Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230352e302f32342d3234203d3e203538353532.roa
File: 3230322e37322e3230352e302f32342d3234203d3e203538353532.roa (raw, json)
Hash identifier: pox4YzvlrbK6lEx3cIyanwN2eN/9UqsWyjIWSuGfnTU=
Subject key identifier: B5:A2:F5:22:53:CE:E4:72:F6:EC:8C:DD:F3:CC:19:46:DF:C5:6A:83
Certificate issuer: /CN=9EDE64DBC4098881F11B70123DF514D38F7881EE
Certificate serial: 4C4F64E46921F8539487DD5E69D725915201F18F
Authority key identifier: 9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230352e302f32342d3234203d3e203538353532.roa
Signing time: Mon 01 Jul 2024 01:03:53 +0000
ROA not before: Mon 01 Jul 2024 00:58:53 +0000
ROA not after: Mon 30 Jun 2025 01:03:53 +0000
asID: 58552
IP address blocks: 202.72.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:4f:64:e4:69:21:f8:53:94:87:dd:5e:69:d7:25:91:52:01:f1:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9EDE64DBC4098881F11B70123DF514D38F7881EE
Validity
Not Before: Jul 1 00:58:53 2024 GMT
Not After : Jun 30 01:03:53 2025 GMT
Subject: CN=B5A2F52253CEE472F6EC8CDDF3CC1946DFC56A83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b5:40:29:72:a9:56:96:86:60:ad:33:f1:ee:
0b:bb:a5:18:b1:08:9f:9d:d8:59:03:b5:c2:4f:b8:
cd:bf:63:8f:12:bd:a1:c7:a5:33:64:28:a5:f3:f6:
26:7f:18:de:92:c7:d3:79:05:a1:da:8a:9e:02:b9:
30:15:c3:8a:d2:ab:b5:e2:e9:ba:86:ff:bf:e8:f8:
4c:a5:ad:53:26:25:e9:9a:93:5d:d4:2b:eb:70:d2:
72:87:16:91:4a:d1:2c:a0:06:cb:ea:51:fc:6c:61:
bd:e9:b6:1f:f2:2d:65:f0:e2:65:bb:9e:e2:b1:de:
13:75:67:fa:91:3b:91:30:5c:fa:90:69:2d:83:24:
e6:aa:46:82:ca:b1:7a:cb:b8:7c:70:13:87:69:dc:
b1:ee:98:17:8f:53:f9:d4:ae:0b:cd:08:2d:ff:63:
c1:80:ff:2c:97:ed:1b:7c:07:70:c4:39:bf:39:80:
c8:0c:13:cd:b1:fa:c5:02:79:6b:a2:21:89:aa:84:
ee:0a:51:bc:a0:4a:72:21:06:7c:87:56:7c:c4:83:
60:33:80:8b:bd:ec:7d:ee:a2:57:af:1c:c1:5a:9e:
b9:31:82:c4:60:57:64:b9:97:c6:1c:22:71:05:be:
86:19:48:89:88:e6:85:f4:a4:56:93:98:1f:eb:b2:
5f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A2:F5:22:53:CE:E4:72:F6:EC:8C:DD:F3:CC:19:46:DF:C5:6A:83
X509v3 Authority Key Identifier:
keyid:9E:DE:64:DB:C4:09:88:81:F1:1B:70:12:3D:F5:14:D3:8F:78:81:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/9EDE64DBC4098881F11B70123DF514D38F7881EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EDE64DBC4098881F11B70123DF514D38F7881EE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/69acb4a8-7804-4526-84d2-869b91a6719d/0/3230322e37322e3230352e302f32342d3234203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.72.205.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:96:56:8a:07:81:11:19:70:ba:81:f9:11:af:ec:33:58:e8:
c9:f4:23:6b:9f:0e:2e:8e:5b:09:ed:05:19:2c:9a:29:67:20:
97:e5:7f:00:f5:42:25:25:ab:8c:f9:7d:c2:18:28:a5:4e:74:
71:1c:fc:67:f1:d9:8e:59:86:c9:2a:25:40:c8:d5:aa:f2:07:
ba:d4:d2:63:d8:f3:e0:bc:29:2b:c3:2b:33:04:2c:76:48:53:
6a:18:f9:36:25:ac:30:89:5f:9c:5e:ac:c0:7c:b8:a5:67:63:
9f:6c:5f:12:40:42:5e:78:85:00:cb:bc:e9:ec:cf:53:91:07:
e2:a2:66:c4:fb:3d:e7:76:07:8c:9a:bc:6d:b9:d7:d7:0b:a6:
bc:a1:49:98:c7:d7:cd:e9:70:bc:fd:0d:04:77:5f:42:69:27:
5c:0f:30:7c:ad:62:22:41:ec:bb:ce:6a:2f:3b:e2:fb:9a:20:
f2:d7:17:be:65:73:10:cb:9b:5c:bf:e2:d7:93:88:ad:c6:78:
ba:5e:10:48:36:f8:fb:82:1c:f0:f5:94:cf:ac:63:af:7e:32:
7b:8f:c6:50:0f:29:bb:f8:98:5c:44:f3:d5:59:0d:d3:18:c3:
a0:3f:56:4b:4e:07:53:fd:fd:36:5d:40:7a:03:34:2b:d2:f5:
2e:21:3e:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:20 2025 by rpki-client