Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa
File: 34332e3234372e32302e302f32322d3234203d3e203234353233.roa (raw, json)
Hash identifier: Enxf/xa4QiGnjWUhd96Msh7Dkzmv4QjqPDYSxD4tjhE=
Subject key identifier: 0C:4B:F4:B9:22:63:95:A6:61:13:3A:27:5B:AA:F5:03:91:E5:F6:F3
Certificate issuer: /CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38
Certificate serial: 075DC904A1334F6A198EC7EB9C8D171D353B3087
Authority key identifier: 11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa
Signing time: Sat 01 Jun 2024 09:00:01 +0000
ROA not before: Sat 01 Jun 2024 08:55:01 +0000
ROA not after: Sat 31 May 2025 09:00:01 +0000
asID: 24523
IP address blocks: 43.247.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:5d:c9:04:a1:33:4f:6a:19:8e:c7:eb:9c:8d:17:1d:35:3b:30:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=116B1B493114E6F87244DA54CAB8D8EAB2503A38
Validity
Not Before: Jun 1 08:55:01 2024 GMT
Not After : May 31 09:00:01 2025 GMT
Subject: CN=0C4BF4B9226395A661133A275BAAF50391E5F6F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:18:d7:d1:2c:2b:d5:04:f7:dc:e3:25:5e:1a:
77:05:bf:16:6a:08:e7:26:41:f4:fe:29:88:3a:f6:
7e:b8:76:c0:b0:c7:24:a1:95:89:98:ab:60:f5:c7:
35:ba:60:2e:5c:10:d0:03:ea:61:f6:b5:3f:63:83:
ea:34:2a:b6:67:63:61:76:ec:6b:ab:ae:fa:79:8a:
a5:83:d3:1c:0f:ff:86:41:3e:5c:ed:aa:0e:cc:1e:
c6:97:3d:2f:d4:ba:6a:ba:2b:16:df:ab:e0:dd:83:
07:ff:27:7c:45:3d:87:7c:a4:cf:6f:17:be:da:bf:
80:2f:b3:13:b8:5d:cd:b5:2d:c6:71:c5:81:0c:38:
05:03:4a:90:4f:ae:ac:5c:4f:b0:ba:4d:b1:ba:e3:
75:b1:2b:13:f6:9e:4f:cf:a6:c1:95:a6:ca:46:15:
c9:3e:dd:cb:85:7a:60:17:84:43:74:55:57:57:9d:
83:f6:1d:36:09:af:4a:77:db:fa:2b:e7:8e:6d:c5:
09:fa:3a:08:ab:d0:99:2a:ca:81:f5:d3:6c:b1:79:
bd:f4:0e:3d:51:76:7a:50:b4:59:e2:fe:22:5f:25:
6e:2e:9b:5b:58:97:f8:af:60:c3:bc:ae:51:c4:ca:
e3:f0:7e:bf:5f:5f:d3:05:9e:23:4e:bf:86:7d:c8:
a2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:4B:F4:B9:22:63:95:A6:61:13:3A:27:5B:AA:F5:03:91:E5:F6:F3
X509v3 Authority Key Identifier:
keyid:11:6B:1B:49:31:14:E6:F8:72:44:DA:54:CA:B8:D8:EA:B2:50:3A:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/116B1B493114E6F87244DA54CAB8D8EAB2503A38.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/116B1B493114E6F87244DA54CAB8D8EAB2503A38.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c667769-80dc-4093-b5f7-dfe7c5720486/0/34332e3234372e32302e302f32322d3234203d3e203234353233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.247.20.0/22
Signature Algorithm: sha256WithRSAEncryption
45:25:09:ca:b3:88:44:32:12:0a:82:ae:9c:66:5f:f6:19:be:
ab:df:2b:12:a4:80:0a:0c:9a:d1:d1:19:7c:56:56:a0:8a:f9:
d9:83:66:5e:5f:35:f1:63:0a:47:b0:da:b4:cf:2a:07:95:f4:
dd:17:81:0e:53:46:0e:61:ce:2b:18:8c:0e:f8:06:01:67:ab:
fc:ad:c1:b8:6c:3d:63:fd:64:bd:4c:71:b8:cc:6a:91:b8:54:
15:c2:58:37:ba:f7:11:73:70:8b:cb:5c:87:8d:36:0d:db:68:
99:cd:44:19:0b:c4:34:49:97:71:89:c7:33:0a:01:fd:cb:c2:
80:fa:93:a1:c1:7b:0d:3e:58:c5:5e:16:01:b5:1a:de:8a:cf:
4c:d8:96:ee:2e:a0:de:52:5f:6f:8e:5e:8c:a1:94:01:e7:3b:
18:ba:8c:8e:cf:b3:4e:d7:31:10:12:3e:6f:1a:05:ba:e2:1d:
48:c5:fb:08:68:9e:ad:ae:b8:b4:18:f5:9d:9b:35:39:36:02:
1e:de:5a:1f:0e:f2:17:b8:53:30:5d:fa:a9:03:e0:2b:84:94:
3d:f8:c1:59:ec:55:33:59:65:c9:01:de:a2:d5:9c:19:c3:2d:
0c:42:ff:44:ca:88:7a:92:e5:9f:85:aa:20:ce:06:76:42:b6:
14:04:50:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 00:20:49 2025 by rpki-client