Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa
File: 34332e3235322e382e302f32342d3234203d3e203436303233.roa (raw, json)
Hash identifier: wh6YvEPsdN+rtUvLzRndd8s+BcF5EgbJin4zSMGk4S0=
Subject key identifier: 48:48:7C:7A:0E:87:B9:CB:76:B6:93:79:0D:E4:45:8D:A3:AC:87:74
Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695
Certificate serial: 1DF22C8EBF2F30DC54EAC41C509DBA93F1A089D2
Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa
Signing time: Mon 12 Aug 2024 15:17:10 +0000
ROA not before: Mon 12 Aug 2024 15:12:10 +0000
ROA not after: Mon 11 Aug 2025 15:17:10 +0000
asID: 46023
IP address blocks: 43.252.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:f2:2c:8e:bf:2f:30:dc:54:ea:c4:1c:50:9d:ba:93:f1:a0:89:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695
Validity
Not Before: Aug 12 15:12:10 2024 GMT
Not After : Aug 11 15:17:10 2025 GMT
Subject: CN=48487C7A0E87B9CB76B693790DE4458DA3AC8774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6c:69:f1:46:de:2d:c6:97:63:02:10:a0:3d:
3f:00:94:ea:aa:c4:4f:9d:53:25:c6:e8:e3:57:79:
8f:76:ae:00:07:9b:55:80:4d:a3:81:78:09:14:8e:
43:04:b6:a6:b7:93:8e:eb:4d:71:ea:94:e7:cd:41:
b0:32:9d:21:6c:31:69:3e:08:ea:5f:24:20:18:5c:
83:cd:a2:fc:f6:4f:c7:75:18:cc:d1:a4:05:c8:d6:
6d:a0:de:14:f3:69:7c:b6:02:f8:36:e6:c4:31:a8:
89:28:d6:9a:7b:79:a4:68:f0:4e:9a:76:40:84:f1:
bc:f1:13:46:ec:14:e5:c8:e3:47:c1:23:59:cb:12:
cb:82:3e:a2:f3:b6:3f:89:0b:3d:a1:02:d4:61:dc:
36:6b:10:f0:1c:a9:73:02:fa:c7:e1:e9:4b:14:5a:
96:77:b7:be:fc:c9:05:ce:67:41:2b:f2:b1:ef:2f:
20:27:2d:85:a4:b5:f2:9c:10:f4:1d:fb:6d:c5:8c:
60:bd:b9:a1:85:25:0a:62:86:59:7d:e0:8a:92:ea:
d7:a6:5f:2e:2c:d7:e9:9d:c6:a9:88:7b:21:6d:85:
3c:5a:b8:28:7e:3c:de:75:d6:1e:3e:59:2e:2a:fe:
a2:fb:ea:a9:84:d0:ce:6b:4b:88:37:6a:f6:85:b2:
1c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:48:7C:7A:0E:87:B9:CB:76:B6:93:79:0D:E4:45:8D:A3:AC:87:74
X509v3 Authority Key Identifier:
keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32342d3234203d3e203436303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.252.8.0/24
Signature Algorithm: sha256WithRSAEncryption
be:e1:9b:80:aa:7b:6c:25:e3:69:13:19:e6:5e:f1:7b:82:9a:
53:ca:12:c7:01:6a:a3:95:9f:e8:d3:b0:b6:03:42:d0:4c:7c:
53:15:13:46:e2:89:c3:72:fb:33:c1:62:40:24:7a:57:b4:88:
52:1a:73:92:fe:4f:63:5e:d6:11:c9:6d:7f:8a:f6:c0:da:f8:
85:86:ce:62:fa:64:a6:fc:9a:d8:6e:95:82:53:6b:f4:c1:3e:
62:91:a1:d6:81:2a:46:d5:93:d0:00:e8:3c:4a:79:f1:55:0d:
5a:b2:f9:43:9f:25:1a:87:ca:08:1e:4a:75:ab:84:5f:aa:61:
8e:be:3c:5e:54:65:ef:2e:4b:77:1b:b3:2c:04:a4:3b:61:fd:
3a:6b:7b:ef:ae:ae:c8:05:c4:c5:df:e5:8c:82:1c:1a:42:17:
4b:2e:66:d6:b7:9e:2c:8f:6e:5d:16:4f:2c:f9:b5:0f:2c:9d:
66:5d:cb:4f:85:60:19:6c:10:73:81:8e:69:c8:97:e7:f9:83:
5d:e5:02:ec:37:36:75:d1:3b:56:1e:20:67:a4:69:7c:4c:fc:
34:45:b0:c8:ee:55:69:df:64:20:85:f8:b9:27:20:cd:5b:54:
f6:d8:28:d8:6c:d1:fb:37:bf:ba:3c:83:db:42:28:ee:b2:32:
af:5d:be:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:38:55 2025 by rpki-client