Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa
File: 3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa (raw, json)
Hash identifier: XQ5YOO3QMAmUiXXyDyAvfXAeHqliwoa7oF/Rg8qefuw=
Subject key identifier: 85:A3:C2:30:DF:92:43:E8:6F:66:54:08:9E:DF:80:F3:F9:57:2E:53
Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336
Certificate serial: 1AE9FABBCB74F149CF0A5B2110092EC62D2783DB
Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa
Signing time: Sun 02 Feb 2025 07:00:01 +0000
ROA not before: Sun 02 Feb 2025 06:55:01 +0000
ROA not after: Sun 01 Feb 2026 07:00:01 +0000
asID: 142375
IP address blocks: 203.145.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:e9:fa:bb:cb:74:f1:49:cf:0a:5b:21:10:09:2e:c6:2d:27:83:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336
Validity
Not Before: Feb 2 06:55:01 2025 GMT
Not After : Feb 1 07:00:01 2026 GMT
Subject: CN=85A3C230DF9243E86F6654089EDF80F3F9572E53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:60:a1:20:5a:bd:94:db:d4:ac:0f:11:e3:cb:
63:e8:2d:1a:b8:21:f7:16:ff:38:15:eb:92:74:1e:
cf:c9:75:6d:a9:af:3c:00:b0:e5:9b:74:98:e4:02:
70:7f:e8:3f:a0:e3:b3:f2:55:1c:ce:17:63:77:0a:
84:fb:2d:ac:64:51:2a:8f:26:80:1c:bf:ac:45:3d:
1d:0f:73:bc:ac:8c:02:1a:2a:cc:3e:f0:c8:ae:21:
cd:44:f9:6e:89:a7:86:af:87:ba:26:0a:eb:c3:4a:
59:87:cd:6b:bb:79:b5:e8:f4:6d:e7:f6:cc:b1:09:
83:51:c4:64:07:12:b5:b5:45:94:6b:b4:5e:76:21:
0c:e9:f0:78:16:58:fc:cf:51:a4:a7:6d:ed:2d:e8:
d4:da:b8:a6:2a:1b:b3:3d:38:8e:fd:60:79:3d:d0:
17:fc:95:86:8a:e5:46:1f:27:4b:72:28:70:7e:4a:
e4:7b:f6:c4:60:a4:d3:57:71:e8:01:4e:21:65:8d:
b1:dd:50:b1:54:ff:85:cf:b4:b7:74:1b:f1:f0:e5:
47:a4:f3:e9:56:42:01:a6:c0:e6:fb:a4:84:5f:ec:
2b:6d:11:b8:75:b3:6d:22:ef:8a:e9:9e:c2:aa:98:
6f:ac:a3:5d:85:10:38:60:da:6b:80:a5:e1:37:27:
7b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A3:C2:30:DF:92:43:E8:6F:66:54:08:9E:DF:80:F3:F9:57:2E:53
X509v3 Authority Key Identifier:
keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.145.59.0/24
Signature Algorithm: sha256WithRSAEncryption
24:64:85:e0:e7:3c:8d:14:f0:99:44:0b:7f:86:06:a3:75:91:
25:c9:85:26:bd:53:64:35:b7:ed:0e:62:37:79:b4:b8:46:6f:
4e:41:6a:61:0a:27:ca:f4:dd:b0:19:4c:a2:7b:58:a3:2e:3d:
0e:22:41:43:77:8d:74:f3:5c:f0:ea:3b:63:3c:0f:db:99:3e:
67:3d:07:72:02:47:6b:cf:b4:b2:33:87:21:cf:15:a2:39:f4:
9b:38:51:00:db:9f:5f:81:b0:49:ce:cc:1d:da:13:60:66:17:
af:b1:3c:c7:cd:5f:85:be:29:08:f2:2b:c1:2d:d5:11:2a:62:
10:20:9e:1c:0a:0e:e4:fd:d7:6b:a0:e2:d6:0d:6a:f8:78:30:
15:0a:10:25:bf:0d:24:03:63:5f:22:42:69:d7:cb:cc:63:5f:
88:98:6f:f8:1c:06:c6:1b:20:ed:dd:69:2f:d2:1e:c3:e2:4e:
5e:d8:07:94:30:e2:71:e0:d5:8d:b7:3f:83:ac:00:2d:2e:c2:
11:1b:1c:5e:31:ef:ba:f7:27:79:cf:12:d2:02:f9:29:b6:90:
a6:83:69:29:ca:6b:21:69:91:bd:79:73:20:2c:7b:b5:15:56:
51:54:2a:e0:96:36:89:f3:1d:38:25:b1:b7:6a:52:db:9c:77:
58:93:81:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:15:05 2025 by rpki-client