Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38332e302f32342d3234203d3e203233363935.roa
File: 3230322e3137332e38332e302f32342d3234203d3e203233363935.roa (raw, json)
Hash identifier: oDlDI6fU21fZbXJ7xjJnRhwvlH5l3glqD9qF8ZX5Ecs=
Subject key identifier: F5:CB:82:AF:5E:6D:FC:C1:F4:76:6B:43:29:AB:F5:1D:46:B1:53:75
Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Certificate serial: 3CE31E68C216EB1E2C916C7A503D5A3B3E3AFF12
Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38332e302f32342d3234203d3e203233363935.roa
Signing time: Tue 17 Sep 2024 16:00:02 +0000
ROA not before: Tue 17 Sep 2024 15:55:02 +0000
ROA not after: Tue 16 Sep 2025 16:00:02 +0000
asID: 23695
IP address blocks: 202.173.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:e3:1e:68:c2:16:eb:1e:2c:91:6c:7a:50:3d:5a:3b:3e:3a:ff:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Validity
Not Before: Sep 17 15:55:02 2024 GMT
Not After : Sep 16 16:00:02 2025 GMT
Subject: CN=F5CB82AF5E6DFCC1F4766B4329ABF51D46B15375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:18:49:8a:25:9d:86:f2:44:41:54:ab:72:21:
9b:76:c1:fb:7a:23:4b:b8:98:99:6d:bd:0d:a4:f9:
67:86:42:87:f6:3a:0b:c9:28:39:14:0d:1d:ba:4f:
21:2b:bf:5b:fc:46:5c:93:32:f6:33:35:ca:e4:1a:
94:65:68:3b:6e:e6:ba:26:d6:b1:aa:6c:3d:6d:0d:
e7:16:2e:e3:26:72:04:ee:0e:f3:00:2d:40:91:91:
8b:0c:75:87:39:7a:8b:84:ac:4a:f4:9b:45:07:64:
de:d0:ef:bb:fc:64:15:71:12:5d:d8:ba:28:5d:18:
7f:9f:71:3c:ed:9c:c0:ec:d3:87:f6:eb:0b:1a:bc:
4b:71:fc:4b:58:b7:d8:cd:e6:92:be:75:34:cf:c9:
98:48:65:4f:2a:19:05:83:a6:55:9d:61:63:69:7c:
b0:d3:fd:8f:f3:39:95:88:13:96:bf:39:52:ad:0a:
d8:4c:4b:b7:55:81:b0:0d:99:63:fe:ee:3a:ab:a4:
d4:fa:06:e7:7e:89:1a:73:0c:12:b4:14:68:08:9c:
ba:92:72:99:ab:1e:19:af:45:24:3d:79:c8:81:34:
3a:49:3c:78:33:55:4c:29:b3:80:49:86:ea:24:7d:
52:49:09:5b:02:7b:d7:da:75:3d:c3:31:b5:5d:49:
77:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CB:82:AF:5E:6D:FC:C1:F4:76:6B:43:29:AB:F5:1D:46:B1:53:75
X509v3 Authority Key Identifier:
keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e38332e302f32342d3234203d3e203233363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.173.83.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:97:b8:05:60:13:92:00:dc:8d:30:e3:40:d0:cd:61:e0:b8:
46:ac:4c:b9:ab:38:93:f6:94:5d:a5:c6:88:a8:0a:6b:f6:1e:
d7:52:76:8a:95:6e:df:dd:47:60:f4:b3:b5:04:e9:eb:34:b9:
2d:78:0e:6d:b1:92:e3:76:15:03:27:bf:34:d9:32:b7:de:9c:
b3:56:a7:1b:64:07:31:1d:04:1a:5b:02:dd:9d:09:16:dd:b8:
a6:88:e2:70:fb:75:3a:40:f7:57:f3:c3:86:62:1d:fc:7f:05:
d2:05:e2:a0:a5:f8:e1:82:4d:ad:b9:98:3b:7c:8a:fd:e6:09:
f9:d0:93:2f:e8:d7:d1:b3:c5:89:a6:a9:05:e8:85:4f:fc:5f:
b6:34:cf:93:6c:76:de:2a:c9:a8:3d:64:53:85:a8:7b:29:6c:
23:75:ef:3f:12:40:e9:9a:e3:66:5d:ed:72:17:b6:06:e4:97:
cb:5f:2e:3a:a8:cb:a5:83:53:62:0f:13:68:1f:3d:67:0c:f0:
f2:be:99:bc:a1:d4:59:4a:a6:ae:79:05:2b:3d:47:15:17:9f:
fb:c4:a4:84:da:1f:d3:36:d4:1b:df:c8:85:cd:91:c7:15:be:
8b:3f:90:f2:1e:2d:7d:41:d9:4c:0f:0a:44:45:e3:c9:a9:d1:
08:c3:e3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:32:55 2025 by rpki-client