Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa
File: 3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa (raw, json)
Hash identifier: uMkcQnGtyVMYiNc8KGtl9eYsTQiYYDMAsGIQyzCExBA=
Subject key identifier: 8E:71:65:0E:E9:5F:0C:1C:E8:5E:75:6A:ED:68:E2:A3:C9:2B:2A:1E
Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Certificate serial: 0D7E473EEB9EBD36FFAC2CF2FD8E803BCA7012C3
Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa
Signing time: Tue 18 Jun 2024 06:00:02 +0000
ROA not before: Tue 18 Jun 2024 05:55:02 +0000
ROA not after: Tue 17 Jun 2025 06:00:02 +0000
asID: 38143
IP address blocks: 202.169.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:7e:47:3e:eb:9e:bd:36:ff:ac:2c:f2:fd:8e:80:3b:ca:70:12:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Validity
Not Before: Jun 18 05:55:02 2024 GMT
Not After : Jun 17 06:00:02 2025 GMT
Subject: CN=8E71650EE95F0C1CE85E756AED68E2A3C92B2A1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cc:0f:51:c6:95:c5:6c:66:9e:55:01:6e:e2:
47:3b:9f:e5:9b:5e:0c:65:78:83:13:8f:59:dd:ce:
f4:39:d4:e3:de:86:99:b5:f2:62:3b:b3:04:0e:0c:
a3:9b:e3:85:26:dd:bb:bc:f3:e6:03:ce:c0:98:20:
d9:a8:51:18:64:16:c5:f3:1a:78:03:de:51:55:3d:
3f:84:24:a1:2e:60:c6:cf:88:b0:33:67:58:8c:11:
62:bf:7c:c9:77:f9:d1:dc:3b:ff:2c:c3:16:be:39:
fb:87:f2:4c:e1:14:8b:36:fa:84:57:62:5d:04:ef:
28:85:fb:24:82:50:fb:23:4b:50:ca:2e:51:17:ef:
65:e7:6f:ad:ac:ba:78:36:41:12:cc:d2:be:08:16:
21:84:60:4a:cb:3f:36:93:7a:42:0b:74:5a:d6:f5:
84:e1:75:a9:84:9d:b1:0e:64:78:85:2f:e4:e9:69:
d1:bf:e3:45:30:4c:6b:47:0b:ce:f0:fd:71:a9:8b:
de:df:f8:10:a8:65:34:b7:6c:79:7c:6a:d2:a2:f7:
ea:b1:c8:63:fe:a5:e3:ca:4d:02:40:8c:77:94:b8:
f6:6d:68:86:06:d4:62:4c:9b:4e:7f:9a:b4:24:75:
e4:bd:de:b1:a1:25:73:77:8c:60:dd:31:09:28:76:
8c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:71:65:0E:E9:5F:0C:1C:E8:5E:75:6A:ED:68:E2:A3:C9:2B:2A:1E
X509v3 Authority Key Identifier:
keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234352e302f32342d3234203d3e203338313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.245.0/24
Signature Algorithm: sha256WithRSAEncryption
73:d4:7d:e2:2c:ba:66:b2:b4:2b:2c:9c:de:8e:32:f8:7e:61:
89:9d:3c:c3:e9:34:ec:5a:91:78:ae:34:93:db:d5:d5:78:20:
2e:8f:07:ca:d8:f4:5c:1f:26:6f:27:f6:95:b1:f1:90:63:d5:
86:90:e0:08:f4:ca:63:a0:18:bb:ca:ac:e5:6b:5a:41:e8:8e:
04:9d:a2:bb:76:f2:8f:6f:4b:26:f4:de:ec:6e:dd:7a:75:dd:
21:be:ce:84:a5:b7:27:ec:d2:31:44:83:72:09:6b:26:8f:79:
b7:83:be:4e:22:89:e9:bc:a1:07:a1:9d:ff:ad:48:4d:30:61:
63:10:1c:27:16:00:bf:30:fd:9b:bf:9f:85:c7:89:d6:fb:72:
52:7a:04:99:a6:c7:f5:b1:7d:66:e0:2e:49:68:3b:eb:26:ad:
b2:f2:81:af:84:dd:59:64:5b:11:57:14:1b:02:0c:d4:3a:f4:
08:c8:3a:ac:a6:8d:ae:f1:b8:07:86:b5:bc:aa:32:3e:b4:66:
ae:e6:41:c6:23:41:2b:e9:89:8b:88:d7:68:e9:01:e7:21:4c:
a8:9e:47:34:9e:66:dd:e2:3e:2f:52:a4:aa:71:35:07:3d:24:
4b:8e:dd:dd:a8:8f:4a:38:1c:71:d5:97:e9:0a:7f:a6:64:02:
e4:60:02:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:12:29 2025 by rpki-client