Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3234203d3e203338313433.roa
File: 3230322e3136392e3235342e302f32332d3234203d3e203338313433.roa (raw, json)
Hash identifier: xmqgEc9Y78ysCW1dJk+xQvIWa6B1Rx9otxL55GBap/A=
Subject key identifier: 38:2F:B3:4B:4D:F1:EB:08:9F:D4:2F:AD:6C:FE:8B:41:F3:30:FE:93
Certificate issuer: /CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Certificate serial: 673F21B634A11E8FE2C2960BB89BC46EB13674B8
Authority key identifier: 34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3234203d3e203338313433.roa
Signing time: Tue 18 Jun 2024 11:00:00 +0000
ROA not before: Tue 18 Jun 2024 10:55:00 +0000
ROA not after: Tue 17 Jun 2025 11:00:00 +0000
asID: 38143
IP address blocks: 202.169.254.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:3f:21:b6:34:a1:1e:8f:e2:c2:96:0b:b8:9b:c4:6e:b1:36:74:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=342061B97FF97E5180511F38B0A0DCBAB1CE0325
Validity
Not Before: Jun 18 10:55:00 2024 GMT
Not After : Jun 17 11:00:00 2025 GMT
Subject: CN=382FB34B4DF1EB089FD42FAD6CFE8B41F330FE93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:20:70:30:1e:21:cf:86:15:c7:43:50:d8:7c:
6f:f2:b9:68:60:bc:91:ca:e8:0b:5f:4d:1e:61:3b:
67:1a:53:fb:6a:d0:fd:ee:d4:1b:19:ee:4c:a6:5c:
3d:cb:6e:bf:02:50:5f:f3:e5:e2:fd:d1:02:72:64:
3f:47:2b:5a:ee:57:96:d2:af:18:f5:21:87:87:09:
0f:19:c0:c5:65:e6:7a:ba:25:30:a6:c3:12:71:36:
2b:8d:6b:d7:f6:0f:85:de:b6:88:2e:eb:ee:85:93:
85:e6:8e:6c:ba:d7:d1:55:62:a8:d5:4c:93:3e:bb:
dd:3e:c3:6b:1d:3e:73:c5:45:47:d2:21:de:70:6a:
b5:1a:8a:d4:b6:37:4f:4f:ee:f7:e7:32:7e:0b:df:
a7:4b:6c:29:c2:db:6a:a1:a2:dc:0d:38:7e:18:8b:
a5:02:8b:71:94:6c:eb:8b:94:4a:bf:d4:b5:18:82:
ec:17:90:b7:8f:a1:f4:3f:1e:5e:5d:20:d3:ab:f2:
67:15:4a:4e:0f:90:29:fc:d9:76:83:40:4c:87:86:
e5:26:ac:ac:3c:30:41:ec:0d:03:e6:37:07:2b:9e:
85:da:4f:b2:72:de:82:4e:fa:9f:8e:4e:c2:0e:e2:
b1:1b:c3:03:7e:ed:2b:be:3c:32:28:ee:de:1c:ad:
ab:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2F:B3:4B:4D:F1:EB:08:9F:D4:2F:AD:6C:FE:8B:41:F3:30:FE:93
X509v3 Authority Key Identifier:
keyid:34:20:61:B9:7F:F9:7E:51:80:51:1F:38:B0:A0:DC:BA:B1:CE:03:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/342061B97FF97E5180511F38B0A0DCBAB1CE0325.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/342061B97FF97E5180511F38B0A0DCBAB1CE0325.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acb9a4b9-4ae3-467a-b919-410e142b679f/0/3230322e3136392e3235342e302f32332d3234203d3e203338313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.254.0/23
Signature Algorithm: sha256WithRSAEncryption
79:8c:db:63:c4:63:31:4d:e3:42:44:65:3b:08:6d:46:10:ef:
31:fe:17:49:c3:aa:0c:72:29:86:65:c6:4a:32:7a:2b:9d:40:
6c:f1:fb:86:60:1c:d2:59:e7:47:5d:df:38:23:ea:92:bf:6b:
fb:27:e2:54:00:ac:e3:50:f2:a9:25:87:12:f1:ba:34:ee:c6:
7c:8a:c8:ba:6f:50:62:31:80:4d:01:20:db:72:c0:d2:dc:31:
7d:5a:1d:a8:c4:f3:57:01:9e:70:9f:64:82:76:8e:f0:c2:8d:
d4:de:f3:e6:b7:e8:d5:74:5d:a0:13:4a:c8:9f:8f:e3:15:ca:
65:d2:d5:a9:3c:bc:ed:72:69:f0:23:dd:59:d7:cb:69:fc:dc:
ab:1f:34:0a:d2:70:37:2b:21:4e:a8:a8:d1:05:84:c1:e2:7f:
66:4a:76:28:08:62:82:dd:6f:a3:dc:9f:42:f6:1b:72:63:2a:
a0:39:4e:ab:97:87:56:0e:8e:2a:0e:ee:f4:b5:b5:e3:1f:72:
fd:5c:c8:2e:f5:0e:56:b5:18:f8:5d:55:6b:7c:fb:e2:90:a7:
cd:c0:ad:01:8c:7d:9f:2f:9d:7d:e7:ce:f3:a5:96:f2:4e:21:
85:b9:73:b8:f8:94:40:d4:7b:69:26:12:83:69:a2:30:61:6c:
8d:a9:8f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:10:38 2025 by rpki-client