Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234362e302f32342d3234203d3e203338313433.roa
File: 3230322e3136392e3234362e302f32342d3234203d3e203338313433.roa (raw, json)
Hash identifier: vV8Q1dygg3mIzpggTw3uT83wvTaPGh3tWNju3VLRvqU=
Subject key identifier: 20:AB:4F:D5:09:07:9F:F6:5E:C4:B6:B9:6C:49:4B:29:61:21:26:14
Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Certificate serial: 1B82D69BC1EAAEE1D2F69178D18F18D066B865EA
Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234362e302f32342d3234203d3e203338313433.roa
Signing time: Tue 18 Jun 2024 06:00:02 +0000
ROA not before: Tue 18 Jun 2024 05:55:02 +0000
ROA not after: Tue 17 Jun 2025 06:00:02 +0000
asID: 38143
IP address blocks: 202.169.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:82:d6:9b:c1:ea:ae:e1:d2:f6:91:78:d1:8f:18:d0:66:b8:65:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Validity
Not Before: Jun 18 05:55:02 2024 GMT
Not After : Jun 17 06:00:02 2025 GMT
Subject: CN=20AB4FD509079FF65EC4B6B96C494B2961212614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cc:de:56:84:82:ee:b8:a7:47:3a:6b:c2:cf:
0e:36:35:59:2a:03:d0:82:31:49:89:ae:2c:3a:d4:
8e:a2:00:dd:f5:0c:ac:18:6e:7a:b9:df:0c:3b:3b:
da:2f:8e:05:19:c4:5b:42:59:37:c8:24:e9:0d:e1:
55:43:2f:45:ba:13:15:b0:b6:a1:cf:13:fd:d6:fd:
d7:26:b8:0c:80:0c:54:1a:1b:50:8d:8b:f5:61:28:
6b:94:1f:73:57:b9:ec:cd:72:b4:bb:81:12:52:3f:
03:20:75:b0:90:de:28:a9:db:ff:5b:d3:2e:38:1b:
34:ea:9a:3a:47:54:c5:42:44:c7:2b:2d:f8:d2:bf:
d2:b9:60:14:24:4a:e5:29:ba:3f:d7:d3:af:20:ee:
bf:6d:04:b1:8f:32:f4:08:14:9d:93:cc:22:4a:dc:
94:90:8f:48:88:07:a4:14:de:cd:95:6c:28:56:f5:
51:f1:6d:c8:a1:04:b5:ec:c9:e8:61:f9:90:a4:f1:
e3:1c:2a:3d:fa:4d:0f:20:83:73:0d:83:bb:00:c7:
56:0d:9b:21:6d:28:8d:85:21:ed:9e:11:55:7f:24:
39:a8:b0:49:f6:60:e8:e5:a6:5c:10:ab:99:6a:75:
78:90:d9:0b:c6:d6:a3:96:a4:23:e6:e9:4f:0a:52:
75:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:AB:4F:D5:09:07:9F:F6:5E:C4:B6:B9:6C:49:4B:29:61:21:26:14
X509v3 Authority Key Identifier:
keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3234362e302f32342d3234203d3e203338313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.246.0/24
Signature Algorithm: sha256WithRSAEncryption
58:d0:6f:a9:81:af:2b:e7:83:1f:18:29:2d:52:62:85:89:92:
1e:67:22:e0:1e:c9:f4:07:2e:9b:8a:7a:c2:d0:3d:41:db:1f:
f3:6e:58:9f:06:30:64:07:ae:d4:87:8a:52:ec:73:0d:06:6a:
63:78:ab:d1:67:9e:c5:98:01:d2:11:62:b2:4a:a9:ea:35:55:
e1:84:8d:1f:5b:99:82:35:68:4d:43:69:a9:2c:cd:17:dc:1f:
1e:40:dc:32:bd:0e:f5:08:9c:6a:a2:0b:37:71:24:25:b7:0c:
a3:a1:ff:f3:25:08:1e:eb:a8:f2:5f:85:f3:9e:3a:fa:7d:95:
2e:52:f2:80:07:2e:69:52:98:ce:5d:6f:a9:e2:50:0d:64:db:
5d:6d:bc:c5:59:d7:d3:70:c7:a3:88:51:34:94:3c:02:27:d6:
81:23:9a:89:e5:39:b9:2a:08:62:18:2d:38:02:1d:f0:c6:fa:
ff:f3:d9:26:78:2c:da:a2:3b:1d:6a:2d:ec:06:73:a0:3b:f6:
59:35:ff:f2:67:9c:4a:eb:aa:23:7e:a8:dd:58:64:23:05:2c:
31:1d:87:d4:26:c8:90:7b:38:d6:3b:93:1d:8e:86:08:d0:3e:
a2:09:2b:ab:25:6e:8a:fa:a8:ba:b5:01:c1:a1:30:c0:ec:8b:
b8:b0:9e:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:05:41 2025 by rpki-client