Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e362e302f32342d3234203d3e203234323030.roa
File: 3230322e3133332e362e302f32342d3234203d3e203234323030.roa (raw, json)
Hash identifier: PwrwjwU7TfjmAzlVIhNNq7JmiMiE2zPrnJS6Vjw4fpA=
Subject key identifier: 61:93:8B:8F:36:D9:CE:5F:45:78:0E:C8:E1:DE:8E:49:FE:00:EA:CA
Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40
Certificate serial: 634F49F5227FEE252CF84AC35FF82282B651207B
Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e362e302f32342d3234203d3e203234323030.roa
Signing time: Mon 23 Dec 2024 08:35:55 +0000
ROA not before: Mon 23 Dec 2024 08:30:55 +0000
ROA not after: Mon 22 Dec 2025 08:35:55 +0000
asID: 24200
IP address blocks: 202.133.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:4f:49:f5:22:7f:ee:25:2c:f8:4a:c3:5f:f8:22:82:b6:51:20:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40
Validity
Not Before: Dec 23 08:30:55 2024 GMT
Not After : Dec 22 08:35:55 2025 GMT
Subject: CN=61938B8F36D9CE5F45780EC8E1DE8E49FE00EACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7b:60:55:ca:cf:36:60:6e:74:23:71:d6:f0:
fa:a1:0a:79:a9:5a:67:3f:45:cd:3d:98:db:b8:33:
50:9a:a7:e5:a6:d3:d4:14:8d:c9:16:e9:19:f4:3a:
8b:2e:3f:4b:20:b3:47:e6:f0:a1:37:50:c5:f3:0d:
5f:fa:76:f5:b0:45:da:c0:fe:a5:f5:07:1d:f2:b9:
e8:88:6e:bf:60:1d:ee:0b:6c:de:c5:e2:f3:7e:e1:
54:44:3d:b8:a4:c3:3a:fb:d5:4a:4e:6e:84:65:e8:
f9:eb:fb:b1:fb:db:5e:bd:07:37:4a:d2:82:e9:52:
0d:ff:13:a8:ae:3c:f6:06:9b:92:fd:81:21:e1:c1:
b2:69:d6:46:95:e7:b5:f9:92:a3:ac:e8:b7:1a:a2:
c6:a2:9f:69:c8:8f:04:31:fa:a8:0e:cf:1b:d4:90:
d6:61:83:d9:eb:27:f2:d0:17:38:eb:f9:b9:9f:48:
92:16:ad:d9:83:24:87:2e:8e:fe:d3:45:9c:32:64:
bc:2c:14:de:a7:42:e0:1c:c7:3a:68:12:bd:0c:db:
69:75:c3:70:c3:90:34:63:07:54:0b:e5:20:9b:e3:
f7:1c:33:10:11:c7:96:b6:41:1f:03:dd:cb:52:80:
ae:9c:89:26:f8:4c:be:dd:3b:a5:f8:ed:fc:65:0a:
e2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:93:8B:8F:36:D9:CE:5F:45:78:0E:C8:E1:DE:8E:49:FE:00:EA:CA
X509v3 Authority Key Identifier:
keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e362e302f32342d3234203d3e203234323030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.133.6.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:ab:b4:14:27:22:55:2a:5e:34:fc:57:9f:c3:dc:34:2e:35:
db:1d:c8:e2:0e:78:14:31:2d:b9:b4:6c:19:d7:d1:70:12:0b:
b9:a9:b6:3a:34:da:f6:5c:c3:fa:95:8b:4a:a0:9d:9a:28:d9:
42:cb:70:5a:85:08:eb:1f:71:83:dc:83:0e:44:8a:1b:09:72:
7c:27:7e:ea:2b:5c:00:b0:3c:57:29:93:f4:3d:45:88:6a:27:
a5:96:35:7d:08:08:59:94:af:10:1b:80:6f:85:79:35:b4:43:
51:6c:2b:55:68:9b:08:96:74:d6:ae:b1:ff:e0:d4:0b:f7:e7:
1c:d9:18:b7:7c:36:63:83:4e:aa:51:ae:f5:3f:d1:a8:e1:f7:
6a:44:81:59:8b:20:a1:15:5b:71:c9:c2:8b:68:49:89:08:ed:
13:5c:46:9c:68:c1:16:0c:2c:fb:ca:9d:ca:05:c8:e0:9d:53:
e9:7c:42:bd:3a:37:34:91:bf:17:d4:ed:f4:79:79:ea:1d:c4:
2a:22:cd:95:b5:18:cc:de:6e:d4:83:d7:68:32:f1:7c:a0:d4:
08:61:35:ab:f5:74:b3:19:50:37:6b:64:17:5a:4c:0e:bc:21:
27:db:32:ed:0f:3c:3e:1d:32:e5:4e:a3:b2:27:f8:17:8d:35:
a0:2c:a0:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:05:02 2025 by rpki-client