Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa
File: 3230322e35312e36322e302f32342d3234203d3e20323031333431.roa (raw, json)
Hash identifier: gQMVqNF5pbofU8fWwfLf24IOx5Rve68FRF/gYFgAFMM=
Subject key identifier: B8:E3:3E:CE:2A:CE:B5:99:C8:2B:1D:82:1E:6C:AE:60:7F:FA:10:E9
Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Certificate serial: 704408A5837ECEDD91D6E3DE7235DC8ECDC4E53A
Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa
Signing time: Wed 26 Mar 2025 06:00:58 +0000
ROA not before: Wed 26 Mar 2025 05:55:58 +0000
ROA not after: Wed 25 Mar 2026 06:00:58 +0000
asID: 201341
IP address blocks: 202.51.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:44:08:a5:83:7e:ce:dd:91:d6:e3:de:72:35:dc:8e:cd:c4:e5:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Validity
Not Before: Mar 26 05:55:58 2025 GMT
Not After : Mar 25 06:00:58 2026 GMT
Subject: CN=B8E33ECE2ACEB599C82B1D821E6CAE607FFA10E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:de:f9:bb:ec:55:2b:46:9b:a9:b8:6d:00:a8:
f0:3e:56:16:7a:74:7e:0f:57:1c:2d:43:d9:3a:5d:
ec:83:5a:31:6c:de:eb:a7:c9:61:d7:c2:bb:d1:43:
9d:53:a5:dc:98:b1:40:e5:20:c5:c6:59:89:32:ad:
e7:16:18:a9:c9:7b:b5:58:b3:8f:d5:0c:5f:5d:8d:
4b:4b:18:07:9c:f0:8c:08:0c:19:5e:c6:b6:03:d6:
e0:5a:b0:73:61:69:42:b5:32:0f:ea:ad:84:4a:5f:
c8:89:d6:af:57:4e:21:3d:4f:b3:53:dd:f7:84:ef:
e6:88:f2:56:86:6d:ca:ff:b4:38:69:bb:ec:11:26:
13:e8:92:03:be:91:29:2c:f6:8d:2f:66:92:bf:5b:
56:ef:2b:09:22:ea:aa:56:e5:f7:a2:52:73:53:de:
0b:b1:cc:c8:21:fe:50:e6:c6:93:19:74:0b:ce:9a:
f0:a8:e8:32:bd:d9:34:5d:17:b3:6d:d7:d8:9c:cd:
66:6a:9a:ce:35:f7:5c:40:d4:8c:56:a0:35:e1:2b:
4d:77:19:c1:49:50:66:02:da:65:dd:79:d3:7b:0a:
0f:70:a8:16:28:be:99:44:44:1f:e8:1d:fa:4f:97:
a0:ef:6b:d9:7f:d4:e0:2c:89:2f:3a:83:ce:56:78:
33:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E3:3E:CE:2A:CE:B5:99:C8:2B:1D:82:1E:6C:AE:60:7F:FA:10:E9
X509v3 Authority Key Identifier:
keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e36322e302f32342d3234203d3e20323031333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.62.0/24
Signature Algorithm: sha256WithRSAEncryption
19:76:eb:cc:fa:bb:ce:9d:d9:2b:48:e0:f0:aa:05:b4:0e:20:
a1:b5:d6:9b:54:cf:b3:7f:ac:58:a2:35:fb:ef:40:44:8f:a4:
d2:df:d1:5b:a7:75:23:fb:e5:14:c5:d0:45:e0:8d:d2:32:57:
81:4a:c1:98:6f:c6:c8:91:8a:d4:98:0e:7d:49:ad:ed:71:05:
40:16:48:e9:b2:1d:f8:75:25:25:d7:79:4e:99:49:35:13:d7:
4d:4d:ba:2f:bb:71:d3:63:2a:07:b0:11:70:d6:bf:27:d7:cd:
d6:7b:7c:57:3d:99:e7:09:fe:4f:9a:71:3f:f4:cb:cf:02:40:
f7:aa:55:c5:f8:ca:f7:b8:7f:db:60:01:f0:36:97:9a:88:04:
d6:fe:99:be:c9:ec:06:54:8b:71:0a:40:81:bc:d2:bd:19:bd:
c8:c1:c5:87:f1:1b:c7:d3:60:35:3b:1a:95:9f:f3:ef:20:0d:
4a:52:f3:2f:54:cb:40:a5:e4:52:0c:6d:f5:c5:ca:d8:37:44:
5b:ac:83:ea:51:b7:15:f0:91:55:ba:7d:2b:0c:65:2a:1d:e1:
72:a9:ce:00:e7:40:de:05:02:67:a6:06:36:95:a2:0d:16:be:
0a:83:4a:af:53:22:5c:00:81:66:5c:78:fb:22:f9:b7:bf:b8:
6d:22:1c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:20:04 2025 by rpki-client