Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa
File: 3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa (raw, json)
Hash identifier: l4ma8hVqU2pmHhRCLeKyMsA8otLYSMbunfnVvrmccos=
Subject key identifier: 64:41:61:4A:5A:7A:50:E2:22:51:FA:D1:C3:E2:39:C3:DF:B4:CE:78
Certificate issuer: /CN=CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8
Certificate serial: 65ADBEC992853BBC7C27B9C37C24BE7D44D9D419
Authority key identifier: CC:2F:A8:A6:92:DD:D4:4F:4E:A7:0E:AE:AC:32:04:D5:3E:64:55:C8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa
Signing time: Thu 28 Mar 2024 15:02:17 +0000
ROA not before: Thu 28 Mar 2024 14:57:17 +0000
ROA not after: Thu 27 Mar 2025 15:02:17 +0000
asID: 150932
IP address blocks: 103.107.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:ad:be:c9:92:85:3b:bc:7c:27:b9:c3:7c:24:be:7d:44:d9:d4:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8
Validity
Not Before: Mar 28 14:57:17 2024 GMT
Not After : Mar 27 15:02:17 2025 GMT
Subject: CN=6441614A5A7A50E22251FAD1C3E239C3DFB4CE78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:13:28:b5:73:0b:67:3c:27:64:ab:08:dd:e3:
b5:78:87:f3:7f:d5:5c:4d:a3:4a:5d:e1:31:fa:5d:
42:9c:82:1a:3a:e7:bc:4e:bf:7f:17:7b:ba:e8:9b:
47:34:77:d9:0c:57:4b:71:fb:64:ab:1b:86:02:b9:
fe:53:38:11:33:c6:49:89:df:04:3d:b1:3c:ab:43:
3a:a4:29:e4:2e:50:d9:ec:67:d0:9c:c2:b6:03:7b:
49:4e:0d:30:69:4c:1f:28:d9:1b:79:d0:51:7e:19:
fa:3f:9e:04:fd:ce:82:c0:4f:b0:da:3b:a6:fa:62:
47:0c:fc:41:4d:d7:ff:4d:f7:03:a2:7d:ed:e3:8d:
87:5c:65:05:6c:2d:61:ba:77:15:7f:70:ca:23:72:
6f:a1:b1:05:4f:82:8e:e2:60:ed:a4:5e:44:6b:96:
42:53:9c:28:cd:23:d0:f0:40:f4:99:ac:fb:57:9f:
0e:a2:19:18:a2:dc:36:51:14:5f:70:2b:3d:20:c0:
26:cb:bd:45:cf:30:63:80:8b:56:d9:7b:95:17:95:
7b:4d:6d:52:a1:0a:14:25:8a:6c:22:dc:2e:ce:59:
54:9b:93:9e:45:f9:2e:96:37:09:5b:24:c5:56:10:
24:c7:ed:77:42:c8:28:f8:8a:00:a2:5b:f9:80:e5:
cd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:41:61:4A:5A:7A:50:E2:22:51:FA:D1:C3:E2:39:C3:DF:B4:CE:78
X509v3 Authority Key Identifier:
keyid:CC:2F:A8:A6:92:DD:D4:4F:4E:A7:0E:AE:AC:32:04:D5:3E:64:55:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC2FA8A692DDD44F4EA70EAEAC3204D53E6455C8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0af31599-8b08-4ffd-a056-795e8aa0a586/0/3130332e3130372e3133372e302f32342d3234203d3e20313530393332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.107.137.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:eb:e9:91:ce:7d:a2:04:38:77:0a:b4:77:fd:25:7a:5a:8b:
d3:79:7b:04:7a:0a:9b:9e:7b:ca:64:ac:20:d3:c3:60:e7:38:
86:4c:fe:35:1c:63:7a:8a:ed:97:7c:b7:ab:9c:38:78:67:64:
c2:ff:d2:71:ed:2a:00:65:c3:31:a8:79:65:c3:7b:41:10:1b:
0c:6e:44:78:e8:f7:0c:3f:44:69:fc:79:f6:7b:02:01:27:fa:
25:dd:c0:8f:aa:d7:5b:11:70:79:8a:d3:d0:fd:ec:b7:86:15:
06:2c:a5:74:55:57:00:e0:94:29:3e:f4:68:b6:b8:56:d2:af:
c9:9b:d5:02:b1:fe:98:e2:2f:b4:a1:49:eb:c2:28:ca:79:e2:
11:69:34:ef:c5:d6:d3:b5:91:43:15:81:da:52:6c:45:b5:73:
8f:1c:20:9b:98:46:9f:7e:8e:34:a2:5b:04:92:a8:48:e6:2b:
36:6f:7d:e9:74:26:f4:8e:d1:ae:ce:74:2c:ea:01:ab:34:67:
f5:c3:95:b8:35:c3:1d:14:0c:00:f4:7e:95:c3:88:dc:71:03:
2c:91:81:33:0c:6e:b2:6b:5c:60:f8:aa:3e:ac:21:4c:6e:1c:
1c:f8:f0:32:91:f6:2b:a4:49:f3:2e:9f:d3:b4:5a:46:f7:08:
7e:90:3d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:09:56 2025 by rpki-client