Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa
File: 34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa (raw, json)
Hash identifier: uQXGM2cnzjEJ+e+qYTRcu8Q2bkfF87zDJZZFwMyns1U=
Subject key identifier: AD:D4:23:FE:44:8E:31:B9:B3:86:42:5D:5B:F4:F9:BA:8D:17:BA:04
Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087
Certificate serial: 0672136E1DDEBC0DD24FA7ED84204180BA803142
Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa
Signing time: Mon 01 Jul 2024 01:02:43 +0000
ROA not before: Mon 01 Jul 2024 00:57:43 +0000
ROA not after: Mon 30 Jun 2025 01:02:43 +0000
asID: 131717
IP address blocks: 45.118.112.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:72:13:6e:1d:de:bc:0d:d2:4f:a7:ed:84:20:41:80:ba:80:31:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087
Validity
Not Before: Jul 1 00:57:43 2024 GMT
Not After : Jun 30 01:02:43 2025 GMT
Subject: CN=ADD423FE448E31B9B386425D5BF4F9BA8D17BA04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a1:89:d5:19:67:4c:dc:d0:6a:dd:bb:95:4f:
17:4c:35:fd:40:3b:c1:29:89:85:2d:32:09:0a:22:
c8:73:da:83:d0:15:6e:d2:9c:ea:1e:64:72:7e:34:
ba:16:01:7f:cc:e9:43:22:ca:7a:90:33:a7:52:cf:
cc:77:38:0f:aa:77:82:f8:c0:49:2b:da:af:69:17:
22:54:00:d1:34:d3:66:11:66:f7:5c:e6:be:ab:ab:
91:13:31:4a:4c:47:fb:f8:48:e9:71:9d:7b:55:64:
e8:38:57:1e:2c:09:16:79:7f:f2:2f:ad:0d:cf:bc:
f4:c1:f1:2f:07:de:42:af:ca:91:45:50:8b:d7:80:
63:72:fc:90:33:27:25:9e:f0:67:a3:1b:97:cc:e2:
37:a7:1c:20:6d:c3:6b:37:7b:23:ae:68:f7:e9:56:
ff:12:e9:4a:83:dd:63:c9:56:91:30:a9:07:dc:3e:
1c:2c:66:35:00:32:19:07:e7:76:6b:65:6a:b8:89:
cb:f6:30:d7:9a:f6:c9:ca:b1:6b:ea:26:1c:45:79:
d9:50:35:dd:b1:ef:19:73:e8:15:fd:17:2f:14:d9:
ff:a4:33:73:68:38:42:b9:17:5c:76:96:13:39:41:
ae:2f:d5:10:d3:18:20:57:d7:04:8c:4c:aa:20:ed:
ed:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D4:23:FE:44:8E:31:B9:B3:86:42:5D:5B:F4:F9:BA:8D:17:BA:04
X509v3 Authority Key Identifier:
keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/34352e3131382e3131322e302f32322d3232203d3e20313331373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.118.112.0/22
Signature Algorithm: sha256WithRSAEncryption
63:8c:09:00:6d:57:39:4a:ff:d7:6e:c0:b2:de:e9:97:8c:d1:
54:3b:fb:07:9b:ff:53:9a:a1:10:69:bf:e9:42:84:eb:a6:87:
54:bc:96:27:5c:74:ee:60:4b:a9:02:09:d7:29:08:40:7c:94:
bc:a8:2d:87:9d:38:b7:b9:5d:9e:24:b0:e3:95:fd:dd:e4:94:
10:16:e7:ef:83:a0:e6:88:4d:ba:9d:23:e7:1c:c5:71:c6:5f:
d6:36:2f:a9:ea:2c:30:25:01:62:8c:7b:61:88:04:0c:31:8e:
80:ed:93:bd:38:23:e1:39:53:b6:00:f8:d0:18:be:24:64:63:
7f:c1:dd:95:9b:8a:22:c0:f7:72:4b:1d:9a:2b:20:37:84:0a:
db:ae:f0:90:3c:97:75:1e:eb:d5:d8:84:c6:4e:d8:9f:c5:2e:
c7:1d:32:9f:c6:a1:33:6a:bf:71:4a:df:e3:f7:cc:1d:50:a1:
12:e2:88:c4:b7:77:f3:57:9b:7c:72:e7:29:f7:f5:6a:b7:56:
30:f8:24:1d:5c:d7:01:22:df:b0:e3:06:ee:e7:03:fd:b3:8a:
06:e7:df:45:1e:be:2f:67:c0:d2:02:74:47:7a:7f:7c:f5:a7:
f2:d8:d4:72:c2:92:03:c7:b9:b1:c1:5e:a6:49:38:a0:dd:02:
99:2e:07:7e
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUBnITbh3evA3ST6fthCBBgLqAMUIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4
MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDNaFw0yNTA2MzAwMTAyNDNaMDMxMTAvBgNV
BAMTKEFERDQyM0ZFNDQ4RTMxQjlCMzg2NDI1RDVCRjRGOUJBOEQxN0JBMDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGoYnVGWdM3NBq3buVTxdMNf1A
O8EpiYUtMgkKIshz2oPQFW7SnOoeZHJ+NLoWAX/M6UMiynqQM6dSz8x3OA+qd4L4
wEkr2q9pFyJUANE002YRZvdc5r6rq5ETMUpMR/v4SOlxnXtVZOg4Vx4sCRZ5f/Iv
rQ3PvPTB8S8H3kKvypFFUIvXgGNy/JAzJyWe8GejG5fM4jenHCBtw2s3eyOuaPfp
Vv8S6UqD3WPJVpEwqQfcPhwsZjUAMhkH53ZrZWq4icv2MNea9snKsWvqJhxFedlQ
Nd2x7xlz6BX9Fy8U2f+kM3NoOEK5F1x2lhM5Qa4v1RDTGCBX1wSMTKog7e0hAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUrdQj/kSOMbmzhkJdW/T5uo0XugQwHwYDVR0j
BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k
MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz
NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2
NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05
ZjJkLWNmMTZiMWU0YTM1My8wLzM0MzUyZTMxMzEzODJlMzEzMTMyMmUzMDJmMzIz
MjJkMzIzMjIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLXZwMA0GCSqG
SIb3DQEBCwUAA4IBAQBjjAkAbVc5Sv/XbsCy3umXjNFUO/sHm/9TmqEQab/pQoTr
podUvJYnXHTuYEupAgnXKQhAfJS8qC2HnTi3uV2eJLDjlf3d5JQQFufvg6DmiE26
nSPnHMVxxl/WNi+p6iwwJQFijHthiAQMMY6A7ZO9OCPhOVO2APjQGL4kZGN/wd2V
m4oiwPdySx2aKyA3hArbrvCQPJd1HuvV2ITGTtifxS7HHTKfxqEzar9xSt/j98wd
UKES4ojEt3fzV5t8cucp9/Vqt1Yw+CQdXNcBIt+w4wbu5wP9s4oG599FHr4vZ8DS
AnRHen989afy2NRywpIDx7mxwV6mSTig3QKZLgd+
-----END CERTIFICATE-----
Generated at Sun Apr 6 14:34:42 2025 by rpki-client