Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32332d3233203d3e203338373535.roa
File: 3230332e3132332e36302e302f32332d3233203d3e203338373535.roa (raw, json)
Hash identifier: QHJuip7O3VcDdL7ndKGxilEe3owxbbSbcIiD01Visj4=
Subject key identifier: A4:5D:CC:8C:9E:E3:97:2E:BA:2C:62:2D:CD:5A:02:9C:A1:E2:7B:5F
Certificate issuer: /CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7
Certificate serial: 597EA9BCB0CC7B4B5B06DD3F4D12B33336FF1112
Authority key identifier: 9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32332d3233203d3e203338373535.roa
Signing time: Thu 01 Aug 2024 11:24:31 +0000
ROA not before: Thu 01 Aug 2024 11:19:31 +0000
ROA not after: Thu 31 Jul 2025 11:24:31 +0000
asID: 38755
IP address blocks: 203.123.60.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:7e:a9:bc:b0:cc:7b:4b:5b:06:dd:3f:4d:12:b3:33:36:ff:11:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F61990183B8D1048CDFE62E9616C3A9D01B15C7
Validity
Not Before: Aug 1 11:19:31 2024 GMT
Not After : Jul 31 11:24:31 2025 GMT
Subject: CN=A45DCC8C9EE3972EBA2C622DCD5A029CA1E27B5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5e:38:01:77:a0:7e:ce:76:b1:ff:0b:e7:45:
fb:98:ad:fe:77:b2:56:45:d0:38:58:fb:f8:5a:5d:
35:49:af:1c:b3:1a:9a:71:3b:3c:e0:76:4b:16:b6:
5d:07:d9:9e:0b:c3:d6:ad:43:8c:b9:d8:c0:63:ca:
58:a0:04:61:83:66:42:76:a9:c9:41:54:23:e4:72:
33:f3:f0:37:e5:21:bb:b8:96:14:69:2b:5b:e8:cc:
75:db:94:fa:c6:a7:e8:1c:97:6b:75:41:8d:e4:8a:
fa:7e:ce:25:c1:69:09:0f:a4:2b:02:93:6e:bf:4c:
f2:a3:eb:62:b7:e9:e1:8b:fa:ab:ad:fb:74:d2:ab:
b6:bd:eb:1b:7e:e0:fe:46:69:a2:5c:f4:0f:ef:53:
8e:ee:07:bd:ba:f8:a9:57:1a:9f:f8:c3:b2:b9:67:
0d:a9:88:2b:2b:81:73:ed:b9:f7:a5:58:65:1c:15:
cc:d2:7a:1f:6d:e7:64:96:6a:de:03:ed:e3:e5:c0:
d0:0a:bc:be:45:23:3f:a0:fb:87:da:29:c2:bf:27:
4e:ba:a7:40:ab:ba:3c:17:2f:ea:61:fd:96:4d:7a:
ca:22:f2:7f:30:41:bd:a5:8f:42:0b:d8:45:d0:ca:
e8:8f:3c:86:4b:01:a5:9a:3f:bd:17:10:63:fb:a5:
3b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:5D:CC:8C:9E:E3:97:2E:BA:2C:62:2D:CD:5A:02:9C:A1:E2:7B:5F
X509v3 Authority Key Identifier:
keyid:9F:61:99:01:83:B8:D1:04:8C:DF:E6:2E:96:16:C3:A9:D0:1B:15:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F61990183B8D1048CDFE62E9616C3A9D01B15C7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ab3902b-7459-4854-a5f5-09f15d8c87d3/0/3230332e3132332e36302e302f32332d3233203d3e203338373535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.123.60.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:ba:48:77:fd:9d:03:17:68:8c:07:23:e1:d1:89:ae:78:19:
9b:fe:6f:9f:62:18:0a:a2:f9:cc:03:4b:97:b7:d5:7d:63:a4:
1c:09:26:b4:31:39:d8:f9:94:af:dc:aa:76:c6:2e:29:e1:be:
12:92:67:85:5d:f8:46:27:f4:22:62:13:88:cd:2e:b6:b6:72:
ce:ee:37:9d:98:c6:a6:43:34:de:4b:09:55:51:18:56:7f:92:
62:51:35:ae:8d:fa:07:0a:3a:63:08:45:db:89:e9:8d:d9:ae:
bd:e1:60:28:f3:f6:ef:98:62:78:bb:16:f7:f3:d4:a0:7a:6a:
42:61:06:39:4d:df:34:d1:31:20:42:52:65:a4:a7:13:b0:c9:
1c:1f:65:92:b9:ea:50:b2:0c:b4:b2:46:82:d7:f6:d1:cd:59:
39:f3:af:62:c4:67:ce:a8:a0:fd:d0:a8:a1:2f:94:05:49:27:
b1:37:7e:57:f1:9f:2b:84:2c:ba:1b:ca:c9:96:e2:7a:d6:ec:
9f:69:dd:d3:73:99:75:f8:6c:24:97:24:2b:8f:aa:b4:25:2f:
ca:d1:a6:72:a2:57:7c:c7:87:d5:74:58:d3:76:2a:ba:26:9b:
ac:3e:d7:32:65:6b:db:3d:be:68:36:0a:40:8a:44:9e:f8:30:
55:34:96:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:22:07 2025 by rpki-client