Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
File: AS24203.roa (raw, json)
Hash identifier: iUUx6/7Vijwx93IUbiSye/ssw8bJSAcdA6IGTt4AxyQ=
Subject key identifier: DA:CC:06:3B:B3:8B:44:B8:3A:90:59:AA:76:E5:6F:EC:3F:33:B5:6E
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 048D938BB9CBDED0292E0F9D043E689657DF7ECC
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
Signing time: Thu 20 Mar 2025 11:05:21 +0000
ROA not before: Thu 20 Mar 2025 11:00:21 +0000
ROA not after: Thu 19 Mar 2026 11:05:21 +0000
asID: 24203
IP address blocks: 112.215.0.0/16 maxlen: 16
112.215.19.0/24 maxlen: 24
112.215.23.0/24 maxlen: 24
112.215.36.0/24 maxlen: 24
112.215.44.0/24 maxlen: 24
112.215.45.0/24 maxlen: 24
112.215.47.0/24 maxlen: 24
112.215.50.0/24 maxlen: 24
112.215.60.0/24 maxlen: 24
112.215.63.0/24 maxlen: 24
112.215.64.0/24 maxlen: 24
112.215.65.0/24 maxlen: 24
112.215.66.0/24 maxlen: 24
112.215.71.0/24 maxlen: 24
112.215.79.0/24 maxlen: 24
112.215.83.0/24 maxlen: 24
112.215.84.0/24 maxlen: 24
112.215.88.0/24 maxlen: 24
112.215.101.0/24 maxlen: 24
112.215.102.0/24 maxlen: 24
112.215.103.0/24 maxlen: 24
112.215.104.0/24 maxlen: 24
112.215.122.0/24 maxlen: 24
112.215.123.0/24 maxlen: 24
112.215.124.0/24 maxlen: 24
112.215.126.0/24 maxlen: 24
112.215.127.0/24 maxlen: 24
112.215.128.0/24 maxlen: 24
112.215.133.0/24 maxlen: 24
112.215.140.0/24 maxlen: 24
112.215.145.0/24 maxlen: 24
112.215.146.0/24 maxlen: 24
112.215.147.0/24 maxlen: 24
112.215.148.0/24 maxlen: 24
112.215.149.0/24 maxlen: 24
112.215.151.0/24 maxlen: 24
112.215.152.0/24 maxlen: 24
112.215.153.0/24 maxlen: 24
112.215.154.0/24 maxlen: 24
112.215.156.0/24 maxlen: 24
112.215.157.0/24 maxlen: 24
112.215.158.0/24 maxlen: 24
112.215.160.0/24 maxlen: 24
112.215.161.0/24 maxlen: 24
112.215.165.0/24 maxlen: 24
112.215.167.0/24 maxlen: 24
112.215.168.0/24 maxlen: 24
112.215.169.0/24 maxlen: 24
112.215.170.0/24 maxlen: 24
112.215.171.0/24 maxlen: 24
112.215.172.0/24 maxlen: 24
112.215.173.0/24 maxlen: 24
112.215.174.0/24 maxlen: 24
112.215.175.0/24 maxlen: 24
112.215.179.0/24 maxlen: 24
112.215.183.0/24 maxlen: 24
112.215.184.0/24 maxlen: 24
112.215.185.0/24 maxlen: 24
112.215.198.0/24 maxlen: 24
112.215.200.0/24 maxlen: 24
112.215.201.0/24 maxlen: 24
112.215.207.0/24 maxlen: 24
112.215.208.0/24 maxlen: 24
112.215.209.0/24 maxlen: 24
112.215.210.0/24 maxlen: 24
112.215.211.0/24 maxlen: 24
112.215.212.0/24 maxlen: 24
112.215.219.0/24 maxlen: 24
112.215.220.0/24 maxlen: 24
112.215.221.0/24 maxlen: 24
112.215.222.0/24 maxlen: 24
112.215.223.0/24 maxlen: 24
112.215.224.0/24 maxlen: 24
112.215.225.0/24 maxlen: 24
112.215.226.0/24 maxlen: 24
112.215.227.0/24 maxlen: 24
112.215.228.0/24 maxlen: 24
112.215.229.0/24 maxlen: 24
112.215.230.0/24 maxlen: 24
112.215.231.0/24 maxlen: 24
112.215.232.0/24 maxlen: 24
112.215.233.0/24 maxlen: 24
112.215.234.0/24 maxlen: 24
112.215.235.0/24 maxlen: 24
112.215.236.0/24 maxlen: 24
112.215.237.0/24 maxlen: 24
112.215.238.0/24 maxlen: 24
112.215.239.0/24 maxlen: 24
112.215.240.0/24 maxlen: 24
112.215.241.0/24 maxlen: 24
112.215.242.0/24 maxlen: 24
112.215.243.0/24 maxlen: 24
112.215.244.0/24 maxlen: 24
112.215.245.0/24 maxlen: 24
112.215.246.0/24 maxlen: 24
112.215.251.0/24 maxlen: 24
