Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa
File: 34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa (raw, json)
Hash identifier: nmoiRM53K6xpzn1bErPhguSmoFMNRryI2xbTQlBLJ8Q=
Subject key identifier: 34:7B:47:B7:08:CD:34:70:37:EF:25:00:D8:09:08:1C:A0:E3:4D:2B
Certificate issuer: /CN=30D21A97E1EED902F151C3022374D979F0A4A7EF
Certificate serial: 2D0C6ED4C88B232C3D56748C4140BB2AA50FB1C9
Authority key identifier: 30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa
Signing time: Sat 09 Nov 2024 07:00:01 +0000
ROA not before: Sat 09 Nov 2024 06:55:01 +0000
ROA not after: Sat 08 Nov 2025 07:00:01 +0000
asID: 152027
IP address blocks: 45.249.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:0c:6e:d4:c8:8b:23:2c:3d:56:74:8c:41:40:bb:2a:a5:0f:b1:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30D21A97E1EED902F151C3022374D979F0A4A7EF
Validity
Not Before: Nov 9 06:55:01 2024 GMT
Not After : Nov 8 07:00:01 2025 GMT
Subject: CN=347B47B708CD347037EF2500D809081CA0E34D2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:eb:e2:32:94:da:33:33:d4:65:87:40:13:e8:
4f:3a:70:5d:1d:68:33:6b:5d:15:14:37:0e:fc:4a:
73:e8:36:86:f8:2a:61:7c:be:29:39:c4:14:55:94:
0f:64:58:cd:d9:09:23:35:05:87:f8:99:f2:ea:47:
58:b7:f7:3b:28:9c:19:25:79:74:ce:c7:59:2f:5d:
d1:ea:d7:cc:38:5c:67:15:1d:25:73:41:f7:8a:19:
73:47:3f:01:c3:df:05:1b:50:ca:ed:c3:c6:ef:b2:
08:fe:81:d7:17:75:b2:69:56:2f:a6:7f:a7:23:fc:
15:a2:1d:8e:6f:77:87:0c:19:22:75:1f:e2:9f:15:
45:2c:c0:63:a7:e1:65:47:2a:b5:2e:ca:f7:64:51:
0b:1b:89:e9:66:3e:fc:40:34:2a:14:d7:36:6d:43:
59:cc:9c:cb:54:d5:af:4a:72:28:01:1a:6d:7f:fd:
97:bd:e7:93:8f:a5:46:42:91:96:14:18:1d:e7:94:
23:6e:4b:cf:58:12:69:ab:99:7e:ca:cf:2e:a5:1d:
82:69:8d:59:96:94:6c:74:6d:bd:15:ae:a9:a3:c1:
b0:8e:12:c9:07:14:1e:c0:36:00:a5:3a:b8:8b:0c:
c3:05:ee:83:0d:ee:6b:bc:74:c0:e2:8a:1a:17:c5:
62:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:7B:47:B7:08:CD:34:70:37:EF:25:00:D8:09:08:1C:A0:E3:4D:2B
X509v3 Authority Key Identifier:
keyid:30:D2:1A:97:E1:EE:D9:02:F1:51:C3:02:23:74:D9:79:F0:A4:A7:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/30D21A97E1EED902F151C3022374D979F0A4A7EF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30D21A97E1EED902F151C3022374D979F0A4A7EF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.249.224.0/24
Signature Algorithm: sha256WithRSAEncryption
72:d0:eb:a5:56:61:a0:d4:fe:1a:bf:b6:a7:c5:83:24:39:ac:
87:00:f2:51:c7:5d:9a:a4:e3:0d:dd:1c:6e:77:b6:f6:81:9d:
f8:f4:2b:b0:1b:28:c2:b0:34:46:be:62:22:4f:e2:c1:42:5b:
48:95:29:2a:61:e2:29:b4:e4:09:51:7c:0a:35:2f:22:96:56:
75:0b:b9:6c:f6:f6:e5:b1:46:81:df:64:41:ee:1a:07:23:45:
fc:5c:65:cd:8b:4c:6e:e3:81:6a:87:dd:82:35:7b:e0:58:48:
8c:76:0d:3a:b4:dd:88:17:81:27:8e:d5:df:ef:05:ac:2e:f8:
09:c6:c1:b1:0c:d7:28:8d:b7:bd:2a:ad:22:e7:f5:1e:7a:0c:
a3:a0:c0:dd:02:dc:81:c1:bc:d3:86:18:26:71:39:ea:8c:6a:
5d:ac:bb:b6:69:cb:a8:5c:3e:75:0f:e3:eb:29:db:d2:ea:b3:
26:8a:42:cf:50:6d:91:c8:89:c7:ce:94:17:25:f6:1f:87:be:
93:73:10:97:e8:77:82:3b:1e:0c:b5:06:06:a8:50:a8:45:68:
68:1d:7d:ba:ed:e3:f7:67:88:c2:a4:1d:e1:42:be:6c:00:0a:
eb:bb:a1:4e:d3:bb:86:de:93:d5:8e:c4:25:65:0b:11:ab:46:
35:7b:a0:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:10:39 2025 by rpki-client