Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa
File: 3230322e3137332e37332e302f32342d3234203d3e203233363935.roa (raw, json)
Hash identifier: nSzlfFPpI7N3qrGPleUZ7U2AGFdMYcBNQO4RGyLMKDU=
Subject key identifier: 07:6D:21:45:B8:7D:E5:30:8E:7D:54:6B:8A:51:E1:60:4A:14:98:5B
Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Certificate serial: 6110A14B079F6C215146EF5B92EF080EA1688750
Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa
Signing time: Tue 17 Sep 2024 16:00:01 +0000
ROA not before: Tue 17 Sep 2024 15:55:01 +0000
ROA not after: Tue 16 Sep 2025 16:00:01 +0000
asID: 23695
IP address blocks: 202.173.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:10:a1:4b:07:9f:6c:21:51:46:ef:5b:92:ef:08:0e:a1:68:87:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Validity
Not Before: Sep 17 15:55:01 2024 GMT
Not After : Sep 16 16:00:01 2025 GMT
Subject: CN=076D2145B87DE5308E7D546B8A51E1604A14985B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:db:99:23:6c:e1:98:b8:80:ab:99:0c:31:cd:
8a:d0:36:6a:ce:09:39:8c:fb:3e:bf:83:8d:93:b4:
ee:9c:9a:3b:36:66:ae:85:58:08:a2:b6:1c:98:68:
46:70:9b:ba:c2:51:8a:98:c7:a0:70:15:08:86:0b:
f2:50:92:7d:7b:01:1f:0d:d3:de:5a:7b:87:4c:5b:
e9:cc:02:cb:66:76:b5:0f:ea:23:cd:a9:5a:6e:33:
11:76:5f:9e:68:9f:48:58:64:3c:72:b6:6d:82:fa:
1b:81:a7:83:b6:41:db:57:77:aa:db:c9:e7:30:bf:
7f:fb:bc:f1:83:33:6f:db:57:0c:35:06:09:f0:a0:
f4:76:91:e6:ec:b2:09:16:a6:cb:be:7d:52:44:b4:
a6:5a:77:74:44:3f:77:3e:2c:9d:0f:4e:f0:a5:74:
35:79:05:4c:42:e7:da:59:3e:85:67:ad:84:d6:95:
94:03:8a:95:e2:9d:55:fb:db:90:51:d5:6c:d0:35:
9f:82:03:d3:4b:9e:94:c3:c5:74:b1:a4:81:05:f5:
17:5c:03:a4:f6:a0:65:4b:0b:5f:71:20:15:7e:b1:
2d:e0:ef:fd:db:b9:a4:02:07:ac:ed:85:20:2d:52:
2c:44:ad:9d:bd:54:c0:ac:24:c2:25:89:01:52:9e:
80:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6D:21:45:B8:7D:E5:30:8E:7D:54:6B:8A:51:E1:60:4A:14:98:5B
X509v3 Authority Key Identifier:
keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e37332e302f32342d3234203d3e203233363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.173.73.0/24
Signature Algorithm: sha256WithRSAEncryption
63:5a:5d:46:7f:6f:d7:7a:ee:53:c4:8e:f6:ee:0b:c4:43:a3:
e6:c7:6d:da:0d:5f:9a:8d:ed:86:94:79:3d:3d:29:3a:7f:78:
33:bf:be:f0:f3:30:99:89:61:ba:11:6b:4e:7c:f8:49:a9:64:
9f:a9:6c:43:6a:27:1b:c6:af:24:35:1c:9b:41:44:db:78:68:
dd:f6:70:8a:2c:4a:54:b1:2a:d3:f3:69:e8:3a:e3:3f:be:58:
5c:0e:33:4b:c2:27:06:c1:92:a1:81:74:48:e3:f3:24:03:c0:
1d:54:52:41:0f:54:cc:34:42:c5:a4:e4:84:b9:9d:16:80:bc:
21:5a:fc:5c:7e:33:c3:a7:0a:4c:5a:ab:8f:8c:70:5f:a7:32:
20:8e:68:65:1c:d4:51:b8:4d:25:22:a2:93:88:82:67:04:34:
11:82:3a:74:81:00:53:67:bd:09:b2:ea:c3:ae:f3:d5:d0:af:
83:9c:11:15:71:4b:93:ef:04:37:85:b9:10:70:ee:84:7f:9e:
76:a8:4c:00:24:02:2d:07:d7:f2:3e:de:36:22:79:fa:71:80:
ec:b2:3e:9d:ff:58:20:80:ab:a9:69:7b:d6:5d:fa:3f:fb:25:
ad:d0:13:e1:ce:f3:e5:f8:2c:c5:b4:2e:f1:86:b4:e3:d6:1b:
08:6d:4f:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:42 2025 by rpki-client