Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139322e302f32342d3234203d3e203138313533.roa
File: 3230322e37322e3139322e302f32342d3234203d3e203138313533.roa (raw, json)
Hash identifier: fgF07yiTwlq8z0/GIsBiwHeqZ0W/fkpaCFL6OVV/kHY=
Subject key identifier: 1A:B0:C3:12:66:5C:13:79:9A:32:0B:4D:77:60:D0:75:57:35:B2:F7
Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE
Certificate serial: 1F5C1D5CC9C44760B9C2147823EC81706F5C1360
Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139322e302f32342d3234203d3e203138313533.roa
Signing time: Mon 01 Jul 2024 01:03:54 +0000
ROA not before: Mon 01 Jul 2024 00:58:54 +0000
ROA not after: Mon 30 Jun 2025 01:03:54 +0000
asID: 18153
IP address blocks: 202.72.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:5c:1d:5c:c9:c4:47:60:b9:c2:14:78:23:ec:81:70:6f:5c:13:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE
Validity
Not Before: Jul 1 00:58:54 2024 GMT
Not After : Jun 30 01:03:54 2025 GMT
Subject: CN=1AB0C312665C13799A320B4D7760D0755735B2F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d5:7b:8b:98:53:c0:c0:a8:2a:f4:13:15:88:
b0:b8:51:d4:a2:86:fe:3b:27:91:7e:b8:d5:ec:5d:
d5:7f:13:af:26:15:b0:06:f6:32:1c:55:0b:4b:dc:
f5:3b:67:cd:7d:4b:6e:4d:2f:c7:48:5f:50:14:fd:
9e:e9:bf:29:32:4d:01:f7:98:8f:12:9d:cb:30:eb:
44:47:d2:54:ad:e6:5f:b5:87:ef:5e:03:dd:81:97:
7d:36:d0:a1:d7:05:2b:19:a5:b0:eb:e7:b9:83:28:
05:80:c2:8c:5a:9f:24:c4:66:03:c9:35:b4:23:02:
1b:0b:ff:12:c2:3c:97:a7:bb:b4:d8:d0:24:ab:50:
30:8d:06:4f:3c:74:f3:1b:71:69:90:d2:87:10:99:
e4:12:8e:75:44:3d:0e:01:6a:9b:4a:10:92:a4:a0:
7f:27:bb:97:91:b4:9e:74:98:12:f8:85:e7:a4:58:
b0:f9:cb:5f:7a:1e:2d:cd:8c:68:83:c4:54:a7:9c:
1b:ca:6e:6b:61:5b:e6:57:ee:47:f3:49:09:cd:3b:
49:b8:9b:f1:25:f7:42:95:f8:7b:be:2c:cc:bb:62:
39:31:dd:1f:ea:ec:fa:0b:d3:62:7d:16:54:cf:54:
ff:08:5d:8e:3b:26:6c:d6:12:3c:d9:91:96:e9:13:
17:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B0:C3:12:66:5C:13:79:9A:32:0B:4D:77:60:D0:75:57:35:B2:F7
X509v3 Authority Key Identifier:
keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3139322e302f32342d3234203d3e203138313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.72.192.0/24
Signature Algorithm: sha256WithRSAEncryption
89:2e:4b:bd:70:8a:24:ea:d7:74:0b:76:3b:70:ef:7a:12:a7:
13:69:e6:cc:90:13:78:ce:f6:a3:9a:ec:e4:63:04:37:d9:e5:
d0:16:a8:4f:46:3d:52:93:f8:85:5a:9c:b0:e2:6a:ad:cb:84:
ac:bd:7c:d7:60:84:bc:ef:05:66:8c:a1:c7:fc:ac:a4:5a:fe:
d3:2c:98:30:f8:be:5a:ea:05:b0:46:e5:d8:81:de:2f:b4:fe:
bf:16:82:d3:39:c1:d5:1e:c5:42:74:77:fc:0a:c7:66:7b:98:
0d:73:59:85:dc:7f:ea:e8:d8:aa:c2:dc:6e:23:c3:a5:c7:93:
2d:75:bd:78:5e:21:9f:0c:8d:37:ef:86:91:38:62:14:c6:10:
af:50:32:4b:38:2b:67:a4:f3:2f:ea:68:cf:3e:5e:43:38:f5:
41:f3:ad:e6:69:e1:c9:58:d1:2e:b3:a8:2a:04:26:8c:18:3b:
6f:fc:fb:71:df:f3:86:c6:6a:94:07:e6:38:c0:1a:85:7d:97:
fe:1d:52:a3:f5:ad:cd:1c:44:5f:e5:0f:56:0f:02:36:6b:28:
f5:d6:41:ad:01:c3:0d:a3:11:bb:53:ac:ff:b3:57:66:04:32:
78:87:de:64:ab:9c:a3:17:64:66:7d:6c:47:68:f8:07:cf:37:
89:82:a5:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:33 2025 by rpki-client