Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa
File: 34332e3234382e3231322e302f32342d3234203d3e203538343734.roa (raw, json)
Hash identifier: pg0ViMH1wjYLBratw2hvbKKsWrlS5/ljazg4HhV4YD8=
Subject key identifier: 72:DA:17:EC:F1:00:55:77:02:DD:73:25:08:BE:F6:26:84:C3:8C:80
Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098
Certificate serial: 4AAEFE5E9BBC005AE83C912EF161335D0F41832E
Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa
Signing time: Sun 25 Aug 2024 05:00:02 +0000
ROA not before: Sun 25 Aug 2024 04:55:02 +0000
ROA not after: Sun 24 Aug 2025 05:00:02 +0000
asID: 58474
IP address blocks: 43.248.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:ae:fe:5e:9b:bc:00:5a:e8:3c:91:2e:f1:61:33:5d:0f:41:83:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098
Validity
Not Before: Aug 25 04:55:02 2024 GMT
Not After : Aug 24 05:00:02 2025 GMT
Subject: CN=72DA17ECF100557702DD732508BEF62684C38C80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:7d:ae:58:58:d2:10:56:46:6d:94:57:00:d8:
ef:3c:99:43:89:2e:de:0d:28:cc:5a:38:e7:ad:86:
12:5e:d2:ef:fa:26:c8:7f:95:90:21:1f:56:a2:fb:
32:8b:43:b6:ed:2e:20:16:81:91:3b:04:37:2e:c7:
e0:fc:32:d6:92:a8:dc:78:44:ab:cb:bd:ae:ee:76:
88:43:3b:c8:96:04:f5:eb:43:1b:3e:a1:88:72:6d:
0d:03:5d:eb:fe:42:43:55:b3:4d:b9:f6:29:d0:b5:
dd:c3:8c:68:9a:4b:03:08:90:14:74:e3:87:a3:ad:
bf:c7:7c:d6:89:59:36:8a:93:4e:9c:df:01:58:4d:
78:6b:f5:4f:3c:a3:c1:28:5e:02:e5:dd:a3:5b:ec:
e2:15:ba:f3:1a:01:50:96:cd:67:98:2c:b9:1f:dc:
12:72:2e:56:f5:39:ba:4a:1c:fe:f7:ec:bf:d7:c8:
c0:0c:ee:2c:1a:d0:07:08:83:81:04:11:6c:96:f3:
29:00:dc:fd:3d:a7:79:2d:86:ef:db:53:09:46:f6:
8c:2f:19:5c:a8:d4:55:98:6f:ea:7e:96:b5:98:86:
43:ca:da:21:1b:aa:fd:67:44:2b:d8:3b:64:07:0d:
3a:69:21:40:bb:ae:11:5e:b1:33:ad:49:6f:da:eb:
9f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DA:17:EC:F1:00:55:77:02:DD:73:25:08:BE:F6:26:84:C3:8C:80
X509v3 Authority Key Identifier:
keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/34332e3234382e3231322e302f32342d3234203d3e203538343734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.248.212.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:15:69:2f:75:29:52:24:90:fc:e7:09:59:44:fe:44:78:9a:
8d:20:76:65:2a:b7:be:0d:d4:15:df:e3:75:54:e6:23:38:e4:
07:09:ed:fc:c6:e3:dd:98:7a:08:6a:61:c1:46:ab:4b:dc:44:
66:9f:fa:05:03:ed:24:53:64:0c:e0:5d:ef:05:5c:1a:0c:8a:
47:83:bd:91:cd:cd:9f:d3:50:a6:83:f4:ed:92:d9:fb:31:a6:
e9:10:f0:80:c4:2e:43:21:44:9f:df:f6:35:2e:5a:81:2d:0f:
7c:25:0d:c5:c7:c9:ac:d2:2c:0c:b9:ba:ba:2e:7b:95:b6:9e:
ad:13:8e:86:28:14:46:8f:f8:c3:f9:ef:5d:e0:d4:59:5f:34:
03:6a:be:f0:10:95:be:d6:18:e5:5a:60:6d:6f:82:7b:fe:66:
51:55:8c:9c:39:da:38:85:14:22:c9:7f:99:21:6e:6c:93:7e:
12:75:11:28:2e:45:c3:8a:c9:06:e9:91:93:ed:6d:e7:5c:4c:
61:47:8e:a4:b7:4b:ee:53:2f:1e:e9:26:96:56:48:79:b1:40:
d6:15:d7:fa:31:15:73:4a:e6:af:4e:e0:0d:a5:ac:b2:69:a4:
83:21:07:71:c3:ff:00:79:a5:9f:64:24:93:bd:46:57:20:37:
c3:b2:be:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:05:07 2025 by rpki-client