Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa
File: 34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa (raw, json)
Hash identifier: pVP8WNT6LU5nlRqRUxl8FgSkFnHlZF7d9Y3T2wIWbOI=
Subject key identifier: A8:E2:AA:FD:16:32:B4:FE:EA:C9:9A:E5:7C:23:13:8A:94:F1:3D:E5
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 0BD53414E417376FC983B382A54B784F665C4532
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa
Signing time: Sat 21 Dec 2024 18:00:46 +0000
ROA not before: Sat 21 Dec 2024 17:55:46 +0000
ROA not after: Sat 20 Dec 2025 18:00:46 +0000
asID: 149746
IP address blocks: 43.252.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:d5:34:14:e4:17:37:6f:c9:83:b3:82:a5:4b:78:4f:66:5c:45:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Dec 21 17:55:46 2024 GMT
Not After : Dec 20 18:00:46 2025 GMT
Subject: CN=A8E2AAFD1632B4FEEAC99AE57C23138A94F13DE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:31:59:39:19:3f:52:7d:1d:ed:e9:af:c2:
8c:cd:22:4c:26:36:ab:d6:df:67:f3:27:34:fa:39:
30:bd:26:bc:93:e1:f0:d0:53:7b:5a:24:88:da:d7:
49:fd:45:7a:58:07:dd:b6:7c:bb:86:52:a3:0f:7e:
a1:21:d3:17:6e:f3:a6:31:8b:68:57:72:d8:25:0c:
19:4a:50:69:17:f3:fb:41:3a:df:c1:80:32:fc:8f:
a5:25:e7:c2:86:f8:6e:2b:72:ea:82:98:13:d0:19:
1a:78:12:1b:18:a1:5a:a9:c0:73:fa:f0:af:2a:cc:
a7:4d:92:47:15:31:a9:03:c4:2b:6a:cc:29:aa:7f:
e0:30:fe:aa:ab:6c:7b:3a:14:5c:5b:11:9d:b0:ff:
2a:05:c1:4f:3b:f0:38:e5:8f:54:47:4e:25:6b:1b:
e3:aa:ae:11:2e:fc:a6:c7:8d:0a:a0:b8:20:9b:a0:
8e:af:41:bb:c4:72:29:5b:ae:81:46:29:44:7f:73:
6a:a6:7c:77:65:09:8d:93:ae:14:50:0e:aa:c8:ef:
b2:72:63:ae:19:01:5c:90:f0:e6:e0:cf:4a:74:47:
86:33:a9:61:e5:ba:c0:ed:11:df:c4:66:7a:17:e8:
7d:50:41:0e:12:f4:d7:6b:30:e6:20:f9:db:06:28:
3f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E2:AA:FD:16:32:B4:FE:EA:C9:9A:E5:7C:23:13:8A:94:F1:3D:E5
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34332e3235322e3135362e302f32322d3234203d3e20313439373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.252.156.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:a5:18:f0:25:9a:2c:06:ff:5b:bd:ab:d9:0d:6e:9b:57:b9:
18:94:e6:6b:ae:dc:86:73:ac:d8:b0:16:77:c1:8f:7e:3d:d4:
f3:41:b7:54:23:9a:00:73:29:1a:1d:8c:82:8f:45:ef:2b:2f:
70:6a:f2:f8:1b:e2:84:86:57:17:00:7a:c2:a7:f3:0e:c9:49:
f0:97:83:1a:a8:19:fa:5a:b2:53:13:ab:89:93:68:58:13:b3:
c6:9a:16:81:fe:03:81:88:2f:ed:63:80:90:2b:71:8a:53:0d:
c1:81:c6:da:ac:ee:68:64:e8:bd:0b:4a:25:a7:9b:e8:fe:45:
a9:d3:94:27:c1:da:bc:2e:8a:0a:1a:14:c8:19:36:00:30:48:
1b:17:1b:fe:0c:3b:64:03:16:86:48:cf:05:b8:01:4d:f0:21:
e5:52:4e:02:b0:c2:3e:b0:4d:9f:fd:66:f8:b4:ea:55:c1:19:
e9:f1:ee:bf:04:c3:17:2f:86:7d:4c:fb:a6:4e:37:56:64:49:
79:c3:35:9d:5b:92:38:0c:c8:f5:bb:ba:32:79:75:ca:9f:90:
0d:34:78:ce:cd:d9:e4:19:30:d4:81:60:e3:15:97:14:e2:e6:
7e:76:80:09:8c:e4:28:f5:06:09:96:1b:9c:5c:de:33:58:ce:
3d:8f:04:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 11:36:18 2025 by rpki-client