Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32332d3233203d3e20323031333431.roa
File: 3230322e35312e36322e302f32332d3233203d3e20323031333431.roa (raw, json)
Hash identifier: FzI5GbnAo75yoelWpGp51ySqxG4wQ2wlQL4r6iiASgc=
Subject key identifier: 5A:61:12:11:68:4E:37:C5:31:BC:62:5E:1C:00:F3:02:5C:F0:D7:64
Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Certificate serial: 6457C3C3FB9759CBC8D2A358C906AC3179F1DE23
Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32332d3233203d3e20323031333431.roa
Signing time: Wed 26 Mar 2025 06:00:58 +0000
ROA not before: Wed 26 Mar 2025 05:55:58 +0000
ROA not after: Wed 25 Mar 2026 06:00:58 +0000
asID: 201341
IP address blocks: 202.51.62.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:57:c3:c3:fb:97:59:cb:c8:d2:a3:58:c9:06:ac:31:79:f1:de:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Validity
Not Before: Mar 26 05:55:58 2025 GMT
Not After : Mar 25 06:00:58 2026 GMT
Subject: CN=5A611211684E37C531BC625E1C00F3025CF0D764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ef:78:f8:5f:65:1d:d5:70:89:f2:73:5c:92:
4a:35:c0:ff:78:32:d6:c2:04:f0:04:45:9e:2b:3f:
11:7c:7a:29:01:e8:c7:7b:21:6f:96:1f:2f:f6:98:
cd:6d:f4:aa:4b:af:71:5c:3b:df:bc:8f:3a:8a:48:
be:cb:dc:a1:56:03:9e:43:58:e7:2f:93:74:d9:fb:
34:5d:0c:13:a4:15:6a:da:b8:f0:bb:de:f1:f6:fa:
37:35:50:a9:87:5d:ab:86:a1:3b:3b:13:d7:b7:48:
15:b5:ac:a3:82:83:ce:c7:54:0d:86:b1:89:41:c3:
80:98:c2:f4:40:c3:4a:16:20:3e:7f:82:d0:9f:34:
08:62:b1:ec:ec:51:f9:29:36:64:7f:be:30:93:75:
98:02:f3:63:07:31:60:76:de:be:1b:6d:22:66:7a:
7b:3a:90:e4:22:f8:47:9b:4c:65:f9:98:25:50:5f:
53:38:70:e9:86:32:ae:06:06:87:ab:de:de:8f:78:
fa:4f:ac:b8:54:5e:5b:9f:5b:37:21:57:c2:c6:d0:
2a:06:53:71:e0:1c:a0:46:4a:31:51:4f:25:2a:f4:
89:8b:0e:c9:29:02:93:59:be:9a:3b:61:54:b1:83:
91:a7:f4:9b:d2:29:92:b7:db:88:e1:ff:e5:18:e8:
05:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:61:12:11:68:4E:37:C5:31:BC:62:5E:1C:00:F3:02:5C:F0:D7:64
X509v3 Authority Key Identifier:
keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32332d3233203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.62.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:65:2e:79:cc:c7:16:d5:8f:0d:86:de:1e:30:69:ab:7b:4f:
0c:18:51:b6:da:e3:6e:94:0e:35:9d:23:b1:9c:87:63:18:d4:
32:8e:ac:9c:fd:2f:04:cb:4b:12:db:ef:4b:58:7f:54:90:d9:
e2:4f:04:56:32:ef:8b:ab:47:23:34:fd:db:d0:2a:ea:1d:bb:
e6:a9:77:3e:73:59:a0:bc:a9:14:85:cc:84:8e:94:e1:73:7a:
a0:87:db:51:1a:0e:9d:5b:c0:02:4a:1c:2f:dd:43:68:49:43:
bf:33:8f:5b:50:cf:59:42:86:07:e3:55:ab:1c:e3:6e:c2:41:
6b:6b:1a:38:b9:e2:2b:c5:d6:4e:51:a6:4b:52:39:f7:c7:32:
a6:83:b9:b9:bb:3f:f7:a4:32:e7:09:47:68:a8:52:c1:8a:4f:
5a:49:07:e6:9e:5b:37:bf:b5:7a:56:88:0a:a0:1a:94:05:b0:
ab:6d:fc:76:a1:a3:c9:f8:78:08:b6:d9:8c:ad:f2:2d:c6:e5:
63:99:52:40:8c:25:4b:de:29:20:80:cd:5b:62:e4:2d:fc:15:
6d:d7:d5:33:95:3b:34:00:b5:a1:1b:84:fb:d7:90:f8:7b:e1:
9a:7e:dc:03:71:79:9e:0b:4c:b2:9a:ff:9c:26:0a:08:5b:38:
fd:91:cc:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:29:25 2025 by rpki-client