Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32342d3234203d3e20323031333431.roa
File: 3230322e35312e36302e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: YHuUg4uxFrthFFepE05C4PM9gH2UZAw5dOg3ZxdbMHs=
Subject key identifier: DF:D0:39:57:A0:EC:D3:F3:33:DF:F5:02:3C:97:05:7A:41:9E:63:1D
Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Certificate serial: 4FE83D6A741D7B1D19AB7062C0B1548AFC0D93E7
Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32342d3234203d3e20323031333431.roa
Signing time: Wed 26 Mar 2025 06:00:58 +0000
ROA not before: Wed 26 Mar 2025 05:55:58 +0000
ROA not after: Wed 25 Mar 2026 06:00:58 +0000
asID: 201341
IP address blocks: 202.51.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:e8:3d:6a:74:1d:7b:1d:19:ab:70:62:c0:b1:54:8a:fc:0d:93:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Validity
Not Before: Mar 26 05:55:58 2025 GMT
Not After : Mar 25 06:00:58 2026 GMT
Subject: CN=DFD03957A0ECD3F333DFF5023C97057A419E631D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a7:88:89:e4:53:ca:bd:3e:e9:6d:36:7e:0c:
55:ff:ad:cb:9e:f9:92:60:5f:12:b0:65:14:3d:65:
6b:0a:64:f3:97:75:62:78:cf:10:f6:a7:5a:8c:4e:
41:08:2b:14:57:b1:d3:65:dc:d4:38:55:da:5d:50:
e2:1d:ba:d1:92:54:85:c5:a3:aa:a5:32:bc:8c:fc:
15:93:01:a3:2c:e1:20:12:47:87:b5:c0:79:d6:75:
ad:1d:aa:2b:c8:75:4f:d9:6f:94:1f:c1:d9:db:c0:
55:5d:01:52:5f:a8:03:a7:b9:37:a4:5a:08:f9:da:
fc:26:10:49:62:8f:69:8e:85:ac:a6:20:03:32:88:
07:04:0d:18:c6:f5:b2:69:fe:09:0b:81:d1:26:51:
ca:fc:6a:53:3a:fc:17:3d:f1:a8:1c:53:13:62:7b:
8d:a7:31:63:6f:42:58:61:8b:ad:e1:e4:d3:5e:ec:
c5:03:fd:0e:79:c1:df:eb:de:40:f4:38:f1:df:a7:
38:60:fd:c8:d3:44:cd:b1:62:61:30:ad:05:26:d9:
25:f4:00:a4:f6:ed:b8:9b:ce:e0:d4:db:5e:35:6a:
bd:55:e6:d9:0a:70:63:1f:7b:46:63:c5:84:e5:fd:
c2:43:29:41:f7:9d:2f:c1:d5:e0:61:8c:51:1f:49:
83:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D0:39:57:A0:EC:D3:F3:33:DF:F5:02:3C:97:05:7A:41:9E:63:1D
X509v3 Authority Key Identifier:
keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36302e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.60.0/24
Signature Algorithm: sha256WithRSAEncryption
23:6f:f9:97:91:40:06:76:27:e7:8c:13:60:20:08:69:ba:f7:
9f:e6:1d:c8:ca:1a:b9:0e:8c:b1:29:c7:e0:9b:4c:40:cd:1c:
b3:1b:3a:bd:c7:a2:03:f8:ad:89:c6:d4:c7:8b:e9:13:1a:9e:
b7:2e:48:09:7a:f3:77:52:ea:4e:db:4d:58:96:13:b2:4c:0b:
fd:38:f9:b8:cc:08:49:42:0b:82:92:67:29:8e:d0:b3:85:b2:
67:36:68:e0:28:04:4e:c1:38:a2:e9:31:5f:11:3f:b7:20:bd:
be:da:f4:18:d4:e2:1f:e1:dd:48:5b:55:4b:02:9f:f7:df:f6:
b5:93:b4:70:c5:88:d6:00:8c:79:00:e3:d7:54:65:df:d1:f0:
80:57:47:a5:9a:94:23:c0:3c:0c:fa:5b:9d:02:01:53:24:db:
63:ce:5a:77:86:d0:32:41:65:46:69:1d:1d:bc:9f:66:4e:18:
7f:c1:a2:11:27:ff:bb:b0:82:50:3f:bd:2f:3a:d9:34:ba:43:
43:ad:a0:38:0b:fa:b0:e0:0a:82:39:c5:46:95:9a:6e:b3:e7:
fa:97:be:79:d4:d0:10:44:ba:11:1f:17:e6:fe:82:bd:9e:ae:
66:f3:77:7b:e2:0e:8d:f8:c9:54:fa:54:61:b7:b1:13:8b:43:
6b:fa:4f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:48:02 2025 by rpki-client