Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/3130332e3136382e3235302e302f32342d3234203d3e20313432333237.roa
File: 3130332e3136382e3235302e302f32342d3234203d3e20313432333237.roa (raw, json)
Hash identifier: fwyJa5mhG/p5zrm7WsD823rq8IWOTIX6aI5FYC++s0M=
Subject key identifier: 5B:1C:2E:70:46:8C:61:33:4F:AC:9D:B9:2F:6B:9D:82:43:39:6A:6B
Certificate issuer: /CN=4EE959798755CD4BA407AEB6EBDD3100261EAA55
Certificate serial: 325A4224BD4F96B94B7EC222345F4759E46B1164
Authority key identifier: 4E:E9:59:79:87:55:CD:4B:A4:07:AE:B6:EB:DD:31:00:26:1E:AA:55
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/3130332e3136382e3235302e302f32342d3234203d3e20313432333237.roa
Signing time: Sat 03 Aug 2024 13:00:00 +0000
ROA not before: Sat 03 Aug 2024 12:55:00 +0000
ROA not after: Sat 02 Aug 2025 13:00:00 +0000
asID: 142327
IP address blocks: 103.168.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:5a:42:24:bd:4f:96:b9:4b:7e:c2:22:34:5f:47:59:e4:6b:11:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4EE959798755CD4BA407AEB6EBDD3100261EAA55
Validity
Not Before: Aug 3 12:55:00 2024 GMT
Not After : Aug 2 13:00:00 2025 GMT
Subject: CN=5B1C2E70468C61334FAC9DB92F6B9D8243396A6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:10:86:68:bd:48:8c:9f:03:f4:ae:04:48:ee:
05:5d:70:ec:ac:82:07:ab:ef:1a:e7:7c:4c:49:23:
ce:7c:e7:39:95:ed:b2:b0:e5:1f:b2:f4:03:14:2d:
33:73:68:e4:20:51:39:f5:65:59:90:03:45:ca:1a:
28:59:7b:07:c3:0d:05:24:a9:36:5c:b0:03:11:d4:
89:9e:ca:1d:1e:2d:6c:db:9c:5b:aa:12:64:84:17:
96:eb:6f:1d:4a:71:13:70:7b:48:38:48:61:ae:5f:
f4:a7:fa:33:bd:05:3e:d9:96:50:08:3b:cc:21:7d:
44:60:34:cd:e9:be:72:39:77:aa:c9:09:86:cc:8b:
e8:2b:31:6b:97:f7:45:3c:c6:16:a6:a6:53:fc:c3:
8d:19:5e:41:fa:d6:d7:8e:6b:dd:e1:21:bd:ca:6e:
92:b8:e8:fa:36:c5:49:c7:8b:7b:57:96:20:5b:f4:
e9:b0:6d:17:26:39:58:83:c8:b1:4c:d0:12:95:77:
85:f2:f1:70:91:cd:43:23:9f:de:10:e5:5e:ef:db:
d7:04:f1:a3:0b:c6:04:da:87:e0:f2:76:30:ab:38:
cc:e4:a3:80:84:48:ad:e0:df:b8:bd:25:0d:34:66:
b4:dd:cb:b2:72:85:9c:4a:48:0c:1e:77:b7:f1:2d:
c7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:1C:2E:70:46:8C:61:33:4F:AC:9D:B9:2F:6B:9D:82:43:39:6A:6B
X509v3 Authority Key Identifier:
keyid:4E:E9:59:79:87:55:CD:4B:A4:07:AE:B6:EB:DD:31:00:26:1E:AA:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/4EE959798755CD4BA407AEB6EBDD3100261EAA55.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/3130332e3136382e3235302e302f32342d3234203d3e20313432333237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.168.250.0/24
Signature Algorithm: sha256WithRSAEncryption
32:d7:b0:15:a4:4a:7b:01:0f:66:bb:ca:81:60:a3:a9:ef:4e:
59:18:49:b4:ab:a2:d5:49:36:39:5b:f2:a0:45:a6:8f:54:f5:
db:a6:79:c4:f1:6c:58:74:00:c2:f2:23:78:00:23:e7:18:af:
e5:2c:54:ad:81:70:b9:0d:2f:4d:43:a7:28:49:f5:25:94:83:
ac:04:39:9d:7e:c3:45:d1:ab:fa:c8:5d:a5:86:71:58:a9:eb:
35:6d:37:4c:fa:52:95:b3:88:c3:08:68:01:a7:dc:43:e9:ac:
c0:0f:eb:d6:ed:75:20:6c:15:45:1b:87:3e:07:7a:6b:27:33:
a5:0a:03:26:5d:89:42:d6:cc:49:fa:41:53:ad:d0:e6:8d:f0:
3a:d7:05:7b:1f:19:e9:f4:76:89:5b:49:92:f6:f3:60:1d:d2:
72:ae:a8:d6:0d:bf:ef:5f:5a:2a:55:b3:ab:af:76:05:c7:94:
00:f4:04:a7:87:6b:a9:f3:d6:32:c9:5f:62:b9:6e:c7:44:e2:
cc:fd:45:e0:58:fa:05:0e:40:06:9d:76:1c:e0:80:7c:cb:bb:
e4:18:eb:5c:12:97:8b:82:4d:da:9e:7a:47:e9:f1:01:b8:66:
57:c9:08:d6:5b:45:fc:9f:a1:9a:46:b5:ea:19:66:68:33:1d:
a4:d1:3d:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:48:30 2025 by rpki-client