Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa
File: 34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa (raw, json)
Hash identifier: +IXwOqF4yCbBj9uwGmBxcenGGFnRPZxkHawvMosNR04=
Subject key identifier: C1:60:E6:66:F1:24:1D:BE:12:F2:16:09:1E:45:69:CF:0C:F8:0E:F1
Certificate issuer: /CN=EE0318C1CF5D037492EFBC172300E2E062AFEFCB
Certificate serial: 2172056ED84AD14709CE8542EB8EA57251D758DF
Authority key identifier: EE:03:18:C1:CF:5D:03:74:92:EF:BC:17:23:00:E2:E0:62:AF:EF:CB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa
Signing time: Tue 22 Oct 2024 06:00:01 +0000
ROA not before: Tue 22 Oct 2024 05:55:01 +0000
ROA not after: Tue 21 Oct 2025 06:00:01 +0000
asID: 152025
IP address blocks: 43.228.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:72:05:6e:d8:4a:d1:47:09:ce:85:42:eb:8e:a5:72:51:d7:58:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE0318C1CF5D037492EFBC172300E2E062AFEFCB
Validity
Not Before: Oct 22 05:55:01 2024 GMT
Not After : Oct 21 06:00:01 2025 GMT
Subject: CN=C160E666F1241DBE12F216091E4569CF0CF80EF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d1:0b:36:f3:48:89:9d:79:ff:fb:7f:59:98:
75:90:de:a5:85:4b:00:6f:41:e0:65:e4:81:29:11:
90:84:1a:7c:fe:64:74:b5:06:28:8e:09:11:c2:6a:
19:86:5d:c7:77:19:df:33:b4:44:7e:16:a0:79:71:
c3:cc:f2:65:b9:92:86:d0:d9:bd:a0:66:3c:12:ba:
88:c0:c0:65:3c:aa:f0:ac:3d:0e:22:fd:b1:d0:c7:
36:4b:3c:d3:c2:1f:55:86:59:ba:c9:e5:3c:d4:69:
0f:ce:10:b5:b1:55:96:f5:54:d8:3c:f6:a3:cb:13:
2e:ef:0d:ee:47:a8:f6:83:4e:0c:5f:5f:6c:dd:39:
63:71:7c:ed:b4:a5:de:de:50:4f:07:4b:e6:b0:4d:
c8:e7:02:9d:21:22:2a:93:b4:e2:e6:d8:d0:2e:c2:
bc:29:00:d1:0d:de:d9:d8:c6:cd:b3:0d:bf:74:96:
d6:5f:b4:a8:8f:ae:9e:68:0f:f5:7f:94:3d:08:cd:
0d:60:bf:b8:8b:c3:31:0e:c2:8a:bd:81:c9:85:d1:
50:72:58:17:19:e9:b8:ae:a9:b5:ed:1d:6a:b1:c7:
fa:30:87:cb:c3:ce:10:aa:62:ca:66:8a:56:6e:64:
43:d3:cf:4b:0b:49:5d:b1:7f:0f:15:ed:78:4e:ae:
d1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:60:E6:66:F1:24:1D:BE:12:F2:16:09:1E:45:69:CF:0C:F8:0E:F1
X509v3 Authority Key Identifier:
keyid:EE:03:18:C1:CF:5D:03:74:92:EF:BC:17:23:00:E2:E0:62:AF:EF:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE0318C1CF5D037492EFBC172300E2E062AFEFCB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/611a3980-a32e-4df9-8e52-0be0d343cc0b/0/34332e3232382e3137352e302f32342d3234203d3e20313532303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.228.175.0/24
Signature Algorithm: sha256WithRSAEncryption
45:3a:2d:fc:c8:f0:97:04:1e:cc:53:81:59:b5:71:c9:d5:12:
58:f5:11:5e:9c:2a:00:ce:63:68:de:96:2d:21:31:30:1a:80:
4e:c2:ce:72:82:fc:b5:53:12:09:f1:ab:81:5b:8e:da:88:a5:
ac:91:61:8f:1b:b8:57:30:1c:95:92:ea:d9:f8:0c:a2:e5:f8:
ef:db:a6:13:3b:7c:ec:a1:c6:af:5d:df:e6:f7:89:f3:2f:4c:
b5:65:ad:06:3f:60:f5:73:de:43:97:bf:10:f4:20:e2:8b:c4:
b0:62:22:5a:58:e3:dd:93:e9:5a:bb:b8:05:7a:5a:e6:e7:b6:
74:fa:6a:59:d0:ca:ff:9e:d6:14:15:20:aa:ca:13:66:b4:53:
cb:95:b2:8f:a5:ad:19:ed:9f:08:da:d6:71:20:15:3b:12:40:
90:2e:b5:c6:06:32:74:18:9e:70:ce:ad:c0:f4:93:69:1f:97:
e3:00:8f:a7:28:4c:ce:ca:b6:8c:db:0f:21:7d:02:fe:24:25:
a6:41:e0:95:2b:91:49:b4:3e:0f:b5:16:a2:3b:00:52:f8:94:
a8:c0:59:7d:0d:7f:ec:5d:98:98:fe:86:c4:8b:97:5b:03:c0:
1f:6e:fa:33:90:82:54:44:c2:92:ec:34:78:97:7f:c1:a2:78:
98:4f:dc:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:33 2025 by rpki-client