Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa
File: 34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa (raw, json)
Hash identifier: ROzSHjIj4d0A5I5xwPcr8qcP04vsXN3kHThsDDQGeag=
Subject key identifier: F3:71:D7:8F:A1:64:37:5F:73:2F:14:F0:D8:BD:FA:FD:00:F2:EF:17
Certificate issuer: /CN=30D21A97E1EED902F151C3022374D979F0A4A7EF
Certificate serial: 3B4CB8FDA90A12C48AAAD12202B77ECC42DA6EFD
Authority key identifier: 30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa
Signing time: Sat 09 Nov 2024 07:00:01 +0000
ROA not before: Sat 09 Nov 2024 06:55:01 +0000
ROA not after: Sat 08 Nov 2025 07:00:01 +0000
asID: 152027
IP address blocks: 45.249.224.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:4c:b8:fd:a9:0a:12:c4:8a:aa:d1:22:02:b7:7e:cc:42:da:6e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30D21A97E1EED902F151C3022374D979F0A4A7EF
Validity
Not Before: Nov 9 06:55:01 2024 GMT
Not After : Nov 8 07:00:01 2025 GMT
Subject: CN=F371D78FA164375F732F14F0D8BDFAFD00F2EF17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4e:4b:ee:19:00:05:d0:6f:f2:e7:f9:11:58:
22:8d:a8:7f:21:6a:88:c7:84:1e:3e:49:43:58:47:
28:ac:f7:0b:40:80:df:03:1b:d6:f5:82:2d:6d:04:
c6:4e:b0:84:66:11:bb:d5:5b:10:de:c6:b0:41:a6:
b7:32:73:47:ac:ba:3a:75:b6:79:c1:42:03:ad:31:
c2:d2:cb:71:34:8f:ac:e0:28:47:e0:eb:9c:b9:87:
06:eb:ad:0f:46:69:9f:ab:b2:46:85:57:ce:90:e7:
e4:60:82:47:ca:7c:e9:af:2b:1b:cd:68:08:34:2f:
57:5c:85:36:09:42:b3:f2:ff:10:2d:00:3f:47:b9:
c3:4c:90:b3:1e:f9:99:e9:8c:9d:c9:ae:d2:e6:88:
b2:9b:4a:4b:5a:f7:ea:bc:dd:38:e8:0a:85:19:72:
7a:4d:fc:96:29:6c:c1:21:0c:1c:7d:1d:97:2c:69:
0c:bd:c7:03:37:86:5a:60:d5:0b:49:24:3b:ca:2f:
c0:b0:4f:d1:cb:90:ee:96:61:51:f2:fe:66:55:ba:
36:54:22:ce:fb:47:00:b8:97:c6:1b:e6:ff:b1:ea:
ce:09:39:36:65:c0:98:64:43:be:fd:f2:11:05:d7:
35:5e:23:7d:01:c4:62:ce:85:92:36:2b:66:ca:9f:
1c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:71:D7:8F:A1:64:37:5F:73:2F:14:F0:D8:BD:FA:FD:00:F2:EF:17
X509v3 Authority Key Identifier:
keyid:30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.249.224.0/23
Signature Algorithm: sha256WithRSAEncryption
d7:16:a3:f5:26:21:77:3d:a6:29:d3:80:c3:ca:31:e9:4c:16:
70:64:cb:85:22:9c:09:13:9a:e5:65:4a:36:82:f5:69:cb:84:
fe:84:d4:3a:4e:7b:33:a2:4c:d1:59:60:a9:26:49:59:d2:3e:
71:08:00:d6:c2:85:ae:83:75:60:6c:8a:b8:25:58:00:6a:14:
7f:c1:65:50:aa:50:83:50:a8:16:ce:56:b9:b4:fa:3d:95:53:
52:51:c1:3c:7d:27:79:04:64:d3:b6:c6:69:72:51:93:e5:00:
43:47:24:39:cf:e9:54:4b:c0:be:32:79:fa:18:ba:70:a7:5d:
72:44:ee:84:3c:7c:d4:46:e0:9f:48:3d:b9:54:e2:9d:f1:c7:
67:3c:56:be:b8:05:18:b4:8f:bb:4a:00:ab:3b:a6:bf:30:84:
34:94:7d:be:fc:03:2f:c6:7a:83:89:e4:34:8c:b7:b7:fa:f3:
1a:c8:b0:6d:04:70:88:2a:a8:5f:42:c7:71:5a:55:1d:40:3c:
05:60:f8:a7:6b:12:ca:50:8e:fe:0e:3f:14:19:15:8e:6b:f4:
29:df:14:5d:69:c2:a3:4a:d5:41:05:f4:ad:0e:cc:9c:8e:46:
1c:76:b1:42:50:1a:a3:5c:99:ce:1b:e9:8c:7c:eb:21:d4:77:
a6:3b:e3:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:47:51 2025 by rpki-client