Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39332e302f32342d3234203d3e203233363935.roa
File: 3230322e3137332e39332e302f32342d3234203d3e203233363935.roa (raw, json)
Hash identifier: uUWqQ+r90afq72pms35ZsH7xSBYfCse9ZKzmHy/kk18=
Subject key identifier: F2:AC:49:2A:F1:48:A3:48:F6:47:E2:14:9E:BE:AE:4E:90:09:79:6F
Certificate issuer: /CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Certificate serial: 09F63B78780AE0D4BA712602858EBDF0BFA1A76A
Authority key identifier: 41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39332e302f32342d3234203d3e203233363935.roa
Signing time: Tue 10 Sep 2024 04:00:01 +0000
ROA not before: Tue 10 Sep 2024 03:55:01 +0000
ROA not after: Tue 09 Sep 2025 04:00:01 +0000
asID: 23695
IP address blocks: 202.173.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:f6:3b:78:78:0a:e0:d4:ba:71:26:02:85:8e:bd:f0:bf:a1:a7:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41E09326F68CE0113635EACAF4E37394AE4E2D8C
Validity
Not Before: Sep 10 03:55:01 2024 GMT
Not After : Sep 9 04:00:01 2025 GMT
Subject: CN=F2AC492AF148A348F647E2149EBEAE4E9009796F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f2:35:b7:c9:7f:91:83:26:a8:6f:f5:5d:29:
74:c5:5d:3e:be:e7:82:a9:d7:da:0e:66:fc:71:b3:
b5:df:67:c5:53:7f:07:e2:83:b7:39:2f:ab:e0:a5:
62:83:64:ca:f6:c8:0e:19:b4:12:58:b0:08:9e:93:
f5:58:47:9f:f9:0a:f8:58:34:c2:3e:3c:67:5a:38:
92:17:5c:88:11:c1:89:b6:23:23:4f:72:90:78:a2:
9b:12:a3:5b:a6:08:f6:ef:59:d0:24:f4:42:23:c5:
f4:03:e4:a1:7c:e0:ce:62:a6:28:f6:96:26:22:98:
0e:39:9f:40:fb:6c:ff:65:c8:82:7f:7c:b2:29:68:
19:9f:2e:af:69:0a:a2:55:c4:c8:39:4f:38:96:e7:
6c:96:24:75:70:36:77:98:d6:7b:cd:ee:40:9c:df:
94:74:fe:5f:96:1e:da:1f:52:17:37:ba:60:64:26:
e2:ce:8a:d2:37:c3:5e:45:ac:a9:f7:5e:90:95:88:
a7:d0:d0:95:0f:54:17:d0:44:6f:aa:43:53:2e:8b:
db:f7:82:94:ef:75:99:61:a0:32:3b:9f:fe:b4:78:
a2:c1:81:09:27:2f:0f:58:6a:bc:96:3f:88:c0:a8:
f8:3f:fb:59:eb:c1:2e:7a:98:07:9e:36:6a:34:a5:
35:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:AC:49:2A:F1:48:A3:48:F6:47:E2:14:9E:BE:AE:4E:90:09:79:6F
X509v3 Authority Key Identifier:
keyid:41:E0:93:26:F6:8C:E0:11:36:35:EA:CA:F4:E3:73:94:AE:4E:2D:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/41E09326F68CE0113635EACAF4E37394AE4E2D8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41E09326F68CE0113635EACAF4E37394AE4E2D8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f0f2bd9-42ae-449a-8d57-b26da04d7ee1/0/3230322e3137332e39332e302f32342d3234203d3e203233363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.173.93.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:5e:f5:05:18:b9:10:0f:60:11:f1:93:1f:f2:03:e6:e8:21:
df:a6:2b:11:96:be:a0:fc:fe:fd:af:e9:20:b0:20:7b:44:65:
aa:43:15:10:fb:37:07:bb:95:d2:ff:2e:3e:e0:2f:c8:61:6c:
99:7c:6a:0d:b2:73:18:40:b2:6d:71:91:e3:b2:0e:30:fb:03:
69:c4:24:e3:19:4c:21:89:6f:5a:b2:fd:37:1c:14:82:d7:45:
e6:cc:b2:d8:cc:27:a5:3b:39:4a:70:16:f8:9d:ea:c8:b7:99:
dc:d7:1d:2c:cd:ba:3e:63:79:f2:9b:0b:fe:3b:87:a3:0f:97:
a6:0b:14:89:e9:50:69:b1:66:b5:0b:e3:10:a9:96:30:05:0d:
64:c7:bc:33:75:f2:6b:0e:8e:b8:af:22:51:3b:c4:ce:c3:06:
3b:5c:e6:c7:f2:07:f5:1f:fd:3d:68:23:bb:52:8d:36:9e:eb:
62:33:01:3a:11:aa:7b:c5:ac:e2:6a:80:88:d5:86:31:2e:19:
a7:5b:36:91:d8:e5:28:bd:5d:d1:6c:3c:12:04:9a:6a:6f:04:
30:7a:3a:8c:e9:06:d9:ed:64:71:b4:cf:f9:cd:88:5c:bd:bc:
35:85:c3:cd:7a:ab:e7:14:72:34:57:4e:1e:3d:42:5d:8c:1c:
00:c3:f2:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:29 2025 by rpki-client