112.215.252.0/24 maxlen: 24
112.215.253.0/24 maxlen: 24
202.152.240.0/24 maxlen: 24
202.152.243.0/24 maxlen: 24
203.78.112.0/20 maxlen: 20
203.78.112.0/24 maxlen: 24
203.78.113.0/24 maxlen: 24
203.78.114.0/24 maxlen: 24
203.78.116.0/24 maxlen: 24
203.78.117.0/24 maxlen: 24
203.78.118.0/24 maxlen: 24
203.78.119.0/24 maxlen: 24
203.78.120.0/24 maxlen: 24
203.78.121.0/24 maxlen: 24
203.78.122.0/24 maxlen: 24
203.78.123.0/24 maxlen: 24
203.78.124.0/24 maxlen: 24
203.78.125.0/24 maxlen: 24
203.78.126.0/24 maxlen: 24
2400:9800::/32 maxlen: 32
2400:9800:c::/48 maxlen: 48
2400:9800:10::/48 maxlen: 48
2400:9800:12::/48 maxlen: 48
2400:9800:14::/48 maxlen: 48
2400:9800:15::/48 maxlen: 48
2400:9800:500::/45 maxlen: 45
2400:9800:510::/45 maxlen: 45
2400:9800:520::/45 maxlen: 45
2400:9800:530::/45 maxlen: 45
2400:9800:540::/45 maxlen: 45
2400:9800:550::/45 maxlen: 45
2400:9800:590::/45 maxlen: 45
2400:9800:5a0::/45 maxlen: 45
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:8d:93:8b:b9:cb:de:d0:29:2e:0f:9d:04:3e:68:96:57:df:7e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: Mar 20 11:00:21 2025 GMT
Not After : Mar 19 11:05:21 2026 GMT
Subject: CN=DACC063BB38B44B83A9059AA76E56FEC3F33B56E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5d:9d:22:84:04:7b:a3:68:2c:7e:64:d5:59:
fa:5b:59:46:29:87:83:3d:04:23:e9:12:92:b3:f9:
14:4e:9c:ed:d0:e5:66:e2:64:44:ba:30:ce:91:3e:
0a:a7:c8:8e:27:1a:df:91:f1:e0:c6:a2:b1:0c:9c:
8b:bf:99:0f:68:80:45:31:ab:9e:5f:03:14:45:0d:
c9:2f:dd:92:c1:34:0b:ff:cb:97:dd:73:97:b8:da:
56:e0:71:46:31:30:97:fb:eb:c9:50:52:13:80:d2:
f2:32:9d:61:e6:2b:ec:cc:06:6f:5c:81:d8:40:04:
83:68:19:5b:a5:50:2d:47:99:17:6b:1f:cb:db:40:
78:88:d0:e9:b9:f6:b2:16:18:46:69:ae:a5:cd:ea:
f8:67:c9:54:19:67:0e:44:cb:a6:50:da:d6:80:06:
01:15:06:80:e5:07:5a:9f:05:09:8c:0c:b2:2c:f2:
68:4e:65:40:de:cf:09:20:4e:ec:52:5c:21:d5:1b:
ec:b2:09:b5:2b:1e:1f:45:59:58:b6:de:d2:29:4f:
e1:87:da:8d:ed:22:4d:f5:c3:c9:13:24:b2:65:4d:
33:e8:ab:47:5f:90:f2:cc:b4:b8:3d:8a:96:a6:52:
a9:66:28:48:85:40:7c:c0:1b:3e:ba:a2:74:74:d5:
78:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CC:06:3B:B3:8B:44:B8:3A:90:59:AA:76:E5:6F:EC:3F:33:B5:6E
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS24203.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.0.0/16
202.152.240.0/24
202.152.243.0/24
203.78.112.0/20
IPv6:
2400:9800::/32
Signature Algorithm: sha256WithRSAEncryption
a1:55:cb:96:81:a9:42:72:f5:ec:55:f4:2b:5f:17:1d:c9:08:
96:5d:c4:3a:1f:f4:34:7b:42:cf:2d:62:60:b1:c2:8a:89:a4:
f4:0d:64:38:c0:a7:04:3d:c5:65:f5:0b:8c:c7:16:22:fa:cf:
4f:b5:3a:13:b3:13:cf:43:80:91:8c:07:b7:1d:49:d9:64:d1:
cd:a7:45:44:2d:f5:e8:94:9e:34:0e:e1:9f:35:29:04:1a:74:
fe:1f:c5:86:b6:63:af:c5:66:b9:be:57:12:ac:fe:20:67:7b:
7b:01:49:e7:3e:0f:f6:05:35:f1:c6:b3:2a:77:30:22:4c:fe:
40:5d:5b:d9:42:26:d2:d3:bd:8e:c2:ba:76:0f:9b:8e:5f:37:
a1:d9:99:65:b7:9a:fb:79:b1:ae:30:bd:8d:92:5d:c7:29:44:
9f:f3:c7:39:91:d7:25:6a:60:34:2e:2c:73:98:9e:94:4a:81:
af:be:f3:3e:bb:84:09:0f:0b:a9:20:27:4f:c9:bd:cd:cd:4c:
eb:52:d4:ae:df:e3:12:e4:23:3a:81:ad:2f:dc:14:01:87:99:
a9:bc:a4:69:c9:dc:8b:7d:0c:d9:2b:6b:8f:4a:e7:59:d0:96:
b6:38:b8:b0:d7:ef:c8:9f:f5:be:35:ea:6a:19:15:1a:98:76:
c2:d7:97:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:43:05 2025 by rpki-client