Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa
File: 3230322e34332e3136322e302f32342d3234203d3e203138303539.roa (raw, json)
Hash identifier: CR9ubqorVqEU2vdXQ48VMFE8nsjBOl5w25OZu8U28lg=
Subject key identifier: 47:E6:B6:93:43:64:7E:13:B4:9C:7F:07:50:99:FA:C8:0F:A7:97:05
Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Certificate serial: 66C523141871946365054E2ECF441BD00C20F786
Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa
Signing time: Fri 25 Oct 2024 04:00:31 +0000
ROA not before: Fri 25 Oct 2024 03:55:31 +0000
ROA not after: Fri 24 Oct 2025 04:00:31 +0000
asID: 18059
IP address blocks: 202.43.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:c5:23:14:18:71:94:63:65:05:4e:2e:cf:44:1b:d0:0c:20:f7:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Validity
Not Before: Oct 25 03:55:31 2024 GMT
Not After : Oct 24 04:00:31 2025 GMT
Subject: CN=47E6B69343647E13B49C7F075099FAC80FA79705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:01:6c:6b:dd:42:37:9d:bc:fc:47:02:76:20:
1a:19:48:6d:e3:3b:9d:43:d8:6a:ad:85:2e:80:90:
86:a9:08:12:14:2a:09:5d:71:1c:da:ca:ac:68:2b:
47:62:91:5d:7f:ec:84:b3:ef:4d:51:a4:08:4c:d6:
38:c0:27:1a:b7:37:9f:ba:e8:be:f7:80:e7:2d:b2:
b8:f0:1d:af:cd:fe:d5:2a:d2:74:7f:b1:eb:f9:1e:
1d:f3:58:86:4e:4f:e4:8e:8a:ab:50:a3:95:5d:6b:
90:ff:27:fd:23:2c:24:50:2b:bb:83:af:e8:34:22:
c3:60:6c:08:83:52:19:3f:e7:4f:0d:91:c6:6a:a6:
de:b5:0b:e1:02:49:cf:32:ba:cd:3a:ac:fd:57:8d:
fe:ff:ff:09:ef:69:c5:44:7c:57:df:1b:d2:f4:07:
0b:31:14:da:37:6b:f0:39:dd:24:8b:a9:b0:cb:99:
83:b3:d2:e5:9a:ba:5c:8f:90:47:30:e4:13:21:e4:
86:92:39:b5:63:17:34:f0:74:50:f5:28:56:2a:b9:
2a:ae:06:e4:a7:df:67:64:61:af:e1:b6:52:7f:16:
43:6c:e7:33:38:d9:97:6e:9a:11:0a:cf:88:a2:b2:
87:d9:aa:26:23:72:79:ae:8d:e0:ab:0d:c8:1f:f1:
ba:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E6:B6:93:43:64:7E:13:B4:9C:7F:07:50:99:FA:C8:0F:A7:97:05
X509v3 Authority Key Identifier:
keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3136322e302f32342d3234203d3e203138303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.43.162.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ab:03:b8:47:7a:53:87:31:d0:8a:6d:f5:5a:1f:a8:40:d7:
dd:22:5e:1f:30:f3:54:e2:6e:ab:73:f6:b0:24:80:04:26:64:
38:b4:ee:d6:8a:6c:24:07:47:6b:ee:ac:d9:1b:c9:8e:95:a1:
af:57:19:b7:4b:9c:5e:92:5f:6e:5e:87:25:4a:6f:76:1a:c7:
78:51:4d:6f:0c:c6:2c:90:7c:70:d0:ff:78:5b:5a:1f:21:4b:
30:51:51:c2:41:ff:b3:14:05:b2:29:64:01:a3:4a:0f:f2:5a:
54:b2:36:fb:2e:a3:71:c9:e2:65:cf:d0:fe:13:fb:77:8f:2d:
55:c5:a0:4e:1f:54:94:a3:45:5b:81:c5:c5:1f:6a:2e:86:43:
59:a4:0c:62:8b:b4:83:eb:68:04:f4:6b:17:5e:24:db:61:99:
9e:6e:69:7e:48:67:44:b1:50:2d:63:69:36:f0:2d:ea:81:24:
c2:a9:cf:64:33:4a:59:3d:a3:ba:b2:a9:17:4a:fe:44:87:bc:
10:9b:dc:ad:1f:65:0c:4c:8c:05:e5:09:25:71:da:4d:82:03:
a0:54:4c:f5:b0:7b:1b:6a:da:45:d7:1f:2d:97:99:00:72:c7:
6a:37:44:50:fa:c4:a3:e1:c5:c2:cc:15:93:54:d3:9c:7f:2e:
b7:88:9d:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:16 2025 by rpki-client