Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa
File: 3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa (raw, json)
Hash identifier: Y4T82wHbpzvGeh1LYj+UuVGIrkEWtMinUzP1PmfzBOY=
Subject key identifier: 67:54:65:8A:B6:AA:96:F8:C9:C0:6B:25:B6:79:0F:7E:5A:E2:09:C2
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 5943A9D5A2FE6D205D769BFE9AD51CCDD1533E54
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa
Signing time: Tue 25 Jun 2024 10:00:01 +0000
ROA not before: Tue 25 Jun 2024 09:55:01 +0000
ROA not after: Tue 24 Jun 2025 10:00:01 +0000
asID: 45725
IP address blocks: 202.150.160.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:43:a9:d5:a2:fe:6d:20:5d:76:9b:fe:9a:d5:1c:cd:d1:53:3e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Jun 25 09:55:01 2024 GMT
Not After : Jun 24 10:00:01 2025 GMT
Subject: CN=6754658AB6AA96F8C9C06B25B6790F7E5AE209C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:bb:6e:0b:54:0c:39:02:2b:cb:d6:24:89:dc:
dc:2b:bd:61:a4:3d:e0:af:87:ae:22:b5:df:98:be:
b9:a4:93:b8:60:20:a2:2b:61:73:70:f4:b1:5a:c7:
d7:26:11:2f:a7:19:cd:bd:ce:69:fe:91:0c:d3:6b:
44:84:98:bc:3a:ea:98:e9:e3:24:b7:ea:2d:d8:96:
89:f4:41:23:e0:0a:46:4a:32:74:c7:5b:49:4b:e6:
4f:ca:3f:e8:9e:11:af:e1:7b:86:23:96:c1:7d:78:
e4:67:ff:94:69:45:51:93:6f:4b:70:e0:06:71:19:
80:a2:2f:75:97:d4:26:af:a1:a1:3d:2c:2f:c0:55:
73:21:5d:2a:91:6c:10:6d:f5:9d:86:45:a1:be:c9:
45:01:86:ac:e5:08:c7:a4:51:51:76:56:1e:91:a2:
8c:65:d1:8e:cc:f1:e0:87:cf:9c:67:67:60:fe:3b:
4d:41:c5:d3:38:be:bd:af:af:8b:7d:5e:57:f1:52:
90:40:d0:92:04:bf:a6:ba:fb:fc:87:db:4d:6d:17:
38:e1:95:79:12:d8:e2:13:64:b1:c6:1f:2d:2a:20:
d5:90:0a:05:a0:c1:9a:3a:5b:00:13:c8:58:bf:70:
c6:79:1b:dc:e5:53:63:24:11:4b:9f:00:0f:0e:b1:
ed:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:54:65:8A:B6:AA:96:F8:C9:C0:6B:25:B6:79:0F:7E:5A:E2:09:C2
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136302e302f32302d3234203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.150.160.0/20
Signature Algorithm: sha256WithRSAEncryption
d1:19:a0:65:af:4e:7a:11:e9:41:f4:a1:39:02:d2:7b:85:c7:
91:dd:e9:1a:9e:4a:69:f7:88:23:f0:c1:e0:05:61:10:db:cb:
62:4e:64:9d:c2:bd:35:d2:80:cc:67:e9:1d:c7:90:ca:26:0f:
d4:b6:02:f0:b0:54:ee:19:6a:8d:d1:77:55:a8:f5:91:6f:0c:
a3:41:de:ab:b1:e7:49:67:a1:e0:3b:17:76:c3:96:8b:9b:94:
44:09:7a:25:0a:4d:d0:09:18:b4:dd:9a:6b:63:d1:56:3a:ea:
6a:e9:19:f6:6e:e1:a1:ce:43:2f:3e:76:d7:b3:6f:ad:14:d2:
c0:e6:73:60:1f:1e:63:0c:e4:0e:9e:6d:a3:56:fb:c6:10:16:
4f:72:36:be:17:0c:83:20:f3:c4:5b:56:81:cc:0a:71:bf:2b:
eb:83:d6:63:3b:0e:a4:24:cb:89:cb:ad:bd:6e:4a:37:53:90:
3e:44:da:3e:fc:c6:8e:ff:b0:11:ef:5f:7e:6e:7f:74:cc:11:
b6:de:53:dc:47:55:de:ca:25:76:f2:32:23:1b:64:a3:6b:ef:
24:0c:34:40:e9:2c:a2:7f:37:2b:cc:c7:d7:48:8b:71:7a:e8:
d8:b0:33:e1:92:f9:39:a2:87:d0:5d:e2:38:f8:3c:4a:0d:87:
d0:81:6b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:54:16 2025 by rpki-client