Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136362e302f32342d3234203d3e2039373934.roa
File: 3230332e3230312e3136362e302f32342d3234203d3e2039373934.roa (raw, json)
Hash identifier: f7QEHEeCC6gd5SgHRCwQQ2xiKRj0nDmBizNIQy8VD2k=
Subject key identifier: 27:C2:E3:66:0A:BA:CF:5E:5D:EB:05:62:BD:BA:A8:86:8A:36:B3:C8
Certificate issuer: /CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Certificate serial: 684FCB09945C624FF7BF8FB1FE02B874056D639A
Authority key identifier: 09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136362e302f32342d3234203d3e2039373934.roa
Signing time: Mon 01 Jul 2024 01:02:56 +0000
ROA not before: Mon 01 Jul 2024 00:57:56 +0000
ROA not after: Mon 30 Jun 2025 01:02:56 +0000
asID: 9794
IP address blocks: 203.201.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:4f:cb:09:94:5c:62:4f:f7:bf:8f:b1:fe:02:b8:74:05:6d:63:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09A6F1FA4FC532D6B4E13462FC234C9C763CF361
Validity
Not Before: Jul 1 00:57:56 2024 GMT
Not After : Jun 30 01:02:56 2025 GMT
Subject: CN=27C2E3660ABACF5E5DEB0562BDBAA8868A36B3C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:19:c0:5e:04:0b:02:8d:cf:2e:12:c9:6e:db:
5c:06:39:bc:1f:e0:93:57:c3:6f:dd:cf:37:46:6b:
9d:c1:03:8f:7b:aa:fd:eb:45:6b:cd:6d:51:d6:7a:
7d:28:ec:f2:47:6c:5a:57:33:02:e6:1b:bb:7e:ce:
04:3b:c5:5e:ad:3c:7e:dc:ed:c4:27:79:87:46:63:
64:d2:3f:b1:e0:18:f8:ec:2b:aa:dd:5d:dc:87:bd:
1f:3b:6c:c2:71:cf:31:db:cd:4c:56:bf:f8:6f:fd:
72:93:9d:0d:16:44:ba:62:9b:a9:ad:d3:60:2d:8a:
44:3c:a1:68:46:49:15:55:65:5d:fc:36:cc:55:ca:
1b:46:29:87:b2:af:6c:66:8b:25:91:8b:f6:1a:37:
61:ad:67:db:a8:7c:37:9c:cc:f8:25:5d:97:a1:c8:
18:61:45:a0:15:f9:06:06:f9:cb:c0:1a:80:19:25:
af:17:91:c4:91:95:70:a5:8e:bd:39:72:9f:85:c7:
ab:8a:fc:f2:8a:de:d4:f4:41:0e:8f:da:95:7c:0f:
bf:8b:cf:08:16:dc:1e:f8:d9:ce:80:be:f1:29:a5:
e0:6d:8f:50:f7:5a:2c:4d:48:e6:29:f2:fe:f8:5c:
f5:be:55:43:ad:b8:06:4f:b0:74:fd:0e:ee:21:18:
8e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C2:E3:66:0A:BA:CF:5E:5D:EB:05:62:BD:BA:A8:86:8A:36:B3:C8
X509v3 Authority Key Identifier:
keyid:09:A6:F1:FA:4F:C5:32:D6:B4:E1:34:62:FC:23:4C:9C:76:3C:F3:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/09A6F1FA4FC532D6B4E13462FC234C9C763CF361.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34ecc40-6b84-49e8-b60b-6e9904128ca8/0/3230332e3230312e3136362e302f32342d3234203d3e2039373934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.201.166.0/24
Signature Algorithm: sha256WithRSAEncryption
53:12:90:a1:f5:4f:c0:bd:f7:a4:9b:d2:84:88:68:09:cc:d1:
1a:0e:8f:3e:82:4b:2b:5d:22:d4:1f:d2:73:63:41:98:ab:fc:
f8:d6:f8:ab:8e:0b:7d:4a:5f:82:69:85:95:cc:39:75:98:23:
15:1b:92:93:d9:9f:b0:24:5a:cc:87:37:e9:43:81:73:5d:e4:
27:ff:86:18:a4:00:54:14:b1:b5:07:bb:b4:03:0a:88:fe:3b:
60:93:13:b5:b4:c9:77:e1:02:2c:43:85:c9:f2:a8:cd:1f:4e:
29:3d:7c:01:88:0a:17:9d:e6:63:0a:71:0f:c5:ff:c7:01:9f:
26:0e:bf:25:3f:00:d3:ac:af:cd:89:91:68:a2:d8:1c:e7:3e:
fd:df:a6:e7:32:66:92:7d:bd:0e:7a:13:c9:51:8c:93:ba:31:
8c:92:74:c4:68:ae:7f:f7:72:97:af:35:e9:32:18:56:c3:77:
c8:34:a0:93:a6:b2:c8:71:2a:a5:55:ba:3d:93:89:52:51:6b:
11:d9:9f:4c:fb:e9:72:d4:1a:cc:b6:f8:c8:15:2e:8e:cc:8a:
3f:78:e8:ff:f7:e4:9b:c3:d1:f2:40:4a:65:a2:ca:f4:55:2f:
4f:09:bf:b9:bc:2d:e5:d3:1c:ce:c3:df:9a:5c:8f:b6:67:34:
e2:40:3e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:56:52 2025 by rpki-client