Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32332d3233203d3e20323031333431.roa
File: 3230322e35312e36302e302f32332d3233203d3e20323031333431.roa (raw, json)
Hash identifier: 74adhrSbVzuFjVRQo3T/YKEFIp0ssVu9vw6ZXWstTjg=
Subject key identifier: 56:64:AC:09:42:F7:F7:83:06:46:09:CE:F3:FD:9D:68:5C:71:E7:F5
Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Certificate serial: 1E0BAEB8DB878672E6BA8812D7728CD5F187E489
Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32332d3233203d3e20323031333431.roa
Signing time: Wed 26 Mar 2025 06:00:58 +0000
ROA not before: Wed 26 Mar 2025 05:55:58 +0000
ROA not after: Wed 25 Mar 2026 06:00:58 +0000
asID: 201341
IP address blocks: 202.51.60.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:0b:ae:b8:db:87:86:72:e6:ba:88:12:d7:72:8c:d5:f1:87:e4:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Validity
Not Before: Mar 26 05:55:58 2025 GMT
Not After : Mar 25 06:00:58 2026 GMT
Subject: CN=5664AC0942F7F783064609CEF3FD9D685C71E7F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:74:6f:bb:7e:83:ff:2f:ce:4b:bf:4e:81:97:
ec:b2:11:61:7f:ab:62:01:81:88:59:1f:ef:dd:61:
eb:5e:e9:61:33:b8:66:25:02:d7:1d:fd:cb:ad:98:
08:de:0c:d5:a1:eb:8f:8f:63:32:d9:a9:6b:57:d4:
0e:6c:7f:9d:d8:1f:87:bd:73:3b:12:d4:e4:67:c1:
bf:00:f4:75:d8:a0:56:8d:6d:8f:52:b0:ad:c0:1f:
af:93:15:2c:f6:8a:66:3f:04:f7:67:7a:38:4c:9f:
7b:95:c9:cd:75:67:51:52:b2:3d:c7:1d:43:74:5e:
71:6e:65:54:66:f0:df:3d:c4:c7:7d:e9:f3:91:7c:
f7:ef:4a:b1:24:7e:a0:32:60:5b:45:a4:b4:9d:ab:
46:a8:9e:31:5a:50:3c:da:26:df:52:05:aa:d7:b4:
70:99:5d:d8:37:53:ce:e7:f8:cd:6e:0e:18:97:21:
0d:88:cf:c2:8e:50:2c:e7:42:d2:35:ae:3d:72:bf:
ba:29:79:5e:41:ed:e3:f0:ff:e0:e6:62:6a:a7:6d:
35:28:37:02:86:0a:ae:e0:61:1d:6e:79:61:1a:4c:
c2:a0:fd:1e:f1:e7:39:5d:0f:96:63:6b:fe:5c:cf:
d1:bb:8a:90:fc:ff:09:68:63:cc:a7:1c:66:13:83:
a2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:64:AC:09:42:F7:F7:83:06:46:09:CE:F3:FD:9D:68:5C:71:E7:F5
X509v3 Authority Key Identifier:
keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32332d3233203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.60.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:44:55:35:b5:29:d6:7f:2f:d4:8f:b7:97:64:5b:89:14:0b:
ad:45:ed:da:80:90:bd:6b:17:67:67:3f:e7:25:91:11:98:32:
f0:88:1b:79:07:a4:69:32:e4:e6:fc:8d:4a:3d:3f:a5:38:37:
