Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa
File: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (raw, json)
Hash identifier: lPAaUMCnmORN0lcIkL1SdTQ//TRobbXWIgBrv9ai9Yc=
Subject key identifier: 1C:AF:E4:EB:A5:ED:68:2E:B3:A8:03:97:66:CD:BB:EC:EA:96:A1:83
Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336
Certificate serial: 209DCCF778945AABE0EFC3CF6B5A92FB228E03D9
Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa
Signing time: Sun 02 Feb 2025 07:00:02 +0000
ROA not before: Sun 02 Feb 2025 06:55:02 +0000
ROA not after: Sun 01 Feb 2026 07:00:02 +0000
asID: 142375
IP address blocks: 203.145.58.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:9d:cc:f7:78:94:5a:ab:e0:ef:c3:cf:6b:5a:92:fb:22:8e:03:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336
Validity
Not Before: Feb 2 06:55:02 2025 GMT
Not After : Feb 1 07:00:02 2026 GMT
Subject: CN=1CAFE4EBA5ED682EB3A8039766CDBBECEA96A183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:54:c2:2f:de:9f:4b:f6:b2:9c:b2:8b:43:f0:
f1:9e:a0:70:a1:9d:08:1c:0f:dc:8c:61:84:d4:19:
34:13:0a:ef:e6:3a:61:d4:91:f1:5b:75:7a:cd:6b:
b2:d7:a4:f4:7f:f5:20:df:e3:76:b3:dd:95:dd:64:
8b:81:36:1d:6c:e8:a2:0d:9a:df:b0:1a:90:21:83:
ea:a4:65:cc:c5:52:d2:ed:55:d8:31:f6:62:6c:25:
c4:69:7c:e8:9a:8b:c0:3a:de:89:ab:c9:05:5f:d8:
ce:bf:45:d7:67:2c:51:0d:2d:43:97:30:88:90:56:
a5:be:8b:25:a2:59:0b:a3:c9:32:cd:7e:28:94:b2:
5c:77:0f:35:95:b2:52:ee:f6:ea:ab:5f:34:69:1b:
b9:bc:1f:8e:76:9c:3a:6d:52:86:c1:00:5a:29:cf:
ab:d7:2c:f6:6b:c3:d5:28:66:89:54:60:74:61:80:
f6:c5:d6:d4:34:a4:e6:b6:ab:91:8c:69:c8:03:b3:
d2:67:92:e7:00:72:a5:dc:55:26:8d:de:c1:a9:d7:
01:bc:ee:d7:10:7c:ce:4b:9a:c5:4e:fc:fc:00:b0:
e2:d4:1a:90:da:91:7a:14:e7:89:95:9c:e9:fb:f8:
04:c3:84:56:26:ae:26:1c:a2:cc:e7:f1:9b:a8:d1:
8f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:AF:E4:EB:A5:ED:68:2E:B3:A8:03:97:66:CD:BB:EC:EA:96:A1:83
X509v3 Authority Key Identifier:
keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.145.58.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:ed:e5:ed:39:48:8e:d4:f9:3a:a9:2c:b9:dd:aa:9e:d1:7c:
27:8c:1e:7a:2d:6b:2b:fc:60:34:5f:e2:19:68:85:e6:68:13:
86:c1:6d:30:2e:e9:68:13:60:c1:71:44:2c:f0:d3:0f:56:ed:
bd:c1:3d:07:52:fb:da:a9:fd:36:44:39:73:ad:23:d8:9b:ab:
0d:1a:b0:31:9f:2b:a5:99:be:33:20:40:26:a2:52:1f:1e:68:
c3:96:2c:4e:aa:a8:2b:f4:92:0b:88:c3:a0:b2:3f:5b:5d:52:
93:5f:1a:8b:e5:cd:1c:d8:e4:7d:3d:3f:39:46:b8:d1:23:fc:
26:65:d3:49:97:06:72:20:77:ec:36:54:ef:27:3a:49:db:e8:
c2:f9:99:e0:25:dc:8d:48:01:00:9b:55:c5:5a:b2:a6:6a:44:
f6:f7:e9:2a:bb:e0:3d:99:a4:2b:d7:e8:b7:a6:f0:fb:8b:8d:
73:af:e7:68:2d:a1:9f:29:ab:08:67:3e:8c:75:43:15:e6:b1:
db:df:66:20:2f:80:1b:36:e0:fd:6b:82:45:bd:0c:c4:96:9f:
e2:20:07:b5:81:0a:cf:07:ad:6c:ca:e8:85:24:ed:70:70:5a:
53:f8:c5:68:3d:c4:ab:46:6c:7e:54:61:07:c8:84:ce:4f:56:
7d:4c:87:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:29:14 2025 by rpki-client