Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa
File: 34332e3235322e3133372e302f32342d3234203d3e203538343034.roa (raw, json)
Hash identifier: N7dD/FSi3TZ7eLd1FkTH81UWI+fs0udUhwSc1vTMSUU=
Subject key identifier: 82:3B:B8:AE:9C:30:B5:87:88:5E:17:66:D2:E3:E7:B6:CF:2D:19:78
Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A
Certificate serial: 5ABD0AE0506866BA870D978E3EF366A1F29938FF
Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa
Signing time: Wed 20 Nov 2024 12:00:01 +0000
ROA not before: Wed 20 Nov 2024 11:55:01 +0000
ROA not after: Wed 19 Nov 2025 12:00:01 +0000
asID: 58404
IP address blocks: 43.252.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:bd:0a:e0:50:68:66:ba:87:0d:97:8e:3e:f3:66:a1:f2:99:38:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A
Validity
Not Before: Nov 20 11:55:01 2024 GMT
Not After : Nov 19 12:00:01 2025 GMT
Subject: CN=823BB8AE9C30B587885E1766D2E3E7B6CF2D1978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8e:b0:be:b0:8b:d1:f3:5d:75:3a:69:53:9e:
b8:3b:e0:44:a3:9c:ad:69:37:70:d3:3e:d4:8b:4c:
c9:14:58:87:40:4d:ca:2f:56:85:f8:8b:b4:90:e2:
ff:3d:1d:dc:51:44:4d:b7:2d:23:3d:1a:41:3d:90:
e8:44:0e:dc:92:b4:bb:b2:a9:2f:71:90:cf:6f:21:
d8:6d:86:25:f0:12:02:1a:df:aa:b2:b2:db:4d:2a:
cc:70:68:9a:fa:08:7d:f1:bb:f2:ae:70:d0:60:95:
c8:e5:99:c9:7a:8b:e5:e9:c6:14:61:b6:8c:c1:65:
df:12:99:f9:bc:89:df:3e:67:d1:40:fc:de:30:b7:
41:bb:75:50:f1:3c:5b:14:1b:a3:4d:a9:96:59:d8:
bc:a3:54:6c:ca:7c:e9:1d:7b:c3:98:37:8e:60:0c:
db:ca:05:65:6b:3b:a6:d2:51:d6:ed:40:34:e2:5a:
a4:07:8e:e9:fc:54:01:b1:18:12:f8:58:54:1b:00:
03:cf:e9:a0:61:cf:23:8e:75:ac:0a:c2:e3:20:3b:
68:ca:68:6d:09:b4:a4:70:a9:a6:8d:b0:2c:84:66:
26:4a:5a:48:ad:81:92:79:ab:90:d4:2f:ca:49:4b:
67:c7:7c:8c:bd:84:d7:24:69:4c:75:a6:fb:bd:0b:
60:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:3B:B8:AE:9C:30:B5:87:88:5E:17:66:D2:E3:E7:B6:CF:2D:19:78
X509v3 Authority Key Identifier:
keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133372e302f32342d3234203d3e203538343034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.252.137.0/24
Signature Algorithm: sha256WithRSAEncryption
76:82:2a:6e:64:c5:22:bc:95:ee:be:89:f4:e9:bb:e7:f3:4b:
fb:9e:2d:2a:87:a7:63:e9:06:43:55:fc:d0:b3:a3:a9:37:0f:
ad:f1:9a:10:d0:b5:d6:ad:22:00:7c:9f:8d:ae:41:a7:b0:49:
17:aa:5e:a8:41:ee:9d:4c:4a:7d:36:a9:c3:36:e5:e4:2a:f4:
48:1a:29:04:3a:6c:e7:06:be:4a:2a:40:02:67:57:e8:57:50:
20:b3:ab:cf:a8:0d:bc:72:a6:5e:3d:06:68:ca:ba:85:3a:ed:
a3:ba:3c:3c:b6:05:49:83:36:b7:da:d0:6e:f4:ea:52:f3:83:
08:b0:40:7f:ee:25:92:c1:4c:a8:f4:5a:84:10:f7:f9:38:71:
4c:ca:87:1e:05:8a:08:58:e7:9a:21:c4:f3:87:df:51:97:f7:
5d:46:1b:d5:6b:76:a2:8d:a5:07:c7:a3:89:4c:39:e2:53:78:
91:44:c8:ca:ca:0c:48:0e:ca:ff:90:d3:42:46:e2:df:cd:95:
af:70:47:8c:8f:e6:b5:6c:a9:32:80:70:3a:8c:01:c3:b7:82:
e3:8a:a7:77:63:9d:18:70:72:82:33:f8:91:df:81:f7:ec:db:
cd:bb:0a:2e:59:85:ef:60:3d:43:02:00:48:cf:67:08:5c:f7:
4c:6c:ff:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:30 2025 by rpki-client