Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203538353532.roa
File: 34332e3234302e3233302e302f32342d3234203d3e203538353532.roa (raw, json)
Hash identifier: 9uufcm26ubwa05hCrwJCFN73vlGb5Y7hivDyc6QfKfs=
Subject key identifier: E1:A6:AE:88:9A:93:D7:3A:5A:37:83:07:D4:BE:3B:62:05:4B:52:DE
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 544042E2F6953B8F12E44875E77B0BC6C50139C6
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203538353532.roa
Signing time: Thu 12 Dec 2024 04:00:00 +0000
ROA not before: Thu 12 Dec 2024 03:55:00 +0000
ROA not after: Thu 11 Dec 2025 04:00:00 +0000
asID: 58552
IP address blocks: 43.240.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:40:42:e2:f6:95:3b:8f:12:e4:48:75:e7:7b:0b:c6:c5:01:39:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Dec 12 03:55:00 2024 GMT
Not After : Dec 11 04:00:00 2025 GMT
Subject: CN=E1A6AE889A93D73A5A378307D4BE3B62054B52DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b4:e2:b1:e8:6a:ac:41:29:9e:56:60:e0:b7:
c9:68:82:41:50:53:dc:47:00:f4:42:f4:56:86:81:
69:98:6a:7f:9b:89:62:cf:a9:8c:50:bc:6e:7e:7d:
5b:44:0c:e2:c9:0d:37:b0:bf:62:20:5e:35:a2:f2:
09:c0:c3:c4:fc:e1:64:11:ce:06:25:04:16:12:7d:
86:f1:c2:96:27:be:b3:63:8a:12:4a:fd:c8:ea:54:
d8:42:34:0e:95:65:f9:01:c8:42:e9:d6:3d:cf:b7:
20:3b:ef:5e:00:88:c4:48:5f:18:f8:40:27:07:aa:
10:59:65:80:33:9a:48:a4:e0:17:03:f2:a7:c3:ee:
eb:e0:16:95:46:3f:81:07:7e:fd:c9:87:35:17:fd:
3a:d3:4f:d1:bf:c7:fe:ba:ad:f9:7d:89:23:e9:43:
7c:26:62:45:2e:4c:89:bb:72:4d:f2:af:61:ad:6d:
a5:a6:95:cb:84:7d:6a:ab:c6:88:c1:f5:18:fe:76:
73:db:56:2d:6a:d6:0b:10:e1:2f:6f:e3:c6:d0:de:
8b:60:af:ea:a1:d1:76:b1:7e:8f:b4:d0:f3:35:70:
df:4b:41:b7:ef:4a:a8:fe:56:fc:b7:54:74:99:91:
ab:d2:97:5b:f8:64:ad:a8:a0:96:90:e0:4d:66:f9:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A6:AE:88:9A:93:D7:3A:5A:37:83:07:D4:BE:3B:62:05:4B:52:DE
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.240.230.0/24
Signature Algorithm: sha256WithRSAEncryption
84:7f:51:51:52:2e:75:b7:bb:d5:51:2e:11:4b:bc:71:98:3a:
90:a3:8f:30:f6:36:10:f9:7b:5b:62:91:09:1f:28:bd:6e:d8:
32:31:5b:a6:3f:0f:57:b1:61:b1:01:29:5c:4e:f1:38:41:d1:
dd:c1:89:98:d9:77:d1:78:d0:86:e5:4b:5f:9d:fe:a0:ca:66:
f3:96:4e:fc:8d:07:2a:dd:b3:66:a4:e2:21:c9:fd:9b:5f:e2:
3a:9f:34:bf:36:d4:22:4c:00:ab:99:6b:8d:c0:27:14:97:2f:
04:91:f3:12:36:62:a0:a0:8a:eb:8a:de:55:a8:93:40:85:26:
85:e9:7f:4d:f9:f5:59:c7:0c:b6:51:08:34:ae:9d:24:ac:48:
55:a6:f9:68:7c:e1:ab:0a:aa:8e:32:b9:df:a6:fc:a0:3c:ae:
e5:a6:e2:ec:5c:93:82:4b:d5:d0:3a:87:83:f8:18:9d:c5:94:
23:64:43:e4:cc:4c:dc:52:7a:6a:15:c9:81:5d:9d:79:f9:6b:
86:ff:ae:bd:4a:22:a0:e2:e3:d2:1f:be:0f:93:21:73:93:e0:
92:63:3e:d4:d6:0d:d3:4f:3e:7b:00:c8:d3:6c:ed:5e:91:32:
ac:90:35:3c:f8:d1:c5:4e:90:e6:c5:cb:04:4b:fb:e3:e0:49:
0c:5c:3f:54
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUVEBC4vaVO48S5Eh153sLxsUBOcYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF
NEQ1RkRFNjAeFw0yNDEyMTIwMzU1MDBaFw0yNTEyMTEwNDAwMDBaMDMxMTAvBgNV
BAMTKEUxQTZBRTg4OUE5M0Q3M0E1QTM3ODMwN0Q0QkUzQjYyMDU0QjUyREUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdtOKx6GqsQSmeVmDgt8logkFQ
U9xHAPRC9FaGgWmYan+biWLPqYxQvG5+fVtEDOLJDTewv2IgXjWi8gnAw8T84WQR
zgYlBBYSfYbxwpYnvrNjihJK/cjqVNhCNA6VZfkByELp1j3PtyA7714AiMRIXxj4
QCcHqhBZZYAzmkik4BcD8qfD7uvgFpVGP4EHfv3JhzUX/TrTT9G/x/66rfl9iSPp
Q3wmYkUuTIm7ck3yr2GtbaWmlcuEfWqrxojB9Rj+dnPbVi1q1gsQ4S9v48bQ3otg
r+qh0Xaxfo+00PM1cN9LQbfvSqj+Vvy3VHSZkavSl1v4ZK2ooJaQ4E1m+cK3AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU4aauiJqT1zpaN4MH1L47YgVLUt4wHwYDVR0j
BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx
NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1
RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05
NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMzMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5jANBgkqhkiG
9w0BAQsFAAOCAQEAhH9RUVIudbe71VEuEUu8cZg6kKOPMPY2EPl7W2KRCR8ovW7Y
MjFbpj8PV7FhsQEpXE7xOEHR3cGJmNl30XjQhuVLX53+oMpm85ZO/I0HKt2zZqTi
Icn9m1/iOp80vzbUIkwAq5lrjcAnFJcvBJHzEjZioKCK64reVaiTQIUmhel/Tfn1
WccMtlEINK6dJKxIVab5aHzhqwqqjjK536b8oDyu5abi7FyTgkvV0DqHg/gYncWU
I2RD5MxM3FJ6ahXJgV2deflrhv+uvUoioOLj0h++D5Mhc5PgkmM+1NYN008+ewDI
02ztXpEyrJA1PPjRxU6Q5sXLBEv74+BJDFw/VA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:17 2025 by rpki-client