Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32342d3234203d3e203137393935.roa
File: 3130332e3135382e3136322e302f32342d3234203d3e203137393935.roa (raw, json)
Hash identifier: PuTtZPjHW4X1RyAiqWfAslz+ptXSdct78NWuGBO+Yxo=
Subject key identifier: 3B:7B:A7:6F:77:55:ED:2C:CC:C2:9E:17:58:96:EB:82:52:89:43:BB
Certificate issuer: /CN=A398FBDF357790C7DC67C6D92A15A3D4617558A6
Certificate serial: 0AC8BBB8AC2E891D23FBB566F2917CA66FC50497
Authority key identifier: A3:98:FB:DF:35:77:90:C7:DC:67:C6:D9:2A:15:A3:D4:61:75:58:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A398FBDF357790C7DC67C6D92A15A3D4617558A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32342d3234203d3e203137393935.roa
Signing time: Wed 08 May 2024 09:02:10 +0000
ROA not before: Wed 08 May 2024 08:57:10 +0000
ROA not after: Wed 07 May 2025 09:02:10 +0000
asID: 17995
IP address blocks: 103.158.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:c8:bb:b8:ac:2e:89:1d:23:fb:b5:66:f2:91:7c:a6:6f:c5:04:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A398FBDF357790C7DC67C6D92A15A3D4617558A6
Validity
Not Before: May 8 08:57:10 2024 GMT
Not After : May 7 09:02:10 2025 GMT
Subject: CN=3B7BA76F7755ED2CCCC29E175896EB82528943BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:60:cf:a6:f7:cd:55:a7:a5:6b:e2:a0:ae:f8:
1e:0e:6e:6d:85:90:fd:99:4f:89:5f:09:94:d4:81:
81:1b:2b:bd:71:98:a5:d7:3f:c4:80:99:72:ce:32:
a8:be:1b:39:dd:df:16:42:b2:b9:b2:bc:6f:f0:8c:
84:ea:b4:f0:89:82:a4:b5:63:4a:17:c4:8a:60:70:
4c:a3:9f:4c:a0:85:ce:3c:c8:4b:37:3e:85:43:2f:
cb:96:27:30:c6:d9:0e:54:ea:90:2d:ff:15:92:fb:
6d:77:5b:63:9b:3c:88:43:f8:df:af:0c:c7:c5:a2:
2c:bc:ee:24:3c:2f:f1:12:67:a9:62:6d:ec:a4:dc:
e1:bc:0d:37:64:62:34:48:81:f1:21:fe:3a:ac:89:
b5:75:90:5b:05:26:87:32:b1:3f:b9:c1:fd:11:2a:
14:96:dd:39:3f:75:8d:e2:10:e0:a1:56:ce:0c:26:
b0:2c:b0:93:97:d7:bb:0a:2d:41:b0:3d:7d:94:59:
50:32:78:89:e9:68:20:ac:6d:7e:99:a6:53:e6:a5:
e7:3b:c4:18:47:6b:56:1c:c2:08:22:cd:6d:c0:98:
05:8c:76:d9:79:24:e4:51:fe:cf:51:52:0d:3e:03:
05:32:fa:22:96:af:30:d5:8d:69:f7:95:80:2b:b5:
5b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7B:A7:6F:77:55:ED:2C:CC:C2:9E:17:58:96:EB:82:52:89:43:BB
X509v3 Authority Key Identifier:
keyid:A3:98:FB:DF:35:77:90:C7:DC:67:C6:D9:2A:15:A3:D4:61:75:58:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/A398FBDF357790C7DC67C6D92A15A3D4617558A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A398FBDF357790C7DC67C6D92A15A3D4617558A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16c1c529-6244-4503-af56-69459e4a760f/0/3130332e3135382e3136322e302f32342d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.162.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:89:cc:55:d5:c9:00:0f:13:62:c0:35:3e:4d:4b:dc:9e:fd:
88:ca:d7:be:5f:0c:b2:7b:dd:e7:36:70:84:df:33:48:3a:a9:
6c:cc:ac:29:15:94:06:47:aa:a5:11:1b:c9:14:46:de:2a:a1:
d9:dc:b6:39:38:6e:7c:3c:da:91:85:f4:f8:fe:ae:23:e4:cd:
8e:1f:c4:a6:61:f4:60:33:aa:88:fa:88:3c:09:79:e2:af:60:
e6:72:b6:72:c1:a2:0e:18:a4:79:21:80:55:ab:6f:41:a9:18:
e3:e1:6e:0b:89:10:fd:5e:8c:91:3d:0f:a2:9e:b2:54:1f:0d:
7f:2a:f2:e3:97:21:c6:06:8b:63:ce:89:51:05:02:5e:ef:d3:
85:ac:9a:0a:e2:a3:8a:f5:5b:73:26:11:94:4a:3e:f8:9b:ab:
88:ae:7f:bb:ee:21:7a:45:64:52:73:71:be:91:73:6d:ba:00:
bf:e4:c0:42:7a:f0:f0:46:91:45:de:6a:fb:0b:cf:c3:91:b7:
0d:39:fd:5f:69:94:e2:59:70:da:ae:34:9a:a6:59:4d:24:d1:
68:19:60:c8:d6:2f:0d:1a:ca:97:02:72:e9:e5:69:da:2e:45:
6b:95:d1:a7:1c:3f:dd:30:e0:94:13:e6:bc:1b:22:23:3d:cd:
a0:79:5c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:31:06 2025 by rpki-client