Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa
File: 34332e3235322e3133392e302f32342d3234203d3e203538343034.roa (raw, json)
Hash identifier: c6fpSUbyQdt1ZsHYs9eWhZI0zdnm3cArV6v/GBThWWc=
Subject key identifier: 70:71:42:19:C6:2C:C0:CA:2B:7A:06:57:F2:B4:61:E8:B4:A9:77:CC
Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A
Certificate serial: 7DCD3A4343C359E1ED26F62E24DDAE96966C39ED
Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa
Signing time: Sun 27 Oct 2024 14:00:01 +0000
ROA not before: Sun 27 Oct 2024 13:55:01 +0000
ROA not after: Sun 26 Oct 2025 14:00:01 +0000
asID: 58404
IP address blocks: 43.252.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:cd:3a:43:43:c3:59:e1:ed:26:f6:2e:24:dd:ae:96:96:6c:39:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A
Validity
Not Before: Oct 27 13:55:01 2024 GMT
Not After : Oct 26 14:00:01 2025 GMT
Subject: CN=70714219C62CC0CA2B7A0657F2B461E8B4A977CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f4:ff:0f:f9:d1:bb:f5:09:b1:50:8a:9d:fc:
00:90:c8:22:00:03:38:a1:9a:2d:ba:0a:c1:f0:58:
8b:64:4a:c9:8f:35:12:60:ba:1b:2f:2a:9e:e0:8c:
78:d3:5a:b6:c5:72:ec:b8:3e:3c:ca:18:4a:26:7c:
21:ae:c1:31:c7:f0:80:4e:7d:e6:2a:84:12:1b:63:
de:ad:44:f6:b6:6d:b1:94:ca:b5:03:f5:e0:41:11:
3d:c6:10:fe:9b:b1:38:ac:27:19:6c:ad:83:f4:55:
7c:b7:3a:a0:79:ed:4d:20:db:5d:4f:21:36:e1:e3:
64:7c:a2:64:3f:08:08:06:f6:00:9e:bc:7c:ee:2f:
ce:cf:37:87:39:98:e6:ae:68:d3:ed:3e:a5:2c:47:
ac:30:8f:06:20:f4:21:2a:c5:5d:f9:54:5f:2e:14:
c0:0c:f6:0f:ed:85:51:df:a8:9f:4f:67:f0:da:7c:
e8:b0:49:2b:73:e7:3f:89:ab:23:54:ec:12:f7:da:
78:48:5f:92:0d:7e:e5:9e:ed:fa:22:57:7e:76:3c:
67:aa:9f:c5:37:d2:17:29:31:b7:b2:ca:aa:1c:60:
c0:ff:41:c1:0c:ae:09:b0:36:21:f6:f8:43:43:3c:
7f:1b:ad:59:1f:4f:b8:fd:84:cb:cd:cf:9b:67:0f:
92:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:71:42:19:C6:2C:C0:CA:2B:7A:06:57:F2:B4:61:E8:B4:A9:77:CC
X509v3 Authority Key Identifier:
keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/34332e3235322e3133392e302f32342d3234203d3e203538343034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.252.139.0/24
Signature Algorithm: sha256WithRSAEncryption
89:77:15:32:58:c2:da:64:ee:a0:89:f9:fa:fe:60:e4:91:d0:
22:91:af:0b:bd:f4:69:6a:c3:80:7d:cb:0d:58:b5:97:64:ae:
f5:d3:fc:86:b5:0f:3d:47:6a:4b:fc:09:05:3c:33:9c:70:52:
71:76:03:5a:2c:ac:97:14:be:aa:7b:a4:21:70:4e:97:bc:a6:
de:7b:9e:8e:a3:b3:51:2e:88:03:da:8d:f3:8f:d1:f5:b7:8c:
f9:1b:9f:76:69:3c:82:c4:d2:5c:1d:ab:5c:93:1e:ce:1c:2d:
70:7b:78:22:c8:aa:15:17:b3:80:43:1a:93:3a:9e:58:d9:0c:
f8:26:56:ab:7b:ed:13:82:46:33:0a:13:04:ca:99:d3:23:a3:
27:4e:ab:6e:e6:80:d6:56:c0:c9:da:98:a9:bc:a5:55:a3:49:
06:73:56:60:f3:51:71:45:ed:2c:85:8d:c6:b5:ba:8f:9a:e6:
ac:2e:f9:4c:23:99:fe:d6:51:e9:bb:34:71:b4:c9:96:5a:12:
bd:99:28:ff:e7:4e:96:c0:d0:2f:39:64:5c:e5:19:cb:a1:09:
b8:15:e7:f8:a1:b2:2c:65:fc:90:64:6a:c4:82:77:2d:a4:0b:
7e:67:e1:b6:08:f0:56:4b:99:2d:cc:a9:77:35:a2:72:6f:f1:
7a:8c:3c:f4
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUfc06Q0PDWeHtJvYuJN2ulpZsOe0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG
QjQ4ODcxQTAeFw0yNDEwMjcxMzU1MDFaFw0yNTEwMjYxNDAwMDFaMDMxMTAvBgNV
BAMTKDcwNzE0MjE5QzYyQ0MwQ0EyQjdBMDY1N0YyQjQ2MUU4QjRBOTc3Q0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV9P8P+dG79QmxUIqd/ACQyCIA
Azihmi26CsHwWItkSsmPNRJguhsvKp7gjHjTWrbFcuy4PjzKGEomfCGuwTHH8IBO
feYqhBIbY96tRPa2bbGUyrUD9eBBET3GEP6bsTisJxlsrYP0VXy3OqB57U0g211P
ITbh42R8omQ/CAgG9gCevHzuL87PN4c5mOauaNPtPqUsR6wwjwYg9CEqxV35VF8u
FMAM9g/thVHfqJ9PZ/DafOiwSStz5z+JqyNU7BL32nhIX5INfuWe7foiV352PGeq
n8U30hcpMbeyyqocYMD/QcEMrgmwNiH2+ENDPH8brVkfT7j9hMvNz5tnD5L7AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUcHFCGcYswMoregZX8rRh6LSpd8wwHwYDVR0j
BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF
RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4
ODcxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04
YmQ5LTRhYzRiYzYzMDQxNC8wLzM0MzMyZTMyMzUzMjJlMzEzMzM5MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzUzODM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv8izANBgkqhkiG
9w0BAQsFAAOCAQEAiXcVMljC2mTuoIn5+v5g5JHQIpGvC730aWrDgH3LDVi1l2Su
9dP8hrUPPUdqS/wJBTwznHBScXYDWiyslxS+qnukIXBOl7ym3nuejqOzUS6IA9qN
84/R9beM+Rufdmk8gsTSXB2rXJMezhwtcHt4IsiqFRezgEMakzqeWNkM+CZWq3vt
E4JGMwoTBMqZ0yOjJ06rbuaA1lbAydqYqbylVaNJBnNWYPNRcUXtLIWNxrW6j5rm
rC75TCOZ/tZR6bs0cbTJlloSvZko/+dOlsDQLzlkXOUZy6EJuBXn+KGyLGX8kGRq
xIJ3LaQLfmfhtgjwVkuZLcypdzWicm/xeow89A==
-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:24 2025 by rpki-client