Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/34332e3233302e3133312e302f32342d3234203d3e203233363739.roa
File: 34332e3233302e3133312e302f32342d3234203d3e203233363739.roa (raw, json)
Hash identifier: K3WB9oBPvEfAk4NNVIr7a9/wMS5kH5f34i/e1uOEKlo=
Subject key identifier: BB:72:81:CB:E1:07:E4:67:18:A5:9D:22:A9:24:45:00:9A:66:9B:3D
Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E
Certificate serial: 17409AE894CC26427DB89A5CA3082C5BC66E10DA
Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/34332e3233302e3133312e302f32342d3234203d3e203233363739.roa
Signing time: Tue 13 Aug 2024 05:17:37 +0000
ROA not before: Tue 13 Aug 2024 05:12:37 +0000
ROA not after: Tue 12 Aug 2025 05:17:37 +0000
asID: 23679
IP address blocks: 43.230.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:40:9a:e8:94:cc:26:42:7d:b8:9a:5c:a3:08:2c:5b:c6:6e:10:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E
Validity
Not Before: Aug 13 05:12:37 2024 GMT
Not After : Aug 12 05:17:37 2025 GMT
Subject: CN=BB7281CBE107E46718A59D22A92445009A669B3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:00:bd:e9:04:ea:0b:42:97:e6:0f:67:e6:a3:
8d:32:07:80:68:10:67:e2:f6:33:89:97:6c:ca:4e:
a7:fc:18:e5:95:2e:51:a1:47:e9:2c:d2:83:e8:e6:
67:13:51:d6:e3:63:0f:8a:35:1e:61:b6:c3:18:18:
e8:f6:be:4d:a7:11:a5:39:a5:f0:56:47:15:ae:25:
55:d6:b7:9e:c0:ef:d8:22:c9:60:01:e2:35:53:8b:
50:6d:1c:67:fa:5a:6b:ec:b7:01:be:24:7b:e6:68:
91:d1:24:7e:55:1d:73:79:e9:db:a8:be:a0:80:39:
de:60:d7:31:bc:dc:fa:19:5b:a7:a6:87:d5:3e:78:
53:97:9d:5c:3f:43:e7:18:dc:68:9a:16:d6:19:a7:
6c:55:48:61:c2:10:db:3b:d1:1d:d1:d7:37:50:2b:
31:58:f7:65:70:b3:25:d0:01:11:1f:da:d0:cd:fa:
50:18:f8:4d:24:46:37:49:d3:23:f3:96:9f:1d:83:
69:94:4e:90:c2:7a:23:ca:22:fe:cd:97:bc:f3:f7:
08:cd:b7:5f:d3:d3:c5:d1:95:70:4f:68:d3:08:bf:
46:51:0c:29:09:98:ce:bb:17:c5:22:57:52:4c:4d:
08:a0:3d:29:82:f4:2e:96:fd:ea:e0:c5:9b:a3:09:
d8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:72:81:CB:E1:07:E4:67:18:A5:9D:22:A9:24:45:00:9A:66:9B:3D
X509v3 Authority Key Identifier:
keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/34332e3233302e3133312e302f32342d3234203d3e203233363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.230.131.0/24
Signature Algorithm: sha256WithRSAEncryption
21:43:ee:28:2f:4e:d6:b2:d0:7b:3f:7a:30:bf:78:c4:d2:68:
5e:89:1d:72:3a:bb:37:1a:7f:84:17:90:b0:e3:7f:d6:e7:fb:
75:a1:f2:d8:ab:af:cd:11:4c:91:97:e2:70:d9:0b:f3:cf:0b:
89:ed:01:3c:b1:24:b0:89:2e:96:54:f4:d7:ba:4e:56:e2:52:
24:58:65:33:16:c4:f9:48:9f:5f:58:27:42:34:18:31:a1:15:
66:28:24:61:a6:34:a1:c0:4d:92:30:86:54:97:92:cc:90:7d:
21:82:a9:9d:a9:97:11:d7:69:a8:e5:a3:94:d7:3f:ca:93:ff:
ed:cc:f4:e6:bb:ae:28:5c:dc:3e:b6:62:32:53:fe:4e:a8:dd:
f9:44:46:39:27:aa:bd:36:0f:39:bb:10:b9:25:4e:20:69:89:
e1:dd:21:ed:6b:29:e1:cc:30:6a:0f:f8:c1:2d:73:31:a7:34:
8f:2e:42:a0:39:e0:dc:c6:0a:58:27:84:02:59:57:22:17:07:
9d:1a:17:87:c5:75:00:0f:a9:ad:d3:1b:2a:d1:c2:f4:35:14:
6f:35:f0:11:34:e2:ac:ae:7c:07:9b:1a:b8:67:6f:ed:79:21:
b8:f0:1c:74:e1:95:b9:3c:32:c5:7b:1e:60:61:6d:49:ac:77:
35:1b:eb:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:40:20 2025 by rpki-client