Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa
File: 3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa (raw, json)
Hash identifier: vzqh/DIiKaxTtSHfzibTju1MXYLVCm6nZTZLoRiAMXA=
Subject key identifier: F5:45:54:39:32:64:2E:B7:D0:1D:B0:A9:E6:42:A4:AC:2B:80:1D:89
Certificate issuer: /CN=2140359E23DF113617F9AB2E131D231E4D35F9AA
Certificate serial: 046C6903928F280B24F7D55DC01E8DCFBAF31525
Authority key identifier: 21:40:35:9E:23:DF:11:36:17:F9:AB:2E:13:1D:23:1E:4D:35:F9:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2140359E23DF113617F9AB2E131D231E4D35F9AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa
Signing time: Mon 01 Jul 2024 01:04:22 +0000
ROA not before: Mon 01 Jul 2024 00:59:22 +0000
ROA not after: Mon 30 Jun 2025 01:04:22 +0000
asID: 55674
IP address blocks: 101.203.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:6c:69:03:92:8f:28:0b:24:f7:d5:5d:c0:1e:8d:cf:ba:f3:15:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2140359E23DF113617F9AB2E131D231E4D35F9AA
Validity
Not Before: Jul 1 00:59:22 2024 GMT
Not After : Jun 30 01:04:22 2025 GMT
Subject: CN=F545543932642EB7D01DB0A9E642A4AC2B801D89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:11:bf:eb:8f:ad:17:51:72:2c:93:c3:96:fc:
19:b1:ae:ad:0e:4d:22:4b:eb:e5:6c:90:b4:61:a4:
b2:b5:97:1d:d3:bf:50:ba:f9:ae:49:1f:27:4a:2a:
57:49:1f:40:6c:b5:33:90:a9:2b:b1:52:0a:d6:2f:
35:a9:50:65:09:88:b5:ef:9d:00:bb:1f:93:23:cd:
ce:5e:8c:1c:e7:f3:36:cf:96:61:25:31:2c:c8:78:
61:93:bd:f0:81:be:fa:b2:6a:dc:c9:5a:31:10:0b:
ad:97:ab:37:d4:8d:81:b0:25:ad:c7:c6:db:c5:7f:
1d:ee:a1:5b:62:5d:b9:f7:19:fe:be:35:58:9f:b3:
21:46:e0:66:99:83:df:9b:8b:ce:dc:e8:07:74:c7:
77:7f:d4:15:24:d9:a8:31:d0:3e:d1:3f:d3:d5:26:
d0:af:2d:80:84:81:f2:76:73:d1:b1:09:ed:cf:be:
44:e1:2d:a7:e1:7f:fe:12:e3:07:76:08:ec:f5:4a:
ae:05:4d:a2:da:9b:08:b9:50:98:d5:fd:d8:0a:09:
31:e9:56:df:86:30:0f:9d:53:2b:2f:8e:6b:91:c5:
b8:0c:54:3e:d7:80:aa:1e:21:4a:1a:4d:d0:cb:41:
c9:56:da:28:6b:3d:31:34:a8:60:c4:7d:51:7c:01:
64:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:45:54:39:32:64:2E:B7:D0:1D:B0:A9:E6:42:A4:AC:2B:80:1D:89
X509v3 Authority Key Identifier:
keyid:21:40:35:9E:23:DF:11:36:17:F9:AB:2E:13:1D:23:1E:4D:35:F9:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/2140359E23DF113617F9AB2E131D231E4D35F9AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2140359E23DF113617F9AB2E131D231E4D35F9AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0180f755-5c27-40f8-80af-2fa8df115282/0/3130312e3230332e3136382e302f32322d3234203d3e203535363734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.203.168.0/22
Signature Algorithm: sha256WithRSAEncryption
58:e6:0b:47:21:34:3e:ea:60:62:10:5f:af:e7:a8:33:7c:48:
80:17:bc:78:e8:1c:f6:c1:b8:d4:6b:d6:80:d8:41:8d:e8:86:
bc:7b:dc:7b:5b:b5:03:d4:1b:65:f1:d7:2c:88:a8:a0:88:37:
4a:99:c0:a3:cc:34:04:2b:be:bc:dc:d5:cf:ed:99:a3:a1:fe:
7e:a6:e6:12:fb:65:2e:f0:c5:56:8c:71:e5:1d:c8:b0:47:d1:
d4:7d:4e:72:77:6f:83:64:58:1a:43:8c:b9:57:a5:50:46:23:
a3:d1:67:89:11:5c:1c:0c:96:9d:9f:6b:e1:3f:bc:fc:0b:bb:
ed:c1:23:27:38:f3:05:b4:fb:06:79:59:70:f0:dc:8e:ef:78:
2e:f3:4e:95:f1:d7:04:9e:42:83:7d:3d:da:e7:80:21:40:fb:
ab:35:7c:ac:3f:b0:50:33:a5:2f:32:3f:38:95:73:4d:d2:82:
e4:22:4f:52:dd:21:fa:8e:f6:38:3a:2a:5f:84:8b:5f:a6:e6:
52:64:2d:ec:00:c1:cd:79:75:e9:5b:64:69:3c:b8:81:96:7a:
a4:70:a2:14:d3:60:90:3a:5d:72:ed:3b:55:5d:6a:9b:f0:b7:
f3:59:7d:61:36:ca:e5:d7:00:3d:cf:2b:8b:83:37:3d:02:d6:
1c:4c:18:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:37 2025 by rpki-client