Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e7d9f745-faa4-48ce-83b1-0bde33c2447f/0/3230332e3134352e36302e302f32332d3234203d3e203435323935.roa
File: 3230332e3134352e36302e302f32332d3234203d3e203435323935.roa (raw, json)
Hash identifier: Y23uNzVl1el7iBWf5vpvozngx2OvIctjxpp0+0DIq2E=
Subject key identifier: 93:25:75:A0:B3:D1:9C:48:7B:A7:8D:8B:69:27:3B:72:2D:EB:EC:CA
Certificate issuer: /CN=43352CF2FE94548EEF080C0D6A6DA5C07EE627AB
Certificate serial: 701FE0557A43DBF034EC3787C751734E94B40230
Authority key identifier: 43:35:2C:F2:FE:94:54:8E:EF:08:0C:0D:6A:6D:A5:C0:7E:E6:27:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43352CF2FE94548EEF080C0D6A6DA5C07EE627AB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e7d9f745-faa4-48ce-83b1-0bde33c2447f/0/3230332e3134352e36302e302f32332d3234203d3e203435323935.roa
Signing time: Tue 12 Nov 2024 07:00:02 +0000
ROA not before: Tue 12 Nov 2024 06:55:02 +0000
ROA not after: Tue 11 Nov 2025 07:00:02 +0000
asID: 45295
IP address blocks: 203.145.60.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:1f:e0:55:7a:43:db:f0:34:ec:37:87:c7:51:73:4e:94:b4:02:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43352CF2FE94548EEF080C0D6A6DA5C07EE627AB
Validity
Not Before: Nov 12 06:55:02 2024 GMT
Not After : Nov 11 07:00:02 2025 GMT
Subject: CN=932575A0B3D19C487BA78D8B69273B722DEBECCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:85:ba:7e:ef:32:50:a7:be:e3:e5:5b:7a:14:
6c:d3:82:68:20:ef:d8:b5:fd:86:22:a0:4a:5f:e7:
a3:cc:1a:ac:40:47:e7:d7:80:25:42:79:ff:f8:a8:
df:de:1b:72:ce:be:6a:ec:07:4c:00:9a:86:33:8c:
3a:e4:66:8c:8e:f7:ec:75:28:dc:3d:90:0a:f7:b6:
3b:76:a3:fb:75:3e:8e:af:15:d3:38:cf:c7:a0:93:
4c:0a:ee:1e:b2:f7:d1:20:25:37:37:fa:1f:0d:b9:
ac:5a:07:7b:e5:d7:0d:4b:7f:07:6c:f9:5d:91:dc:
32:47:b8:56:54:17:da:73:46:5a:fa:ae:32:08:90:
a5:2c:90:db:88:61:c3:a1:69:30:a5:86:69:e4:c0:
f1:c8:7a:34:aa:6b:6d:af:a8:17:c1:7c:f6:90:7c:
a7:e5:37:7e:0b:69:77:ed:88:a2:09:21:80:71:c1:
53:04:01:54:09:e2:5e:c4:50:07:2c:e7:ea:49:13:
a0:f4:03:28:d4:d1:0b:79:87:ae:e3:90:c1:e1:84:
45:db:40:5b:13:2b:16:8a:bc:0c:f6:d8:ee:a2:ee:
fa:46:6c:e8:e5:3f:aa:db:7e:d0:c5:33:d0:b6:5d:
af:2a:52:53:68:3f:f7:ea:29:40:3c:09:ea:4c:8b:
75:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:25:75:A0:B3:D1:9C:48:7B:A7:8D:8B:69:27:3B:72:2D:EB:EC:CA
X509v3 Authority Key Identifier:
keyid:43:35:2C:F2:FE:94:54:8E:EF:08:0C:0D:6A:6D:A5:C0:7E:E6:27:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e7d9f745-faa4-48ce-83b1-0bde33c2447f/0/43352CF2FE94548EEF080C0D6A6DA5C07EE627AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43352CF2FE94548EEF080C0D6A6DA5C07EE627AB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e7d9f745-faa4-48ce-83b1-0bde33c2447f/0/3230332e3134352e36302e302f32332d3234203d3e203435323935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.145.60.0/23
Signature Algorithm: sha256WithRSAEncryption
09:4c:87:a1:d3:28:80:c4:7d:d8:aa:74:c5:8a:2d:65:e4:6b:
1a:63:e0:7d:0f:1e:98:51:12:f9:53:70:85:cd:21:ef:7b:4f:
e0:73:de:fd:02:fb:7a:5b:49:16:42:1b:e2:65:c3:c9:30:80:
fe:f9:8f:c8:25:24:a0:2d:aa:9e:fa:75:c0:f6:eb:a9:9a:12:
e9:d7:8c:c0:51:d6:e7:69:4d:0f:69:cd:2e:42:01:14:47:13:
b9:58:bb:9c:63:cd:c3:97:5f:38:e5:17:be:77:5f:9c:20:e6:
17:4d:7e:aa:d6:17:74:52:8b:cc:ce:0d:6c:9e:29:fc:33:65:
33:a8:98:90:d9:59:c3:f9:c8:0f:a3:df:29:4f:f9:cc:68:37:
70:d6:81:a3:44:44:f2:5d:00:45:25:dc:0d:ac:73:77:99:97:
e6:73:a7:f6:a3:84:b9:09:64:aa:a1:14:1b:a0:fa:a7:d5:a0:
55:6c:7d:e9:a3:de:81:1a:e3:05:58:98:14:85:79:86:af:9a:
55:d0:8d:72:a9:a4:5f:54:3f:d6:79:77:64:92:df:d4:31:b9:
97:83:f6:ed:b3:b8:64:08:6d:87:6c:26:c4:4e:e4:1b:7e:5f:
51:a7:4c:9f:c6:da:6a:1a:d9:33:d3:a0:7a:b5:cc:a1:42:eb:
d1:e7:17:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:02:36 2025 by rpki-client