Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138342e302f32342d3234203d3e203338343936.roa
File: 3230322e38372e3138342e302f32342d3234203d3e203338343936.roa (raw, json)
Hash identifier: B7DCIen0uFMY9OtOcgD6rgv+gffpmR4ia2mta2Y4rqE=
Subject key identifier: 23:86:B7:79:E2:13:1A:6F:71:A7:ED:1E:23:98:CB:9F:3E:5B:4F:37
Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Certificate serial: 1D2365C5BF3169396582D490510490BBC0876395
Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138342e302f32342d3234203d3e203338343936.roa
Signing time: Sat 08 Mar 2025 06:01:49 +0000
ROA not before: Sat 08 Mar 2025 05:56:49 +0000
ROA not after: Sat 07 Mar 2026 06:01:49 +0000
asID: 38496
IP address blocks: 202.87.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:23:65:c5:bf:31:69:39:65:82:d4:90:51:04:90:bb:c0:87:63:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Validity
Not Before: Mar 8 05:56:49 2025 GMT
Not After : Mar 7 06:01:49 2026 GMT
Subject: CN=2386B779E2131A6F71A7ED1E2398CB9F3E5B4F37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:87:15:7e:8b:89:b3:a1:de:98:18:b7:2f:72:
07:dd:ea:47:75:10:03:bc:09:0e:59:6a:55:d6:35:
25:20:d7:82:6a:0d:f6:eb:7b:eb:ca:44:7c:17:26:
9d:f7:19:30:c6:fe:f6:4d:45:10:0e:fb:dd:1e:ae:
33:de:4a:ab:28:84:5d:a1:08:51:dd:22:62:f0:09:
5d:b9:cd:c8:83:c8:2e:72:a3:63:54:c4:1d:eb:51:
0b:7a:b5:7e:67:b8:14:10:d9:df:a2:8b:93:d7:d3:
0e:91:3d:b2:02:ee:27:02:41:48:f0:0b:90:7f:27:
f7:c9:b2:bd:8b:e3:c9:75:f4:50:d6:06:ec:08:83:
f4:8d:23:b2:4d:b3:8b:a0:4d:e3:a7:93:f9:59:2c:
26:ad:dc:22:47:15:44:0e:81:27:61:be:9e:8c:68:
53:83:20:69:66:ee:0d:0a:06:36:5c:19:e7:47:64:
a1:d3:b3:2c:c2:35:5e:88:36:01:cb:35:1d:d8:08:
3d:c1:53:60:b8:4c:54:75:0f:a5:55:82:3e:ee:c1:
53:68:4f:28:ae:fe:98:ea:e3:46:13:f1:c8:8e:5a:
ee:19:83:9b:f6:7a:d3:b5:b6:d3:27:ec:32:f3:97:
db:95:0b:38:23:1c:fd:0f:64:98:29:ec:e3:be:9a:
57:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:86:B7:79:E2:13:1A:6F:71:A7:ED:1E:23:98:CB:9F:3E:5B:4F:37
X509v3 Authority Key Identifier:
keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3138342e302f32342d3234203d3e203338343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.87.184.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:fb:6e:36:3b:9f:07:73:02:f2:56:16:5d:eb:70:c2:ee:b0:
ae:26:ba:52:64:f5:8e:eb:2c:23:db:21:ee:24:84:a9:1c:9e:
71:cb:fe:76:fe:ea:7a:e1:ae:1d:34:80:8e:81:50:38:3f:fd:
cd:6f:d1:62:75:aa:8b:ff:6f:f2:c6:32:d3:64:26:f8:eb:04:
99:b9:63:83:9d:e4:f0:57:1a:d0:20:a1:26:5b:04:10:a5:9f:
21:78:71:b9:81:50:a6:a1:a2:fa:1f:9b:1d:31:c7:33:11:40:
06:79:ad:1c:c3:76:4f:45:1d:9e:d0:82:c3:b3:a0:d5:b2:00:
dd:b8:6a:24:42:ed:b8:f5:4d:44:70:8f:96:df:18:49:51:b7:
e2:b2:d7:9b:fc:8c:3d:d9:e0:e8:b8:cf:48:1b:09:d9:c1:0b:
3b:f7:0b:93:cd:33:da:0c:cc:ff:d4:02:a0:a1:5d:08:d2:61:
89:c5:ad:b9:8c:4e:2e:ad:ae:48:df:38:50:43:2c:71:06:33:
c7:b7:41:90:1d:b9:1d:17:7e:fc:17:51:ce:31:fe:55:c1:c4:
41:11:62:9b:dc:b6:63:2a:3a:a4:f0:1c:da:af:5a:1d:6e:c5:
9b:96:cd:93:e8:78:b2:9c:1e:79:9c:ff:b5:a0:ef:39:72:0e:
f4:bd:00:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:24 2025 by rpki-client