Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa
File: 3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa (raw, json)
Hash identifier: 1tp2p0lmzVYvYN9LyCd/jXojPSljtaqZldm282NgTBI=
Subject key identifier: 44:AA:AF:0D:7A:1F:90:E6:A2:64:B7:31:14:EA:B3:B6:5E:7D:82:36
Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F
Certificate serial: 5E9919408FBFB2947845DEDCF454BB34F2416F1E
Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa
Signing time: Mon 01 Jul 2024 01:03:36 +0000
ROA not before: Mon 01 Jul 2024 00:58:36 +0000
ROA not after: Mon 30 Jun 2025 01:03:36 +0000
asID: 131745
IP address blocks: 210.247.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:99:19:40:8f:bf:b2:94:78:45:de:dc:f4:54:bb:34:f2:41:6f:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F
Validity
Not Before: Jul 1 00:58:36 2024 GMT
Not After : Jun 30 01:03:36 2025 GMT
Subject: CN=44AAAF0D7A1F90E6A264B73114EAB3B65E7D8236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:06:f3:1b:41:5c:94:04:0e:20:b5:be:8b:6d:
12:72:9e:c6:80:a2:96:5b:e8:02:c6:4c:a5:fe:f4:
74:61:37:63:bf:e7:9a:7e:39:ba:20:17:a3:82:4e:
8d:01:e9:84:3b:ca:57:ea:38:d0:4b:68:43:e2:79:
b4:71:e2:7d:9e:f1:3b:3c:ef:f3:8a:c0:f4:51:31:
e2:68:f7:09:9d:bb:e1:33:d6:ce:f9:6c:9d:64:04:
38:28:6a:d0:70:5d:e4:21:01:6d:3c:c0:c5:9f:4d:
c1:f9:82:50:33:26:25:61:01:97:ea:74:f8:c2:e8:
f5:e0:03:a5:91:fe:84:ea:73:72:2b:61:cc:ad:85:
e6:30:cb:5c:2a:e6:d2:f4:b1:75:bb:d5:18:bf:5a:
30:a4:fe:26:21:65:3e:d1:98:d8:13:f3:28:a7:c2:
58:17:c4:08:ed:fa:ce:cb:22:f7:75:60:13:da:b9:
05:27:24:a1:fe:f5:58:5b:7c:55:ba:f7:a5:4b:01:
03:c0:5d:bc:bb:a4:da:bf:f8:8a:4a:b8:2c:e2:58:
16:4c:1a:d1:e7:00:2d:2e:a1:f1:49:3e:00:c9:26:
33:b4:57:34:2b:24:9d:e8:4a:92:30:09:8c:0b:f9:
6f:a3:65:0b:ab:91:f6:34:35:a8:66:bd:90:b9:c3:
96:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AA:AF:0D:7A:1F:90:E6:A2:64:B7:31:14:EA:B3:B6:5E:7D:82:36
X509v3 Authority Key Identifier:
keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3234352e302f32342d3234203d3e20313331373435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.247.245.0/24
Signature Algorithm: sha256WithRSAEncryption
44:64:d4:59:e9:64:1b:6b:74:1c:fc:11:92:0e:56:d9:d1:e4:
f7:9b:08:83:86:50:51:5a:4f:96:20:5a:64:5e:8b:0f:58:f9:
6e:92:19:a1:fd:71:de:fb:b8:39:22:93:b2:59:7a:c5:47:70:
f3:4f:25:a1:a1:dd:ec:b9:9f:37:12:33:b4:10:5e:06:22:0d:
fe:30:2e:8d:23:9c:4f:64:4d:1f:48:38:f2:e8:cd:91:64:ca:
be:30:0a:95:5b:71:bd:42:45:75:85:6f:9e:dd:fd:4d:5a:f3:
82:77:22:11:86:2f:cf:59:ad:89:8a:2b:d6:1d:70:e2:e7:17:
67:7f:c8:ed:d1:a5:a0:0f:15:3a:2f:ba:b5:2e:10:2b:29:85:
77:d7:ac:9e:59:9e:3e:b8:7a:56:52:f1:fa:9a:57:ca:f4:a0:
9b:2b:e3:95:ca:ed:3f:30:3b:65:8f:73:ee:b1:3f:85:8a:98:
f9:d7:0f:36:1d:6e:da:51:fa:dd:7f:92:ea:dd:fb:b9:ec:42:
e4:59:9f:97:62:05:ac:70:61:db:4b:75:b1:fa:92:69:47:3a:
26:90:d7:f7:e7:95:e8:90:be:e3:ef:9f:c3:46:82:4f:4c:74:
c2:8a:1f:a3:12:78:2a:e3:e8:3f:55:c6:5b:f0:2f:b2:87:36:
1b:47:8f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:05:07 2025 by rpki-client