Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa
File: 3230322e37332e31362e302f32312d3231203d3e203538383136.roa (raw, json)
Hash identifier: Og2Q3pkFZ4RS1IltvMh5+zdPdJjL3PWI9O/DVgS24lg=
Subject key identifier: 76:69:08:A9:13:23:5E:71:14:E9:79:E6:E2:34:D3:2D:E2:8C:1C:03
Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Certificate serial: 6856C4E99BB34DA6E5F37C2C26FF33C74CE68AB7
Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa
Signing time: Wed 01 Jan 2025 11:00:00 +0000
ROA not before: Wed 01 Jan 2025 10:55:00 +0000
ROA not after: Wed 31 Dec 2025 11:00:00 +0000
asID: 58816
IP address blocks: 202.73.16.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:56:c4:e9:9b:b3:4d:a6:e5:f3:7c:2c:26:ff:33:c7:4c:e6:8a:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Validity
Not Before: Jan 1 10:55:00 2025 GMT
Not After : Dec 31 11:00:00 2025 GMT
Subject: CN=766908A913235E7114E979E6E234D32DE28C1C03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:62:60:8c:e3:24:97:59:d4:47:bd:bf:54:ad:
8a:6b:00:be:cd:ad:d2:1f:b2:e2:9c:1d:46:9e:24:
52:3e:69:4c:17:5a:5e:77:58:75:e2:21:f0:b8:cb:
b7:8f:0e:09:d4:48:5b:44:67:a9:27:ff:45:8b:82:
4a:07:f4:a5:69:8b:ac:52:77:5c:f3:5e:85:42:68:
97:58:e4:51:df:97:ab:26:9c:17:b9:e2:82:e9:a4:
71:20:a7:98:63:75:95:76:35:61:ab:91:8a:28:37:
0e:b2:a0:97:d6:88:cd:44:a4:8e:bb:10:db:9e:f8:
c6:34:6c:b3:88:15:b4:68:66:a1:63:1e:54:6d:69:
58:bb:6c:02:bc:2f:b4:f4:d6:52:b1:48:36:b5:66:
55:70:ac:c7:42:ae:26:5a:43:17:b6:b2:ec:81:a2:
5e:cb:03:07:c4:5b:9b:3b:3d:56:63:fa:31:bb:15:
39:70:a7:69:37:42:a3:4b:3a:d3:01:85:a0:63:e7:
c1:2b:fa:8a:ef:c9:6e:82:0c:70:88:e6:d1:5f:4d:
6c:f5:9d:01:be:74:bf:e1:cf:88:6b:dd:9b:d8:76:
24:ad:12:4e:11:52:1b:70:56:f0:25:45:b2:2b:a2:
1b:c3:a8:85:9c:c2:39:be:9f:cf:94:73:9f:b4:08:
f1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:69:08:A9:13:23:5E:71:14:E9:79:E6:E2:34:D3:2D:E2:8C:1C:03
X509v3 Authority Key Identifier:
keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.73.16.0/21
Signature Algorithm: sha256WithRSAEncryption
9c:49:5a:ee:43:ed:7b:1f:54:df:a9:ce:bb:89:28:18:8d:ea:
40:19:62:1e:ac:b3:cc:fd:58:6c:48:53:0e:56:80:e5:2e:ae:
bf:6d:4b:6e:eb:60:0b:4c:8d:a2:eb:bc:25:91:0c:a6:39:5a:
9a:3c:8d:a0:b0:94:31:37:37:5b:79:d7:e2:58:bc:50:4d:90:
1e:7b:67:77:21:8b:9b:ee:d2:cc:5d:b8:c3:5f:1b:41:5b:4c:
84:20:a7:03:9a:24:64:cd:cc:6e:39:3e:5b:eb:e0:36:d0:7a:
3f:02:46:f0:f7:dd:23:e0:02:96:4b:30:96:6a:9f:71:e2:0d:
c2:29:26:9a:5b:74:1b:1a:09:f8:76:2a:ef:9b:ca:05:db:23:
fc:d0:b2:15:30:7c:49:48:9c:ed:34:85:0d:2c:f2:76:36:8b:
0d:1f:9e:11:a2:a6:ce:02:7a:2c:b8:3c:66:05:8b:a4:d6:04:
88:7a:f8:12:9d:98:ec:89:2d:3e:a2:b9:0f:e6:e6:e5:70:58:
9c:49:9e:0a:97:73:57:8b:49:cd:8b:1b:fc:de:8f:db:cf:75:
0e:a5:d2:9a:14:21:fc:c6:b7:8c:b2:fe:bd:20:77:a9:1e:2a:
9f:56:73:90:d1:ee:ab:df:c6:7d:c5:03:b8:36:12:33:52:62:
e0:77:71:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:34:56 2025 by rpki-client