Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa
File: 34332e3234322e3133332e302f32342d3234203d3e203538343736.roa (raw, json)
Hash identifier: R0NLF4Ov1wAGeHFAFhKyGtvsypexoChl/jl0cHH5TqA=
Subject key identifier: 5A:44:EF:34:84:77:91:4B:3C:73:B2:D3:48:CE:99:17:70:12:CF:1D
Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E
Certificate serial: 534ADECC3386D0322010A888BCD133712C576D64
Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa
Signing time: Mon 01 Jul 2024 01:05:21 +0000
ROA not before: Mon 01 Jul 2024 01:00:21 +0000
ROA not after: Mon 30 Jun 2025 01:05:21 +0000
asID: 58476
IP address blocks: 43.242.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:4a:de:cc:33:86:d0:32:20:10:a8:88:bc:d1:33:71:2c:57:6d:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E
Validity
Not Before: Jul 1 01:00:21 2024 GMT
Not After : Jun 30 01:05:21 2025 GMT
Subject: CN=5A44EF348477914B3C73B2D348CE99177012CF1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:61:27:fe:ee:72:c3:b8:a3:56:9c:06:41:45:
7b:34:41:69:b2:4a:7c:8c:22:f3:6d:55:9a:6c:74:
d0:c2:d0:67:da:bc:0e:3a:17:9e:da:d3:04:9f:9e:
c7:7f:6e:ee:c4:b3:54:6c:c4:eb:b3:60:1f:2c:5b:
d7:a0:fc:04:43:89:77:e9:4a:69:8d:f3:f6:75:19:
b9:4b:7d:50:61:de:54:ff:99:5a:a0:89:91:5d:42:
d9:33:20:13:5b:07:5e:7f:a8:ce:cd:1b:3b:ac:79:
85:9e:fd:cc:c0:4b:96:4e:7d:54:75:66:95:c3:13:
7b:41:90:fb:7a:59:c2:95:b6:bf:db:21:3f:73:3d:
26:21:4a:27:2a:70:f6:ee:c3:99:c8:9c:d7:54:6f:
59:d2:34:90:15:7f:37:a2:c1:9c:88:62:3d:1b:76:
61:96:13:e4:27:82:de:ef:7a:ab:d2:50:93:3b:11:
58:4f:22:e4:6d:05:94:2a:75:71:f5:1f:2d:ca:5e:
0a:52:55:e8:bb:5f:65:73:ca:0d:a5:9a:32:a7:fc:
39:c7:90:a8:34:9c:30:b1:a4:66:2c:38:0e:0c:67:
fb:4e:ba:24:9f:ba:85:f0:f7:5c:5b:37:41:c2:7f:
42:e6:f4:c4:7b:dd:7a:5b:a1:5d:f4:46:d4:e0:9a:
e1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:44:EF:34:84:77:91:4B:3C:73:B2:D3:48:CE:99:17:70:12:CF:1D
X509v3 Authority Key Identifier:
keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/34332e3234322e3133332e302f32342d3234203d3e203538343736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.242.133.0/24
Signature Algorithm: sha256WithRSAEncryption
91:92:f7:b2:dc:24:02:32:30:eb:57:85:2f:34:67:23:ae:7f:
5b:7d:0b:e9:e2:af:ec:71:73:9f:a8:29:29:62:87:4a:d9:4d:
a8:87:67:40:53:dc:0d:5c:39:ef:7f:5e:73:8a:ab:05:8b:d3:
df:80:77:5c:06:27:b4:58:45:05:a0:ca:30:79:1d:98:2a:aa:
79:67:51:7b:0d:75:5c:6e:61:20:94:3c:b6:48:07:19:53:a1:
67:aa:35:bd:45:41:a6:df:9f:78:3c:f2:f9:05:f3:52:6b:2f:
be:6d:17:63:b6:a5:02:46:11:d3:0c:50:6e:fe:0c:e3:17:35:
eb:7f:14:24:7a:61:66:18:5b:47:d4:66:be:b8:0f:d2:b5:4b:
06:4f:a9:43:5b:04:a0:a2:88:56:93:2f:a0:dd:30:ea:2b:aa:
ae:fd:b6:d8:7c:65:b4:e6:da:a2:92:6c:e1:ce:66:2a:5f:e1:
03:03:5e:0c:47:98:b3:36:70:20:8f:eb:f2:c0:8c:0e:54:65:
65:3b:7b:72:6a:79:d4:42:a8:d8:d7:b9:67:9e:56:29:d7:12:
b1:bb:87:7c:b7:77:77:f5:60:75:39:e7:f8:ab:28:7a:c9:55:
73:62:ad:fb:72:4a:40:fe:e7:95:05:ae:df:37:2e:f6:f3:6f:
1e:ee:8e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:56:55 2025 by rpki-client