Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230322e3134352e362e302f32332d3234203d3e203535363636.roa
File: 3230322e3134352e362e302f32332d3234203d3e203535363636.roa (raw, json)
Hash identifier: vJEkgcLpU3cf/IfScJ12Mu6c2mkTNJRJxXf7tOrvqsU=
Subject key identifier: C3:CB:4E:2C:46:32:ED:28:E1:B8:98:EB:5C:68:D6:47:E8:18:5C:DC
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 3A3BBCE18E06C1893E269B66A95E1F3B7C24319E
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230322e3134352e362e302f32332d3234203d3e203535363636.roa
Signing time: Mon 01 Jul 2024 01:06:11 +0000
ROA not before: Mon 01 Jul 2024 01:01:11 +0000
ROA not after: Mon 30 Jun 2025 01:06:11 +0000
asID: 55666
IP address blocks: 202.145.6.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:3b:bc:e1:8e:06:c1:89:3e:26:9b:66:a9:5e:1f:3b:7c:24:31:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Jul 1 01:01:11 2024 GMT
Not After : Jun 30 01:06:11 2025 GMT
Subject: CN=C3CB4E2C4632ED28E1B898EB5C68D647E8185CDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:36:7c:84:17:35:62:f3:85:34:bd:59:1b:9b:
98:38:e2:45:27:02:82:a3:7a:c4:fc:51:82:fb:43:
d3:1b:04:15:65:1c:8f:2a:fb:6d:db:09:81:88:df:
2c:3a:13:56:c2:d2:be:e0:44:3e:6c:9c:9e:35:81:
36:fb:21:13:4c:8c:73:4c:e4:1f:8c:1b:d5:4a:02:
a0:a5:9a:95:c2:2d:c8:df:02:2d:17:cd:d7:bf:11:
5d:52:30:55:6e:95:38:ba:d1:2f:d5:ef:90:69:4d:
a1:09:bb:28:d5:f6:5d:69:cb:5a:34:77:2c:0a:d3:
d1:2e:02:4a:8d:62:70:47:6f:2e:14:39:73:8a:58:
f8:3f:96:8d:35:3c:1e:51:4b:5c:96:1c:d6:c5:19:
e9:74:ee:e1:bf:35:69:25:5d:06:d7:44:42:e3:b5:
12:37:88:56:a4:40:34:50:d3:54:3e:69:55:2a:95:
c7:d7:ee:2a:c7:c8:c8:86:1e:45:49:a8:7b:fd:d5:
31:2c:d3:68:d4:f9:a3:62:5e:62:48:da:98:eb:16:
e4:9c:a8:0a:c4:89:f6:ca:13:5e:c1:56:4f:4a:59:
60:e6:4d:7d:70:ec:4c:17:a2:7b:25:c5:09:a7:28:
c3:71:47:15:d4:57:2a:d9:aa:1d:99:49:bc:a3:7c:
c2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:CB:4E:2C:46:32:ED:28:E1:B8:98:EB:5C:68:D6:47:E8:18:5C:DC
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3230322e3134352e362e302f32332d3234203d3e203535363636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.145.6.0/23
Signature Algorithm: sha256WithRSAEncryption
29:fd:07:2d:84:2c:ca:be:91:21:18:17:36:c2:c7:92:7b:ed:
7f:55:6e:f5:8a:7d:a5:bb:e8:a3:98:80:7e:74:cb:79:ae:92:
b7:5c:cc:f9:fc:e2:5a:e3:0e:46:5e:56:da:a8:8e:fb:4b:c0:
fd:d9:18:a7:b4:f7:46:df:50:68:ad:9d:d8:c4:37:8c:e1:08:
b1:24:b1:78:e1:a8:d2:f1:99:9d:5a:0a:92:49:af:ce:93:3c:
27:6b:e1:a5:a3:25:59:77:f6:cc:47:c6:e4:4b:b2:48:ab:6f:
b8:35:3a:a5:a1:a5:06:01:48:5d:13:06:d6:38:24:e2:93:89:
da:67:16:d7:ce:8e:ca:1a:21:5f:d9:7f:1d:16:46:2a:93:26:
de:79:3e:18:81:89:5b:52:55:60:a8:c7:f9:7d:a0:e1:e5:7e:
55:65:87:f5:8c:df:e7:d4:93:92:15:89:00:67:61:26:c9:2f:
04:1f:c0:0d:c5:b5:dc:89:59:19:fc:44:18:93:17:f2:ad:26:
c8:09:cc:89:36:42:15:59:78:04:33:48:9c:9c:5d:50:d4:5f:
94:18:15:27:17:3f:7d:4e:de:23:3c:7a:4a:3c:cf:8c:18:17:
59:36:2e:e2:48:28:6f:1a:0f:b4:d3:f4:41:2c:49:c9:c7:e1:
07:29:f1:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:10:54 2025 by rpki-client