Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137332e302f32342d3234203d3e203138303539.roa
File: 3230322e34332e3137332e302f32342d3234203d3e203138303539.roa (raw, json)
Hash identifier: Rf0Eq2IUNWHsuouLrCTBXB1QXdFPDoPiU81kLqfXltU=
Subject key identifier: 03:05:9A:46:1C:42:BD:F7:9B:1C:7E:C7:7A:84:D9:24:07:03:05:5E
Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Certificate serial: 4F673E8FDABD2451572B8DB0710320F331D77290
Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137332e302f32342d3234203d3e203138303539.roa
Signing time: Fri 25 Oct 2024 04:00:31 +0000
ROA not before: Fri 25 Oct 2024 03:55:31 +0000
ROA not after: Fri 24 Oct 2025 04:00:31 +0000
asID: 18059
IP address blocks: 202.43.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:67:3e:8f:da:bd:24:51:57:2b:8d:b0:71:03:20:f3:31:d7:72:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E
Validity
Not Before: Oct 25 03:55:31 2024 GMT
Not After : Oct 24 04:00:31 2025 GMT
Subject: CN=03059A461C42BDF79B1C7EC77A84D9240703055E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6a:08:55:13:81:55:11:d2:6f:2b:d9:b7:05:
cd:fd:ad:31:5e:31:b4:df:f4:06:ae:ae:f0:5f:c0:
d8:af:f0:c7:0b:37:57:8c:bb:fd:a1:ed:f0:30:49:
34:2b:0d:07:56:38:7f:c8:01:31:68:22:0a:a5:cb:
7e:8e:8c:2d:15:d8:7f:9f:e8:df:b5:09:08:08:e2:
12:65:d4:d3:69:0d:f0:84:c2:b1:75:07:45:65:3c:
51:c7:e4:b0:37:77:f2:0b:54:78:22:1e:c9:3c:a9:
a1:d2:4e:f1:3e:2d:5d:ac:f2:bd:c8:34:d5:15:58:
2a:e7:be:ea:9b:c2:67:e7:9c:2d:78:ae:82:34:7a:
a9:fe:60:27:6b:0d:4a:5f:3e:8c:17:f3:9e:b8:d3:
84:63:3e:d3:9a:09:f4:84:72:c7:9e:b6:11:eb:87:
7e:2f:3b:31:0a:83:99:52:ad:4d:60:b8:ab:f8:3e:
59:37:de:b9:65:c2:48:97:68:d6:c6:b3:6b:ba:59:
20:46:ae:d5:b7:05:b4:33:92:b3:f8:64:02:fe:c6:
9a:ac:2b:ea:31:0e:e7:01:39:d1:7d:8a:4e:9b:02:
e2:69:54:78:80:04:aa:97:66:26:3e:35:bd:2c:9c:
49:d0:02:df:33:cb:e3:b0:a4:bc:86:e0:6b:43:0f:
d5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:05:9A:46:1C:42:BD:F7:9B:1C:7E:C7:7A:84:D9:24:07:03:05:5E
X509v3 Authority Key Identifier:
keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/3230322e34332e3137332e302f32342d3234203d3e203138303539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.43.173.0/24
Signature Algorithm: sha256WithRSAEncryption
09:7a:ca:04:47:8c:f4:fb:32:d5:c4:6b:0a:e9:45:29:01:4b:
05:d1:65:87:4e:39:dd:bf:2e:81:66:ad:e4:1d:5a:df:c9:f3:
99:95:76:61:f7:0a:74:f2:d7:ce:2f:77:da:2b:32:d6:f3:e3:
34:9d:5f:b8:94:af:aa:67:90:67:6f:f5:a9:bd:2b:f1:a4:d1:
30:18:26:4a:bc:eb:f4:26:91:e1:f2:62:2e:84:0a:42:f2:d9:
3e:97:2a:7b:0f:13:de:81:26:9e:20:94:4e:d4:4b:23:84:c0:
f0:c1:90:44:f6:d3:4f:ac:8c:16:d4:aa:8a:16:55:2f:72:c5:
21:9e:c1:75:a2:22:21:af:9a:3c:a7:15:94:01:25:10:a6:f7:
3c:47:c7:c1:a2:5f:7c:53:71:cd:ea:df:11:07:3a:b3:28:29:
3d:8f:fc:6e:bd:28:ae:5b:14:26:c9:9d:0d:9c:29:a4:6e:86:
7c:30:c8:f7:ba:09:91:ea:cd:7d:dd:ad:73:71:df:10:4f:fd:
2e:07:07:aa:3e:73:fa:25:af:1b:0f:ee:34:af:b4:88:2d:00:
e8:42:b7:20:df:8d:c6:92:12:03:ef:9d:d8:09:2c:ac:35:1c:
1e:fd:88:08:43:e2:08:f5:ab:ff:9b:f2:9f:1f:c7:50:e0:7c:
ed:bc:0a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:27 2025 by rpki-client