Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d044f918-9332-4257-b510-381c8590ff54/0/3130332e3136362e33342e302f32332d3234203d3e203137393935.roa
File: 3130332e3136362e33342e302f32332d3234203d3e203137393935.roa (raw, json)
Hash identifier: CQWJwi60gRop4QOS7F0vqvaI5MYRHZka0+yE7SAoHY0=
Subject key identifier: 50:E2:30:04:BC:F6:88:05:93:F3:30:70:C1:6E:44:07:CF:3D:B3:26
Certificate issuer: /CN=B126A372835801BBB738696C56DCF255D032D42F
Certificate serial: 24483D7E977E2F362ED9BB88A2235731D58D328A
Authority key identifier: B1:26:A3:72:83:58:01:BB:B7:38:69:6C:56:DC:F2:55:D0:32:D4:2F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B126A372835801BBB738696C56DCF255D032D42F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d044f918-9332-4257-b510-381c8590ff54/0/3130332e3136362e33342e302f32332d3234203d3e203137393935.roa
Signing time: Fri 02 Aug 2024 11:02:23 +0000
ROA not before: Fri 02 Aug 2024 10:57:23 +0000
ROA not after: Fri 01 Aug 2025 11:02:23 +0000
asID: 17995
IP address blocks: 103.166.34.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:48:3d:7e:97:7e:2f:36:2e:d9:bb:88:a2:23:57:31:d5:8d:32:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B126A372835801BBB738696C56DCF255D032D42F
Validity
Not Before: Aug 2 10:57:23 2024 GMT
Not After : Aug 1 11:02:23 2025 GMT
Subject: CN=50E23004BCF6880593F33070C16E4407CF3DB326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:81:61:0e:fb:36:2c:0a:3c:bf:4e:ac:89:d0:
5c:03:e8:92:8e:9b:8e:78:62:2f:5e:37:e1:a5:45:
94:67:a2:a6:c4:95:36:97:b6:61:73:4d:51:9a:b0:
81:7a:74:86:a9:26:99:79:f5:c1:44:6d:c8:ad:7d:
86:ea:02:9c:24:90:cc:f7:44:ac:18:09:a9:cf:c0:
42:25:a4:d0:12:4a:25:e0:38:7a:70:19:62:7c:df:
82:16:c9:2d:1f:8b:55:e8:50:d5:d9:a7:90:bd:db:
9e:87:0f:b1:b7:e6:75:a7:48:00:a3:6b:e9:ad:bd:
b1:bd:0b:19:7d:80:a4:6d:48:e0:b6:7a:29:10:63:
21:13:8e:f7:3c:c2:fc:4b:82:7c:c4:21:7b:14:6d:
d1:ba:64:fa:d7:33:fe:3a:e2:9b:13:8d:95:df:5b:
26:12:f9:5f:65:4f:57:5b:fe:42:5a:58:c3:4d:cc:
0c:40:8a:d8:b7:a1:61:df:00:e6:64:e6:e3:a8:dd:
d0:ea:cf:e4:7a:a2:4f:90:fc:f6:04:22:97:96:e0:
4d:b4:69:58:0d:63:11:0f:82:f3:fd:ee:fc:9a:a1:
32:93:69:2b:9b:98:0a:b1:9d:d3:84:f8:26:f7:d5:
50:c7:e9:8b:19:ac:26:41:e8:fe:94:6f:2a:a9:fe:
e7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E2:30:04:BC:F6:88:05:93:F3:30:70:C1:6E:44:07:CF:3D:B3:26
X509v3 Authority Key Identifier:
keyid:B1:26:A3:72:83:58:01:BB:B7:38:69:6C:56:DC:F2:55:D0:32:D4:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d044f918-9332-4257-b510-381c8590ff54/0/B126A372835801BBB738696C56DCF255D032D42F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B126A372835801BBB738696C56DCF255D032D42F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d044f918-9332-4257-b510-381c8590ff54/0/3130332e3136362e33342e302f32332d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.166.34.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:a0:11:41:df:0d:1f:18:3b:14:9d:23:9c:93:34:47:c9:1c:
e9:d0:39:6a:00:fe:2b:30:ab:e0:7a:35:81:60:bc:84:cc:c7:
d8:21:a6:ff:08:7b:53:fb:33:d8:c8:dc:6b:75:6f:44:23:76:
ef:f5:6f:e8:36:fa:53:c7:25:36:16:15:d6:de:c7:ab:fc:b5:
2e:69:8b:53:c9:03:8c:8a:de:28:e8:71:38:41:4e:d6:78:bb:
4e:f6:13:5c:bb:55:56:30:e4:4d:c3:3c:f7:6c:07:bd:b6:ed:
d1:e7:86:0f:87:92:c4:b9:4b:ec:1e:73:55:d0:f6:e4:50:fe:
f8:86:6e:20:6e:23:62:8b:b3:ce:18:2a:34:c4:f3:5a:53:50:
fd:b4:4f:59:f4:e7:81:5a:a5:80:90:81:f9:45:ec:5b:75:d2:
66:2e:08:5d:47:4e:58:99:36:35:39:cb:88:2e:85:96:d7:7b:
db:55:b2:7a:c8:91:fc:0f:e2:0f:c5:2b:32:5e:c3:66:da:25:
17:8b:3a:bb:53:3f:09:43:ec:51:59:95:72:3b:17:86:ab:47:
8d:0e:34:83:c5:f3:8d:1e:d4:eb:37:e2:ea:52:09:fb:84:69:
ab:df:ee:5a:26:0d:ec:fe:f8:cb:c9:f3:2b:fc:b6:c4:c4:2d:
5a:10:a6:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:40:17 2025 by rpki-client