Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa
File: 3130332e3136362e33362e302f32332d3234203d3e203137393935.roa (raw, json)
Hash identifier: UCkFJwGn7KbxLC7kdPU1kA5YxB/v64VWKdnsapg9BD0=
Subject key identifier: 26:58:40:63:22:3B:1E:4C:06:A2:15:2F:3F:4F:29:9F:4C:85:8F:DE
Certificate issuer: /CN=DA3283EBD45CCF7056D92A914183FB7825C66692
Certificate serial: 623D663BD1B219E4F608D840B65703CDC6754B9D
Authority key identifier: DA:32:83:EB:D4:5C:CF:70:56:D9:2A:91:41:83:FB:78:25:C6:66:92
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA3283EBD45CCF7056D92A914183FB7825C66692.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa
Signing time: Fri 02 Aug 2024 10:03:54 +0000
ROA not before: Fri 02 Aug 2024 09:58:54 +0000
ROA not after: Fri 01 Aug 2025 10:03:54 +0000
asID: 17995
IP address blocks: 103.166.36.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:3d:66:3b:d1:b2:19:e4:f6:08:d8:40:b6:57:03:cd:c6:75:4b:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DA3283EBD45CCF7056D92A914183FB7825C66692
Validity
Not Before: Aug 2 09:58:54 2024 GMT
Not After : Aug 1 10:03:54 2025 GMT
Subject: CN=26584063223B1E4C06A2152F3F4F299F4C858FDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7c:e3:51:cb:a4:59:79:49:16:ac:11:af:19:
bb:d7:fa:e6:1d:a3:2d:45:1a:0e:5d:87:7a:0d:75:
7c:32:1e:02:8e:fb:2e:81:f2:5f:14:de:06:35:42:
23:3b:e3:fe:fd:28:72:6c:05:e8:b9:dc:37:01:e1:
89:b0:df:ad:f1:87:2e:d0:4d:e8:75:8a:da:c6:f9:
d1:a4:b3:89:51:34:00:46:0c:6a:80:04:6d:16:9b:
2b:4b:9f:55:e0:20:47:8c:3c:bc:8b:11:c4:b5:c0:
37:88:dc:6e:5d:b8:99:91:15:03:7e:63:2a:de:32:
55:01:83:67:92:7c:36:c2:11:48:90:eb:d7:ae:c5:
16:53:d6:28:b8:27:5a:61:4a:1a:22:73:de:42:3f:
9d:6e:71:2b:4a:31:3b:d3:68:27:d3:2b:67:a1:35:
9f:ac:c5:b0:5c:72:6a:66:7c:8f:41:ed:1c:0e:b7:
8e:01:d5:26:b2:12:3f:f1:aa:47:e4:ae:66:e0:b4:
21:09:8c:2f:a5:04:f7:77:5d:b7:2b:40:5b:d6:f5:
42:21:a5:8e:27:7d:84:eb:f6:bf:a2:70:26:81:b2:
df:b8:cf:f7:8c:9d:a6:9b:b4:e5:4c:26:2d:2e:89:
0a:24:e2:82:ca:3f:a0:1c:bc:9b:64:a5:bd:18:27:
11:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:58:40:63:22:3B:1E:4C:06:A2:15:2F:3F:4F:29:9F:4C:85:8F:DE
X509v3 Authority Key Identifier:
keyid:DA:32:83:EB:D4:5C:CF:70:56:D9:2A:91:41:83:FB:78:25:C6:66:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/DA3283EBD45CCF7056D92A914183FB7825C66692.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA3283EBD45CCF7056D92A914183FB7825C66692.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f79a402-de5b-49e5-a6f5-eeabac084f41/0/3130332e3136362e33362e302f32332d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.166.36.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:ee:84:8c:a2:a6:7a:0a:d7:11:7a:ed:5e:c8:7d:97:6d:6b:
41:e3:64:5d:e6:61:24:58:e5:22:e6:ad:1d:16:90:15:a8:22:
fd:17:39:18:ba:a4:ed:7d:10:08:49:db:06:0d:23:83:08:09:
a5:2f:54:81:e6:70:68:ba:c0:fc:90:9f:59:ec:6c:b9:a1:a6:
d1:b0:9f:cb:e1:44:fe:35:1a:0e:3b:45:52:0b:4e:76:c5:f1:
df:b2:f7:21:d1:d2:dd:af:b8:2c:10:c5:00:87:f5:03:c2:8a:
74:50:39:c8:94:06:82:15:02:a4:5b:b5:5d:54:a7:8c:2a:ef:
cd:2f:a9:c7:1f:f2:12:ba:a8:b0:7a:62:18:ab:31:49:85:f7:
2c:dc:b2:56:6b:23:0b:ad:d3:a4:d4:22:14:82:5e:9f:7c:10:
4f:f2:9b:33:31:0e:a8:d4:70:a6:c3:7c:76:d1:b1:e8:81:02:
8c:85:02:e7:89:94:cb:dd:77:31:10:37:b7:c4:14:fa:1a:b4:
d6:a1:70:2b:b8:e6:6e:69:52:ba:ab:2c:8d:ef:4d:14:09:24:
5c:f0:f7:d6:c5:30:c6:dd:ad:26:86:f4:51:af:4b:f4:02:b1:
cf:b3:01:52:92:e2:9c:4e:1a:87:75:6f:b9:20:84:b5:19:19:
3c:48:16:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:09:09 2025 by rpki-client