Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa
File: 3230322e3137332e39302e302f32342d3234203d3e203233363935.roa (raw, json)
Hash identifier: Vcu3cvP6TpAtiqIJRyIG86FnbkyFCwZwDKOk+Zdad3Y=
Subject key identifier: 85:02:D5:2E:FE:FA:FD:8F:52:A9:D8:18:E7:32:33:7B:76:B6:33:37
Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Certificate serial: 0220A1E993008D847CCC304B48A6F85B4C98BB68
Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa
Signing time: Tue 10 Sep 2024 04:00:02 +0000
ROA not before: Tue 10 Sep 2024 03:55:02 +0000
ROA not after: Tue 09 Sep 2025 04:00:02 +0000
asID: 23695
IP address blocks: 202.173.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:20:a1:e9:93:00:8d:84:7c:cc:30:4b:48:a6:f8:5b:4c:98:bb:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Validity
Not Before: Sep 10 03:55:02 2024 GMT
Not After : Sep 9 04:00:02 2025 GMT
Subject: CN=8502D52EFEFAFD8F52A9D818E732337B76B63337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c2:a6:86:f2:d8:53:8a:58:9b:34:ef:05:62:
e5:9e:95:c7:e6:37:bd:d3:17:e0:17:24:c4:f4:e5:
24:0b:cb:d4:b3:d5:c6:b3:01:b7:7b:94:d1:45:09:
3e:c0:2f:86:4d:58:68:2a:b1:9c:b9:a0:c3:39:aa:
78:3b:d2:28:c1:15:a0:3d:af:d2:de:48:94:6d:7d:
42:e6:f2:27:f4:c1:db:93:57:1e:80:19:61:a8:0e:
ef:c3:7a:55:ca:f2:66:df:de:a1:27:d1:a8:97:f8:
8e:cd:8a:18:d5:bf:31:e4:88:a6:09:86:eb:97:9b:
d4:ee:eb:6a:74:1a:7e:f0:75:bd:c9:3a:9b:66:e6:
c4:1c:a2:4a:d5:e8:27:db:83:49:32:00:7b:11:70:
fc:10:0b:b6:62:c9:0a:1e:33:eb:7f:35:ee:dc:3d:
92:5d:ea:4b:98:06:7a:e1:d9:05:12:d6:72:7a:02:
4d:89:7c:59:3a:6e:45:33:01:0a:d1:78:bc:c1:32:
a2:bb:64:eb:97:b6:0f:ca:65:45:8a:f5:10:25:a5:
78:95:ef:50:b1:ec:f6:af:c1:86:c0:09:f9:a0:8e:
ed:12:4b:9e:66:d9:c1:77:30:4b:92:20:9b:85:ca:
00:33:58:bb:9f:f2:f1:22:d8:00:b2:07:87:6a:29:
c1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:02:D5:2E:FE:FA:FD:8F:52:A9:D8:18:E7:32:33:7B:76:B6:33:37
X509v3 Authority Key Identifier:
keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39302e302f32342d3234203d3e203233363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.173.90.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:5b:47:31:3b:62:f0:6b:12:4b:38:fb:5b:e2:ab:1f:1b:7a:
f6:19:d1:44:d8:db:1c:88:77:03:ae:36:94:9e:b5:99:b4:85:
8d:d6:a3:90:c2:c7:37:c2:81:5a:90:c6:21:26:fc:ad:9d:62:
d3:e8:5b:e2:b5:0a:c4:80:2a:10:7d:1c:2e:44:24:72:c4:e2:
14:4d:79:71:2c:e1:6f:81:ba:ae:8f:30:d2:8c:84:a1:29:89:
46:74:4c:b4:0c:f3:35:14:66:eb:78:65:e5:5f:60:19:6e:1e:
bc:58:a7:b6:f8:2c:16:35:3d:4d:b0:af:b0:06:99:1c:a4:9b:
84:54:73:07:3b:01:53:7a:47:df:e2:da:19:8e:19:d9:31:97:
25:26:c1:af:04:c6:1b:11:a7:f6:92:82:82:82:76:87:ec:4b:
1a:00:77:0e:87:a1:bf:ae:3f:c2:0f:89:ba:08:45:16:55:fb:
69:a0:fd:bf:6f:fe:c1:4f:00:f1:67:1d:0d:d4:25:63:28:f1:
0b:b0:25:f8:69:8e:5f:cc:7f:a3:e5:a6:02:bc:a5:a8:f3:a8:
0f:21:b3:2c:d1:61:02:98:bd:0c:40:c3:d6:ac:e6:2c:aa:f2:
60:de:f1:a4:75:4b:c9:45:7d:49:22:d9:45:3a:b5:f0:b1:78:
19:f3:4e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:32:56 2025 by rpki-client