Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa
File: 3230322e35392e3137342e302f32342d3234203d3e203137373237.roa (raw, json)
Hash identifier: yV6n1vN7yYjPUofsiT2wryWxOVpvGT9HGb5GVY2o+PM=
Subject key identifier: A2:57:88:0D:25:7C:80:74:2B:7A:8D:E6:A6:EF:87:CE:45:E0:7E:A0
Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Certificate serial: 78DE7AFC8E9F5C17B0048BF7FEBB58C531F4827C
Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa
Signing time: Sun 29 Sep 2024 09:00:00 +0000
ROA not before: Sun 29 Sep 2024 08:55:00 +0000
ROA not after: Sun 28 Sep 2025 09:00:00 +0000
asID: 17727
IP address blocks: 202.59.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:de:7a:fc:8e:9f:5c:17:b0:04:8b:f7:fe:bb:58:c5:31:f4:82:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511
Validity
Not Before: Sep 29 08:55:00 2024 GMT
Not After : Sep 28 09:00:00 2025 GMT
Subject: CN=A257880D257C80742B7A8DE6A6EF87CE45E07EA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:13:10:92:55:55:2f:b5:e2:d2:73:d0:5e:ef:
55:b3:d9:27:c5:6b:79:f1:e7:f1:1b:67:3b:c7:d5:
a5:5b:68:c8:03:4f:07:f3:fb:3a:ee:91:13:4c:d3:
c1:84:c9:79:70:aa:6c:11:87:e5:52:c4:bd:7c:51:
ce:5b:3a:5c:e8:ab:19:a8:23:e9:a0:36:d8:f9:ef:
48:e5:c9:a5:4e:a7:d9:87:d0:08:ac:af:84:55:02:
c9:2b:7c:31:34:9d:8d:5a:97:36:1a:ab:e4:44:14:
d7:ce:a4:cc:6d:99:d9:59:cc:45:0a:91:3c:c7:63:
c9:56:cd:42:cc:12:cc:34:2c:96:fd:eb:0f:f7:a7:
3e:76:bc:dd:97:08:17:be:8f:33:f3:b7:7f:5a:eb:
bd:f0:e0:c6:9e:ce:91:f5:ef:c6:1c:36:c5:ec:cc:
ac:eb:19:69:f8:89:17:58:02:1b:8d:ec:a2:fb:92:
3d:f5:9f:90:97:1a:15:b1:1c:7d:0b:46:8b:53:05:
c5:4d:61:5e:85:1e:fe:1f:8d:6f:e8:60:0b:8d:ec:
77:6e:7f:f1:90:7c:e8:4a:d8:bb:29:e6:26:d0:fb:
f2:0e:62:e2:99:77:0d:9e:6f:25:88:fd:78:0c:be:
c6:38:83:aa:32:f4:0e:c6:35:dd:14:50:72:ac:32:
df:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:57:88:0D:25:7C:80:74:2B:7A:8D:E6:A6:EF:87:CE:45:E0:7E:A0
X509v3 Authority Key Identifier:
keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/3230322e35392e3137342e302f32342d3234203d3e203137373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.59.174.0/24
Signature Algorithm: sha256WithRSAEncryption
76:18:10:c9:70:c8:45:78:f7:72:1f:f1:87:0a:15:ec:e6:a2:
e7:82:ae:6d:e5:5c:79:0d:dc:f1:d3:96:ff:9c:d2:33:7d:14:
c2:5f:80:11:e5:d0:66:0e:c9:8b:7f:59:66:94:1d:ca:4e:ed:
be:20:ca:dd:c2:dc:12:5e:47:ee:b0:fd:42:2d:ee:f7:a2:e7:
df:89:33:f0:98:45:47:92:f4:00:67:3d:e7:6f:37:b5:c6:f6:
f7:a7:da:2d:66:e7:71:96:cb:b6:72:86:eb:b4:23:da:f1:9f:
df:f1:33:ad:82:16:20:58:34:4c:bc:9c:61:49:34:0f:af:f1:
ce:c9:0b:ec:9c:4b:7f:06:9d:a9:a2:35:ee:3d:cc:ee:98:01:
be:0b:04:19:36:53:ce:7a:dd:c7:3a:97:89:68:63:39:02:7c:
24:0c:43:b1:df:f4:53:74:a0:c0:a9:b8:26:52:a9:06:b4:fd:
4b:41:33:cd:cd:69:3b:f6:e3:d4:0c:d3:84:90:5a:1f:5b:5f:
7f:f0:de:d9:58:ec:12:25:d4:fa:63:d7:16:8b:dd:eb:78:13:
89:0d:df:fd:f0:1a:cb:93:59:13:13:cb:36:9a:ca:5b:0a:7a:
4d:3e:dd:db:90:09:4e:17:49:72:de:c0:08:b7:da:fd:10:75:
bd:6c:4a:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:40 2025 by rpki-client