Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313337333633.roa
File: 3230322e31302e36322e302f32342d3234203d3e20313337333633.roa (raw, json)
Hash identifier: nLhutRrfS9r2dKSn2Kq+D+PygCRxUddD6gHurOJC1hg=
Subject key identifier: 8F:DE:5F:D2:DE:E3:97:67:E0:0E:05:FE:DC:53:1E:01:6D:C9:83:6A
Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Certificate serial: 2075A783E2D7A8B943E16E61A782B85E43AFBB9E
Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313337333633.roa
Signing time: Wed 19 Mar 2025 10:00:00 +0000
ROA not before: Wed 19 Mar 2025 09:55:00 +0000
ROA not after: Wed 18 Mar 2026 10:00:00 +0000
asID: 137363
IP address blocks: 202.10.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:75:a7:83:e2:d7:a8:b9:43:e1:6e:61:a7:82:b8:5e:43:af:bb:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Validity
Not Before: Mar 19 09:55:00 2025 GMT
Not After : Mar 18 10:00:00 2026 GMT
Subject: CN=8FDE5FD2DEE39767E00E05FEDC531E016DC9836A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9f:a2:26:94:0f:4c:c1:15:9d:3a:3c:38:53:
4f:ce:9c:62:ba:d7:e0:ff:16:d4:c8:4f:bb:ba:d0:
5a:f3:1e:22:50:44:2a:32:06:f4:91:64:10:ef:25:
53:a6:87:ce:6a:ab:b5:4c:3d:03:10:61:50:fa:9e:
a0:39:89:ca:88:e8:93:bc:73:2b:42:7f:22:3c:06:
19:08:2e:4d:8b:1c:bb:3c:64:f6:9a:d3:a3:ce:d0:
12:6a:af:fa:bb:d5:4e:ff:72:8c:b8:53:83:cb:19:
f4:8e:1d:f3:53:7d:fa:50:ba:4e:d2:f7:4f:02:f7:
e0:2b:b2:3d:77:d7:b9:fd:46:e8:3b:47:f4:88:42:
e9:49:8d:fc:fa:37:ee:14:52:82:61:57:37:bc:37:
62:2a:cf:14:32:0c:e7:cf:36:5a:9d:52:29:71:08:
95:ba:2d:12:a7:98:f3:fc:a0:52:67:bb:6d:bc:89:
c7:a7:63:3b:b1:c4:42:81:db:b1:f7:3d:ee:6e:b6:
6d:59:de:f2:10:32:34:8a:38:7d:86:a4:4a:f5:94:
34:8b:e7:06:0c:f1:e0:68:8b:c8:f3:1c:17:f8:08:
b8:8c:4f:79:1f:69:be:36:91:62:0e:b4:e8:66:7a:
d3:c7:66:98:0e:36:ba:f9:2b:39:86:43:d1:dd:6f:
a4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:DE:5F:D2:DE:E3:97:67:E0:0E:05:FE:DC:53:1E:01:6D:C9:83:6A
X509v3 Authority Key Identifier:
keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36322e302f32342d3234203d3e20313337333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.10.62.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:60:9b:bc:9e:bf:90:03:b6:fc:3a:d1:06:49:9a:02:67:7e:
5f:36:16:88:7c:39:62:4a:f9:fc:ff:44:19:2f:0d:da:b0:17:
7e:da:09:36:38:71:f1:2c:9c:ed:10:c8:fc:1c:ff:05:61:69:
78:02:66:e4:3b:00:4c:f9:94:ad:7c:ca:af:84:67:1b:97:88:
d6:3a:3a:48:45:64:6d:f2:fe:fb:43:11:56:04:48:a2:d5:d4:
c1:e7:54:8a:00:de:c1:af:96:d8:e1:d8:11:d4:65:34:03:f8:
68:d8:7a:5a:99:fb:91:7c:e5:0b:8e:47:d1:0d:a1:74:15:7c:
06:bb:18:cb:35:ef:8a:00:55:52:9b:26:83:a5:07:53:a7:16:
8b:b0:f9:53:cd:e0:08:c2:30:c6:e6:5b:6c:13:7e:8f:d8:2a:
15:ab:90:4c:4c:a4:bd:b7:59:4c:5c:bf:59:d3:8e:af:7e:cf:
59:cb:e9:a7:c1:59:ad:3f:86:9c:56:09:bd:87:16:1d:12:9f:
f8:e7:86:48:7b:d3:b4:26:fe:7d:8b:1a:9d:a4:91:99:f0:b8:
2c:97:1d:26:73:a4:da:71:0b:4f:da:be:6d:09:7d:92:6c:cd:
8b:16:5d:10:f9:01:de:c4:fe:2b:56:2b:20:0d:b2:e0:60:cf:
20:67:5f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:40:22 2025 by rpki-client