Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa
File: 3230332e3134352e36332e302f32342d3234203d3e203436303233.roa (raw, json)
Hash identifier: WAJ22gxcIZsLrG3fwFj6LAYpg0sHhVFWhpG6gRBIpI8=
Subject key identifier: FC:52:C3:33:15:2E:37:40:11:A9:7A:25:69:59:0F:C6:18:15:97:C8
Certificate issuer: /CN=21AB9EB0A860D2619CF210410608EB831A463442
Certificate serial: 3AA111C3D45AA9F449C562101650890A35DA9C5B
Authority key identifier: 21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa
Signing time: Tue 05 Nov 2024 12:05:36 +0000
ROA not before: Tue 05 Nov 2024 12:00:36 +0000
ROA not after: Tue 04 Nov 2025 12:05:36 +0000
asID: 46023
IP address blocks: 203.145.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:a1:11:c3:d4:5a:a9:f4:49:c5:62:10:16:50:89:0a:35:da:9c:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21AB9EB0A860D2619CF210410608EB831A463442
Validity
Not Before: Nov 5 12:00:36 2024 GMT
Not After : Nov 4 12:05:36 2025 GMT
Subject: CN=FC52C333152E374011A97A2569590FC6181597C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d8:b2:f2:a0:0f:05:89:0a:35:36:5e:c5:a5:
73:5b:7f:0a:c0:c7:e6:62:8f:0e:d4:99:c0:8c:e1:
cd:27:a0:5e:e1:6f:5f:95:22:7e:86:8d:25:d3:6a:
b4:6e:d5:54:c4:6c:88:27:f7:2c:44:c1:5e:e4:c8:
7a:0d:7a:f8:c3:09:89:a6:3e:3b:44:0d:06:2e:bd:
31:65:cf:b6:c4:19:ab:12:bf:50:b8:4e:67:b0:cf:
71:e6:22:c8:db:f9:45:7e:02:ed:f0:3a:81:c9:bc:
11:94:05:a6:20:ef:39:1f:8e:3a:9b:90:fd:7e:c2:
db:d1:2e:ac:62:ad:e9:b8:35:e2:44:6a:63:cc:14:
02:a9:d9:cb:f2:b6:0f:49:49:ef:8d:5e:e5:3c:f0:
b0:15:de:f2:19:e2:4e:d3:99:c5:19:e9:ed:f3:e7:
82:34:30:97:fd:c2:9f:62:03:4b:70:75:e6:a1:46:
31:ee:2c:6e:a7:87:3d:d9:41:9a:89:52:f3:80:d2:
dd:5a:05:00:b1:6a:f5:6c:f5:fd:b7:65:71:4b:2c:
50:90:7b:15:4b:87:2f:58:dc:f3:7d:90:df:b1:e4:
7f:6b:28:1d:42:5f:09:69:dc:80:d0:f4:8d:66:a7:
f8:05:1b:86:12:a2:2a:ad:ce:9c:70:87:46:43:c9:
5e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:52:C3:33:15:2E:37:40:11:A9:7A:25:69:59:0F:C6:18:15:97:C8
X509v3 Authority Key Identifier:
keyid:21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36332e302f32342d3234203d3e203436303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.145.63.0/24
Signature Algorithm: sha256WithRSAEncryption
62:68:5f:3a:1a:c6:20:1b:38:81:97:50:49:48:62:0f:86:b7:
03:fe:4d:c9:2f:91:ee:58:07:34:86:43:4c:87:50:c4:d0:19:
