Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa
File: 3230322e3137332e39312e302f32342d3234203d3e203233363935.roa (raw, json)
Hash identifier: QpQ1/sm5zXzKMRcJ3nXPQnI+vIIBo+CCNe1F4YSgeSo=
Subject key identifier: 63:D0:E8:EF:72:AE:03:5F:8E:30:AB:41:F5:CF:2C:4E:C6:60:15:23
Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Certificate serial: 4AFFE9D0146C555F60E6DB53A5626D026F61F493
Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa
Signing time: Sat 14 Sep 2024 08:01:09 +0000
ROA not before: Sat 14 Sep 2024 07:56:09 +0000
ROA not after: Sat 13 Sep 2025 08:01:09 +0000
asID: 23695
IP address blocks: 202.173.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:ff:e9:d0:14:6c:55:5f:60:e6:db:53:a5:62:6d:02:6f:61:f4:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Validity
Not Before: Sep 14 07:56:09 2024 GMT
Not After : Sep 13 08:01:09 2025 GMT
Subject: CN=63D0E8EF72AE035F8E30AB41F5CF2C4EC6601523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:99:13:65:19:d1:e7:db:94:0b:1e:cb:66:5d:
82:61:00:23:03:f9:a7:0c:8d:e4:62:b7:f4:e0:04:
24:85:b2:bd:10:b1:8d:dd:1b:57:b7:49:f8:c4:f8:
5e:4b:f5:ba:5b:6a:b6:a2:8f:9f:3e:5f:16:1e:85:
72:df:9d:45:6a:b3:e0:01:69:de:e3:0e:bc:d5:93:
3d:c3:43:6c:3a:c3:df:dc:78:1f:f8:21:48:82:dd:
44:5f:c7:02:fd:d6:35:85:e2:36:15:b8:2f:ea:86:
e3:1e:37:c4:00:fd:33:71:b9:02:0b:94:00:8a:43:
d0:2a:02:0b:3b:a4:46:3e:04:87:d4:0c:9c:fd:87:
00:3e:a6:7f:60:66:59:2c:2f:84:0c:31:af:bb:30:
8f:ae:5c:60:ce:75:a6:0f:08:1b:17:87:7b:0a:bc:
c1:1c:b9:0d:70:f0:dd:b3:60:8b:86:a6:9d:d3:10:
a1:8a:d8:cb:8a:a0:31:21:0d:26:2b:82:f7:0f:fd:
7d:9c:5d:f0:c6:03:e2:7c:c8:cb:72:52:31:e0:fc:
32:4b:f2:5f:2c:b6:95:60:19:b5:02:c6:c8:52:c2:
e5:be:0c:c3:4e:7a:18:88:25:cf:8a:1f:7c:3b:f6:
31:13:a1:be:1d:20:7d:9b:5c:1c:29:7c:42:81:bf:
7b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D0:E8:EF:72:AE:03:5F:8E:30:AB:41:F5:CF:2C:4E:C6:60:15:23
X509v3 Authority Key Identifier:
keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39312e302f32342d3234203d3e203233363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.173.91.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d9:af:cf:ee:c3:98:5e:c5:be:d3:dc:5a:b2:a3:06:e6:8f:
1b:bb:21:77:d8:bc:ac:0f:ec:7d:32:f9:c5:4d:2a:04:4f:27:
41:56:d1:58:ba:9b:a5:9e:15:0d:53:e9:c7:38:12:3e:38:eb:
1f:f1:a1:77:a0:24:3f:9f:e2:94:1a:0f:d8:43:86:7a:a4:6a:
9a:61:6d:8a:ba:3b:2a:6b:da:3a:4b:18:46:1c:3a:2b:9d:9f:
c9:ad:20:74:f7:e2:c2:ba:18:81:d1:91:51:2a:10:44:61:7f:
b3:be:45:3d:01:f1:47:0c:24:0b:7a:6f:31:0c:38:03:0a:7d:
f6:db:ea:de:b8:21:5f:cb:01:3c:b5:a4:32:31:62:4e:9f:42:
b2:0d:10:a0:1b:17:ac:0f:be:f8:0d:42:46:3b:ab:5f:b0:2f:
8b:8e:ea:63:4c:6d:10:a7:b5:d8:c7:db:6b:89:63:05:96:b1:
16:d1:8b:ef:63:3e:c8:ee:05:41:f3:09:31:26:14:81:b6:c9:
f2:6b:c5:30:cf:3b:72:97:f6:19:75:f1:50:7f:44:59:43:98:
6d:0e:26:b2:1c:6e:aa:26:71:0a:5b:cb:cc:01:bb:09:02:4f:
a6:ad:89:03:6a:80:ef:8f:41:2a:6a:b4:47:88:6a:80:49:29:
82:75:50:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:34:17 2025 by rpki-client