Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132322e302f32342d3234203d3e20313430343537.roa
File: 3130332e3138392e3132322e302f32342d3234203d3e20313430343537.roa (raw, json)
Hash identifier: BYIutVVDMQPpCjuKk9MfFJeb9yvMjAqJ/CCA9nZfH2g=
Subject key identifier: 0D:8C:A8:FB:08:E7:A0:23:A4:63:CD:DF:2A:6B:DD:EE:CE:B6:FA:F0
Certificate issuer: /CN=C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728
Certificate serial: 6EA8F4286367DE6CAE5414A065AC18B4AFAD12B2
Authority key identifier: C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132322e302f32342d3234203d3e20313430343537.roa
Signing time: Fri 29 Nov 2024 15:00:02 +0000
ROA not before: Fri 29 Nov 2024 14:55:02 +0000
ROA not after: Fri 28 Nov 2025 15:00:02 +0000
asID: 140457
IP address blocks: 103.189.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:a8:f4:28:63:67:de:6c:ae:54:14:a0:65:ac:18:b4:af:ad:12:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728
Validity
Not Before: Nov 29 14:55:02 2024 GMT
Not After : Nov 28 15:00:02 2025 GMT
Subject: CN=0D8CA8FB08E7A023A463CDDF2A6BDDEECEB6FAF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b5:e3:bc:34:41:74:8b:e1:81:f5:0f:0f:b4:
c0:bb:1f:68:af:57:2a:a1:e1:c8:e3:3b:5d:f9:9b:
21:8c:8c:06:0a:c7:70:18:5d:49:a5:1c:90:f2:2a:
97:fc:d3:c1:a3:f0:b1:64:51:78:0d:ab:c4:fa:4d:
19:3b:f6:99:89:76:7d:f8:6f:10:85:19:c7:35:ec:
50:3a:4a:0c:2a:7a:ea:dd:b2:02:ae:de:f7:3d:dd:
57:8e:58:60:c8:dc:25:31:49:1d:f0:5b:5a:e8:5d:
ed:a4:da:3e:32:a8:cc:8c:5f:b0:af:11:0a:0e:f5:
83:8c:d9:81:a9:85:29:ca:8a:d3:23:8d:80:68:ab:
93:57:85:9b:ec:7d:1d:ca:fd:b8:27:ac:5e:df:50:
12:59:3e:a9:20:a9:72:0c:f1:2a:10:28:a5:c4:b4:
47:2b:c6:a4:c8:e0:f2:60:c4:20:6f:66:7a:08:0b:
5b:a1:d6:b0:30:5c:17:f0:43:32:30:7b:c2:f2:e7:
17:e9:48:5d:53:56:6d:8d:64:33:a5:7f:e7:36:97:
7d:a3:2e:fd:87:a7:bd:0a:75:c0:05:3b:18:3b:4b:
f8:9e:c1:f4:11:74:86:cc:d5:b8:5b:c9:8f:62:da:
a5:75:a7:c4:73:a9:32:61:7e:23:de:e0:a0:92:9e:
b1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8C:A8:FB:08:E7:A0:23:A4:63:CD:DF:2A:6B:DD:EE:CE:B6:FA:F0
X509v3 Authority Key Identifier:
keyid:C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132322e302f32342d3234203d3e20313430343537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.189.122.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:e2:2c:13:d8:84:44:97:f7:72:ff:f2:6d:dd:40:48:44:2b:
7d:93:d0:20:ed:4d:ae:cc:c8:41:52:f9:8a:c9:83:77:5f:09:
86:dd:29:f6:2a:02:cb:80:7e:78:5c:c3:c3:cd:b2:6e:8b:39:
45:b0:0f:09:e5:5b:a5:9d:46:16:66:28:e6:20:c5:87:6f:3b:
54:25:2d:f3:58:f8:8d:55:e3:31:89:e2:df:0c:99:bc:4f:81:
75:eb:d1:00:86:5f:d0:24:71:d1:ed:3f:e2:64:36:85:1e:90:
a9:b3:1c:17:6a:5c:25:c2:fb:95:5b:d0:34:f9:ae:70:1d:d7:
e9:41:83:ab:cc:35:c5:5e:7f:5a:e4:bc:9d:70:cd:d9:85:e0:
c4:22:03:16:15:bf:02:73:fc:57:04:2d:a0:93:20:9d:8c:fe:
a9:89:b4:17:6d:e0:37:f8:d7:ce:98:fa:1d:55:c2:c0:16:d5:
d8:60:c5:82:d5:67:61:d1:7a:6f:d3:5a:f6:33:36:5c:67:01:
a1:09:0a:09:7f:dd:34:7e:30:bf:d8:59:81:5b:ce:59:e3:49:
c5:02:37:02:26:e6:b3:35:f0:bc:a4:4f:85:cb:b6:bb:bb:f1:
e0:a3:d7:3c:e8:b7:f4:4a:7f:71:63:31:51:5a:c6:a1:34:cb:
4c:1f:8e:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:50 2025 by rpki-client