f7:8e:92:ef:4a:15:66:cc:2f:2a:a7:bb:85:7d:0b:bb:ad:59:
e5:40:07:d1:c8:1c:88:14:37:89:f6:24:4a:0a:f0:07:64:c8:
93:44:9c:27:82:92:c5:5e:44:be:77:ab:1b:5e:f5:40:05:7a:
ad:bb:3d:a2:b7:3b:6b:4d:de:1c:11:67:80:f0:c0:fc:f8:61:
69:e0:0f:9e:3b:3f:b3:17:e4:ce:09:f4:92:f7:58:19:47:21:
4d:f3:eb:b8:51:db:c8:6c:90:51:70:1e:4a:18:e6:31:8c:90:
bb:51:67:01:aa:51:65:13:1a:e3:d6:9b:00:50:0c:13:95:6a:
8c:06:3a:73:5e:18:f8:22:e0:2d:00:47:fc:04:c6:f6:72:2a:
1c:ba:80:cf:96:82:03:e5:69:5a:22:05:24:96:e1:51:24:be:
66:21:e0:24:14:b8:80:4d:1d:ac:91:03:9c:80:8b:20:7e:a0:
9b:b2:e4:84:30:86:03:e1:56:45:00:19:09:1c:e4:3b:63:b1:
ea:55:8e:3c:de:a5:1a:a3:13:e0:76:53:00:01:99:1b:d1:0c:
e2:1e:e2:61
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUOqERw9RaqfRJxWIQFlCJCjXanFswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMx
QTQ2MzQ0MjAeFw0yNDExMDUxMjAwMzZaFw0yNTExMDQxMjA1MzZaMDMxMTAvBgNV
BAMTKEZDNTJDMzMzMTUyRTM3NDAxMUE5N0EyNTY5NTkwRkM2MTgxNTk3QzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC2LLyoA8FiQo1Nl7FpXNbfwrA
x+Zijw7UmcCM4c0noF7hb1+VIn6GjSXTarRu1VTEbIgn9yxEwV7kyHoNevjDCYmm
PjtEDQYuvTFlz7bEGasSv1C4Tmewz3HmIsjb+UV+Au3wOoHJvBGUBaYg7zkfjjqb
kP1+wtvRLqxirem4NeJEamPMFAKp2cvytg9JSe+NXuU88LAV3vIZ4k7TmcUZ6e3z
54I0MJf9wp9iA0twdeahRjHuLG6nhz3ZQZqJUvOA0t1aBQCxavVs9f23ZXFLLFCQ
exVLhy9Y3PN9kN+x5H9rKB1CXwlp3IDQ9I1mp/gFG4YSoiqtzpxwh0ZDyV6dAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU/FLDMxUuN0ARqXolaVkPxhgVl8gwHwYDVR0j
BBgwFoAUIauesKhg0mGc8hBBBgjrgxpGNEIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
M2RkYTkyMy1lYTM2LTQ1NmItYmFmZS00MGU2YjYyZjUwYzUvMC8yMUFCOUVCMEE4
NjBEMjYxOUNGMjEwNDEwNjA4RUI4MzFBNDYzNDQyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMxQTQ2
MzQ0Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzZGRhOTIzLWVhMzYtNDU2Yi1i
YWZlLTQwZTZiNjJmNTBjNS8wLzMyMzAzMzJlMzEzNDM1MmUzNjMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMuRPzANBgkqhkiG
9w0BAQsFAAOCAQEAYmhfOhrGIBs4gZdQSUhiD4a3A/5NyS+R7lgHNIZDTIdQxNAZ
946S70oVZswvKqe7hX0Lu61Z5UAH0cgciBQ3ifYkSgrwB2TIk0ScJ4KSxV5Evner
G171QAV6rbs9orc7a03eHBFngPDA/PhhaeAPnjs/sxfkzgn0kvdYGUchTfPruFHb
yGyQUXAeShjmMYyQu1FnAapRZRMa49abAFAME5VqjAY6c14Y+CLgLQBH/ATG9nIq
HLqAz5aCA+VpWiIFJJbhUSS+ZiHgJBS4gE0drJEDnICLIH6gm7LkhDCGA+FWRQAZ
CRzkO2Ox6lWOPN6lGqMT4HZTAAGZG9EM4h7iYQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 17:46:42 2025 by rpki-client