Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa
File: 3230322e35322e3134362e302f32332d3234203d3e203435333234.roa (raw, json)
Hash identifier: iyuYI15kkpPbO7NUigKqskqQQ4plk9btKYZQ0Pd1YJg=
Subject key identifier: 82:1C:6C:95:6B:59:B1:1D:77:40:0A:5B:D7:F6:7A:76:03:80:54:5B
Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06
Certificate serial: 4FB8BB1B8A46C32C9B074A6E2A8527188D133323
Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa
Signing time: Fri 09 Aug 2024 07:02:22 +0000
ROA not before: Fri 09 Aug 2024 06:57:22 +0000
ROA not after: Fri 08 Aug 2025 07:02:22 +0000
asID: 45324
IP address blocks: 202.52.146.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:b8:bb:1b:8a:46:c3:2c:9b:07:4a:6e:2a:85:27:18:8d:13:33:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06
Validity
Not Before: Aug 9 06:57:22 2024 GMT
Not After : Aug 8 07:02:22 2025 GMT
Subject: CN=821C6C956B59B11D77400A5BD7F67A760380545B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8c:a2:e6:4a:6e:cb:ac:09:ee:9f:ba:be:fc:
4f:9e:e0:b4:96:55:cc:d4:54:b9:f6:0c:3f:e5:81:
8f:35:93:94:76:28:f1:e1:00:94:39:e5:5f:a8:07:
06:60:24:d5:a7:05:e3:bf:1f:b0:76:27:3d:48:02:
cd:25:3d:4c:0f:7b:03:ec:ed:e4:32:43:51:5d:8c:
db:22:79:c9:ec:11:cd:43:8e:3c:3b:fc:ef:30:bd:
17:08:b1:43:72:35:d1:ca:63:59:bb:0d:b0:d9:24:
4a:09:0c:cf:7e:08:f4:47:db:4f:0d:ea:ad:8c:a1:
cf:97:a2:b1:4f:3b:73:cd:36:64:8e:50:38:a1:50:
72:2a:b5:28:91:52:52:08:8d:a0:f1:df:8f:b6:4d:
59:b7:02:ae:d9:01:e5:16:84:cd:25:57:2d:9c:a6:
4f:98:7f:97:c9:52:d2:d3:f6:ba:fa:bc:93:b2:c2:
a9:04:c8:3e:1e:76:97:f8:69:4d:50:52:79:c9:51:
6b:00:6e:f1:e6:64:97:34:ce:08:a7:75:f1:c8:3e:
e5:19:b3:94:d9:53:71:ff:36:a1:e3:26:bb:9a:46:
71:00:d6:63:19:58:0f:a4:10:26:28:3c:81:30:a3:
6e:f3:b6:7e:f1:96:4d:b6:24:d3:73:06:64:ae:df:
e7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:1C:6C:95:6B:59:B1:1D:77:40:0A:5B:D7:F6:7A:76:03:80:54:5B
X509v3 Authority Key Identifier:
keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3230322e35322e3134362e302f32332d3234203d3e203435333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.52.146.0/23
Signature Algorithm: sha256WithRSAEncryption
cf:10:7b:cf:34:90:14:32:55:e1:2a:cf:5b:2c:b3:f6:16:20:
ed:e1:81:41:8a:39:86:e9:8c:df:07:7d:b5:d5:a7:66:58:3e:
05:01:b6:f8:45:92:f6:65:c1:62:d0:18:0a:b6:52:07:e3:24:
51:63:60:90:8a:af:80:8e:12:52:c3:3a:63:1c:6b:24:ba:e6:
68:a1:b3:e8:0a:ce:36:ee:ea:dd:f4:be:45:49:e9:28:82:6b:
61:1c:f9:6d:30:be:4a:62:de:5b:d0:54:a6:e9:a5:7d:c3:72:
aa:e8:16:9b:76:c0:62:cb:18:f4:24:2e:92:71:fb:92:01:a8:
ac:79:7b:26:2b:7f:97:bb:9c:f3:39:c6:5a:ae:fa:41:f2:4a:
ce:e0:84:f0:4e:66:41:32:90:8c:40:0b:f5:52:f2:12:c7:26:
95:c7:a6:b1:3a:c7:9f:95:01:af:7b:f4:3e:93:eb:e6:3c:82:
ac:07:51:b9:a0:71:a0:a5:64:6e:c2:46:fe:d1:46:56:03:d1:
d5:f9:18:50:d1:df:71:ee:b5:27:af:64:75:1d:22:30:27:23:
40:68:a3:93:9b:43:b8:3e:3a:78:0e:5a:48:98:0a:71:f6:46:
31:d3:6d:4d:da:5b:0f:7c:78:86:04:72:6f:16:a4:6b:ae:fa:
9d:84:ca:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:59:15 2025 by rpki-client