19:f8:f2:80:fd:
48:ef:8d:68:75:5c:da:d2:f1:56:e5:9a:6f:3c:44:
c6:39:62:d9:94:d4:0a:69:22:10:33:62:51:60:ec:
33:91:63:a4:35:5d:34:89:27:87:3f:bf:3b:07:cd:
28:7d:d8:c1:1e:75:31:68:a4:f1:36:3e:9e:17:bf:
6c:27:d1:c7:4b:4a:c5:25:b9:2d:7d:98:6b:50:fc:
0b:a0:16:28:0a:6b:4d:fa:c2:b8:40:67:d5:bc:50:
c7:0a:8c:ef:60:dd:33:91:2e:bf:40:a8:3f:69:aa:
f6:53:20:fc:d2:74:2a:1f:ec:b9:ac:ec:10:fe:c9:
41:82:90:77:1f:92:7a:e8:31:a1:7d:5c:fe:1c:02:
c3:6b:5d:43:60:6b:64:d0:cf:b1:44:7c:b1:0f:1a:
66:57:23:5d:d4:a9:a4:7f:99:9f:45:2a:f1:63:0c:
f9:7e:66:a9:ef:e6:5a:32:14:44:83:07:b0:86:80:
ae:d0:2b:3e:0e:a0:3d:c6:c9:05:12:27:4d:55:2d:
09:42:7d:90:ff:32:96:b6:49:23:15:ba:52:86:bb:
fe:fc:0c:88:6a:b2:db:39:5e:2f:00:8e:1c:e7:96:
9d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:C7:E4:22:98:E4:08:59:B9:BB:0F:E4:9A:5E:A7:7F:8D:F7:0D:54
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3136302e302f32342d3234203d3e203137373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.59.160.0/24
Signature Algorithm: sha256WithRSAEncryption
99:5a:fe:c7:ed:1d:2b:3e:c2:83:3a:75:9e:5d:08:3c:94:10:
c5:ca:ae:70:f2:b1:df:dc:60:1a:f8:e1:4c:a4:89:b1:f9:b3:
ce:b3:d4:7c:27:47:3a:6a:fd:e4:2c:e6:cb:1c:db:f5:e3:18:
23:4d:b9:e4:12:7f:88:7c:ac:33:b7:50:19:03:ad:77:58:13:
15:fa:83:aa:92:ba:a2:db:bb:c8:6e:f0:e7:e8:58:0a:a3:ea:
61:43:fd:c6:c5:43:b7:e6:d6:bd:c9:d0:44:2e:9b:a9:be:0f:
1d:2c:3f:de:78:83:bb:4e:f2:fd:5c:68:c4:8d:30:fe:b4:da:
e7:8b:3e:c6:da:7a:25:37:9f:d5:63:32:6d:c7:54:27:ff:18:
44:71:79:c2:62:68:02:6e:af:e5:53:de:d8:f8:55:21:6a:20:
ac:09:6b:f0:f0:f0:68:b7:91:eb:24:65:f6:f2:d7:ff:74:e2:
80:c4:70:88:35:af:b2:75:ba:ae:12:f7:8d:21:b8:51:1e:73:
f0:72:da:14:8f:02:2e:e4:e3:16:2f:c8:f1:00:95:07:3a:13:
ff:79:89:ad:db:b0:f0:2f:72:ec:cf:c7:7f:45:a8:77:cf:f6:
43:4e:fb:d6:ac:a2:22:e1:3c:2b:d1:d0:6c:de:07:7d:33:e0:
29:dd:09:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:47:51 2025 by rpki-client