2f:88:0a:0c:26:a7:79:7f:94:5e:49:57:e3:50:14:6d:b4:25:
4a:7a:ce:09:c0:68:44:c4:ac:8c:fb:d5:0d:22:9a:c7:81:72:
d6:ba:f1:f6:d3:9a:ca:20:e0:e0:b5:40:ad:b5:11:1a:49:82:
d7:af:c9:99:f8:48:6d:95:86:ae:c9:98:12:3c:e4:92:bb:d0:
8c:34:07:71:20:44:50:f8:dd:6a:c1:80:7e:95:18:b5:ae:d6:
4d:82:cb:ca:8d:77:4a:dc:90:32:99:81:b0:19:44:67:cc:8b:
e7:73:05:a3:79:19:ef:2d:3d:91:8c:15:ac:8f:28:81:9f:49:
97:90:f6:ae:21:ca:af:b3:5b:64:80:7c:28:f8:ca:43:b0:2b:
d4:74:70:ae:45:45:2a:46:d6:f6:46:4a:a8:c9:59:f5:bc:55:
fe:47:77:fe:26:15:5c:3a:8b:a7:94:15:88:eb:d2:ca:0c:14:
52:16:ee:39:c4:6a:b1:9c:5f:a3:a5:eb:2b:a5:d0:3d:35:ff:
b3:39:bd:6c
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUHguuuNuHhnLmuogS13KM1fGH5IkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3
QUM2NkE4QzAeFw0yNTAzMjYwNTU1NThaFw0yNjAzMjUwNjAwNThaMDMxMTAvBgNV
BAMTKDU2NjRBQzA5NDJGN0Y3ODMwNjQ2MDlDRUYzRkQ5RDY4NUM3MUU3RjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCdG+7foP/L85Lv06Bl+yyEWF/
q2IBgYhZH+/dYete6WEzuGYlAtcd/cutmAjeDNWh64+PYzLZqWtX1A5sf53YH4e9
czsS1ORnwb8A9HXYoFaNbY9SsK3AH6+TFSz2imY/BPdnejhMn3uVyc11Z1FSsj3H
HUN0XnFuZVRm8N89xMd96fORfPfvSrEkfqAyYFtFpLSdq0aonjFaUDzaJt9SBarX
tHCZXdg3U87n+M1uDhiXIQ2Iz8KOUCznQtI1rj1yv7opeV5B7ePw/+DmYmqnbTUo
NwKGCq7gYR1ueWEaTMKg/R7x5zldD5Zja/5cz9G7ipD8/wloY8ynHGYTg6IjAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUVmSsCUL394MGRgnO8/2daFxx5/UwHwYDVR0j
BBgwFoAUPmta8jH9gJ+8jlmSFbFNNXrGaowwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i
ZTU0MDE2NC0zZDQ2LTQ3OTQtYmY1NS1iNmIxMzRkOWFiMTMvMC8zRTZCNUFGMjMx
RkQ4MDlGQkM4RTU5OTIxNUIxNEQzNTdBQzY2QThDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvM0U2QjVBRjIzMUZEODA5RkJDOEU1OTkyMTVCMTREMzU3QUM2
NkE4Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNTQwMTY0LTNkNDYtNDc5NC1i
ZjU1LWI2YjEzNGQ5YWIxMy8wLzMyMzAzMjJlMzUzMTJlMzYzMDJlMzAyZjMyMzMy
ZDMyMzMyMDNkM2UyMDMyMzAzMTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcozPDANBgkqhkiG
9w0BAQsFAAOCAQEAX0RVNbUp1n8v1I+3l2RbiRQLrUXt2oCQvWsXZ2c/5yWREZgy
8IgbeQekaTLk5vyNSj0/pTg3L4gKDCaneX+UXklX41AUbbQlSnrOCcBoRMSsjPvV
DSKax4Fy1rrx9tOayiDg4LVArbURGkmC16/JmfhIbZWGrsmYEjzkkrvQjDQHcSBE
UPjdasGAfpUYta7WTYLLyo13StyQMpmBsBlEZ8yL53MFo3kZ7y09kYwVrI8ogZ9J
l5D2riHKr7NbZIB8KPjKQ7Ar1HRwrkVFKkbW9kZKqMlZ9bxV/kd3/iYVXDqLp5QV
iOvSygwUUhbuOcRqsZxfo6XrK6XQPTX/szm9bA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:05:00 2025 by rpki-client