Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/60c14b99-4ee7-422a-b064-dca3236d6756/0/3130332e3136372e342e302f32332d3234203d3e203137393935.roa
File: 3130332e3136372e342e302f32332d3234203d3e203137393935.roa (raw, json)
Hash identifier: +OfyUKd9ah3XpdJZgBKLIUwPhedhMt0DHdPOmM0Y/1k=
Subject key identifier: 3A:38:92:35:67:1D:E8:75:98:04:7F:0F:7A:28:0F:79:6E:4F:CB:8B
Certificate issuer: /CN=28907A6B3D4FB187F3A15BF7457D948A12903D7C
Certificate serial: 1032A836F14FB2CAE0CBAACB9395BDF1CFDC3309
Authority key identifier: 28:90:7A:6B:3D:4F:B1:87:F3:A1:5B:F7:45:7D:94:8A:12:90:3D:7C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28907A6B3D4FB187F3A15BF7457D948A12903D7C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/60c14b99-4ee7-422a-b064-dca3236d6756/0/3130332e3136372e342e302f32332d3234203d3e203137393935.roa
Signing time: Fri 02 Aug 2024 11:01:14 +0000
ROA not before: Fri 02 Aug 2024 10:56:14 +0000
ROA not after: Fri 01 Aug 2025 11:01:14 +0000
asID: 17995
IP address blocks: 103.167.4.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:32:a8:36:f1:4f:b2:ca:e0:cb:aa:cb:93:95:bd:f1:cf:dc:33:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28907A6B3D4FB187F3A15BF7457D948A12903D7C
Validity
Not Before: Aug 2 10:56:14 2024 GMT
Not After : Aug 1 11:01:14 2025 GMT
Subject: CN=3A389235671DE87598047F0F7A280F796E4FCB8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4b:50:d2:6c:3d:78:fe:79:28:95:d6:b7:35:
e0:8c:93:72:ee:df:3c:25:44:cf:7b:18:c7:cd:28:
77:bb:e2:16:ca:05:aa:67:44:97:94:a0:eb:d1:ed:
18:7e:c2:3c:68:98:63:dd:44:1f:f5:01:74:aa:02:
30:7c:91:18:5c:1a:be:ba:7f:ef:4d:cf:35:52:a6:
c4:8c:cd:44:9c:6a:36:d8:33:03:9e:6a:35:97:a1:
89:7f:d3:4a:cd:54:79:3a:c3:98:2b:7b:d2:60:82:
09:44:b2:a8:80:20:18:50:ca:33:e9:05:88:ae:b7:
e4:c8:92:03:24:02:94:29:05:ca:71:fc:13:10:89:
0d:a8:7b:fe:16:91:0f:07:34:3e:3f:24:7a:5b:cb:
52:1d:ca:56:00:b4:4f:97:35:ce:8a:59:8a:27:5d:
bb:bc:23:5f:37:e6:f6:bc:ae:6b:0b:34:e9:e6:94:
ca:12:70:4d:85:27:a2:56:05:30:06:5a:6f:63:a3:
ed:f2:de:5b:f5:83:dd:8a:56:a5:b2:3c:9e:ab:2b:
be:e2:9b:1a:05:75:60:a9:1e:cb:6c:16:09:e0:0e:
69:6b:ea:b6:78:a3:57:ff:10:4b:25:a7:a6:89:1e:
e7:de:d6:26:a3:81:27:bf:54:11:b0:fa:1d:7b:c6:
cd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:38:92:35:67:1D:E8:75:98:04:7F:0F:7A:28:0F:79:6E:4F:CB:8B
X509v3 Authority Key Identifier:
keyid:28:90:7A:6B:3D:4F:B1:87:F3:A1:5B:F7:45:7D:94:8A:12:90:3D:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/60c14b99-4ee7-422a-b064-dca3236d6756/0/28907A6B3D4FB187F3A15BF7457D948A12903D7C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28907A6B3D4FB187F3A15BF7457D948A12903D7C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60c14b99-4ee7-422a-b064-dca3236d6756/0/3130332e3136372e342e302f32332d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.167.4.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:c7:5b:b6:b2:23:37:29:5c:bd:89:fa:f0:a4:f5:b7:80:51:
f7:26:9a:e6:ea:ba:a3:5e:71:21:b1:af:08:84:fe:62:2f:86:
eb:b4:99:bd:26:7d:65:d7:2d:9b:7a:fa:28:97:30:0a:7a:6b:
36:20:b1:fe:be:68:e2:cd:00:7c:99:ca:53:bf:43:17:ce:6e:
50:34:bb:0f:1a:5b:8c:dd:6a:a7:90:4a:c3:c8:de:5d:4d:91:
90:21:ec:ab:06:24:58:ed:54:4a:a4:b8:52:1c:ea:40:e6:74:
de:0c:5b:01:f2:e0:07:72:ba:34:83:41:17:41:f9:d0:68:8c:
c4:dc:2d:5a:05:eb:4f:21:1e:c1:4e:fe:41:1b:5d:4d:80:08:
65:91:06:da:f4:f7:c2:f9:55:3f:ba:57:af:35:ec:2a:38:54:
ea:1e:17:eb:1b:8f:dd:6a:5b:db:28:87:a3:a1:d5:f8:38:58:
55:66:e6:93:f6:ea:0a:ac:4a:ac:1f:13:5d:0a:82:a9:bf:ce:
2a:80:e2:d1:46:a3:ac:ad:95:ca:56:ab:64:f5:01:04:3c:8d:
02:a7:8d:e2:99:7b:22:11:6e:c2:f8:ff:0f:33:2f:20:78:da:
74:c3:18:63:c3:54:13:92:6a:42:c2:5b:73:15:f6:6d:5f:63:
c5:71:e7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 15:18:42 2025 by rpki-client