Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138352e302f32342d3234203d3e203538383136.roa
File: 34332e3235322e3138352e302f32342d3234203d3e203538383136.roa (raw, json)
Hash identifier: hamVtzyWWFgDoUv3GhJNoDFMf/gHi6nIkoDk9iZqkLo=
Subject key identifier: 8B:9E:14:B5:15:9E:B6:3B:54:85:69:03:90:2F:37:37:C9:84:5B:A0
Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Certificate serial: 44F0ADD48B4A74587A69956D15B059B6FF187A24
Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138352e302f32342d3234203d3e203538383136.roa
Signing time: Thu 13 Mar 2025 11:01:36 +0000
ROA not before: Thu 13 Mar 2025 10:56:36 +0000
ROA not after: Thu 12 Mar 2026 11:01:36 +0000
asID: 58816
IP address blocks: 43.252.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:f0:ad:d4:8b:4a:74:58:7a:69:95:6d:15:b0:59:b6:ff:18:7a:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Validity
Not Before: Mar 13 10:56:36 2025 GMT
Not After : Mar 12 11:01:36 2026 GMT
Subject: CN=8B9E14B5159EB63B54856903902F3737C9845BA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8c:d3:58:26:2b:78:9a:b7:93:73:30:ef:3b:
12:2d:f7:34:7b:00:a4:00:b2:f7:18:84:e9:e3:41:
46:a8:cd:3d:94:c2:87:95:1c:3d:4c:54:83:3c:1b:
5f:97:24:3c:fc:80:7d:6a:48:56:41:d8:e0:88:44:
ce:52:5f:e8:44:e3:52:a5:24:0c:ae:a3:4f:2e:59:
90:c6:9f:ab:1c:fc:8d:6f:86:f9:12:73:b2:89:9f:
e2:73:9d:b6:b5:f6:d6:ca:be:11:14:84:45:f0:a6:
af:34:8c:ab:02:12:61:bc:68:85:78:85:23:f0:f1:
bc:2a:49:3b:52:38:8c:ef:e4:68:68:3e:0f:2d:1d:
47:95:01:93:ef:22:20:4b:54:67:4b:a9:90:f7:45:
3f:e3:ba:70:72:54:d5:12:d4:b7:0b:da:88:33:1e:
8f:a0:f5:94:32:dd:f4:4c:9e:20:69:c9:21:6e:85:
11:cf:6d:5f:7c:ce:eb:7d:64:da:59:60:ee:ed:c3:
77:18:e4:df:5a:2e:08:2b:40:06:73:76:80:94:71:
e0:48:d8:5b:b0:8f:bc:80:85:7d:43:f3:63:da:cc:
bc:1e:24:e8:9c:d6:4a:40:98:74:15:95:c8:05:8b:
b9:6e:f4:de:94:7b:4a:56:f3:fd:c5:fb:f1:09:fc:
3f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:9E:14:B5:15:9E:B6:3B:54:85:69:03:90:2F:37:37:C9:84:5B:A0
X509v3 Authority Key Identifier:
keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138352e302f32342d3234203d3e203538383136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.252.185.0/24
Signature Algorithm: sha256WithRSAEncryption
19:82:dd:2a:96:4e:cf:40:c7:0c:04:62:1c:c4:49:21:ff:58:
8a:88:c2:06:42:3f:15:f6:40:14:c9:5b:4d:1a:68:df:5c:01:
3f:7a:a4:4d:28:70:41:8c:19:5b:28:b6:83:1d:74:8f:98:69:
6f:00:a1:23:51:49:3c:59:be:c1:0d:ea:62:78:2e:53:d8:f2:
04:17:c5:b6:e1:de:53:4c:8b:8e:37:07:cb:67:e7:07:61:0b:
b4:29:d8:e0:b1:e9:5f:05:00:96:7f:5c:6f:c3:92:ce:33:32:
89:5a:11:07:78:42:a2:60:73:e1:4e:2c:c7:69:f5:be:6a:50:
3e:d1:b7:80:aa:93:45:97:24:84:d6:0e:4a:11:c6:4a:54:3e:
6a:85:af:e7:b7:27:47:a4:24:10:46:c4:87:2c:7c:b6:8a:95:
5b:97:41:82:c6:fd:11:61:37:06:01:64:3d:51:e3:4f:36:38:
9b:a0:d8:3f:73:9c:31:43:cd:76:97:57:b5:b6:53:7d:5d:81:
7f:90:d9:ba:58:6c:58:eb:a4:95:09:1d:e6:69:40:b4:5c:12:
42:85:69:ce:3f:eb:e8:fc:b4:a1:55:47:f6:da:a2:c6:fa:79:
c3:bf:50:9c:c3:87:18:a9:fb:cc:a2:82:23:cc:8b:a0:a2:b1:
cf:3a:a8:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:47:58 2025 by rpki-client