Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132332e302f32342d3234203d3e20313430343537.roa
File: 3130332e3138392e3132332e302f32342d3234203d3e20313430343537.roa (raw, json)
Hash identifier: nSW5JjBakDCEsYZ7Bfb3s3zgOq5u8QUst2z0PfQLpIU=
Subject key identifier: F8:73:C2:2D:09:AA:87:E9:CF:B2:9D:E5:0E:9F:EE:07:EF:A7:CF:D5
Certificate issuer: /CN=C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728
Certificate serial: 445052448E1FB080AC85DD56852AFCDB9C1227BE
Authority key identifier: C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132332e302f32342d3234203d3e20313430343537.roa
Signing time: Fri 29 Nov 2024 15:00:02 +0000
ROA not before: Fri 29 Nov 2024 14:55:02 +0000
ROA not after: Fri 28 Nov 2025 15:00:02 +0000
asID: 140457
IP address blocks: 103.189.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:50:52:44:8e:1f:b0:80:ac:85:dd:56:85:2a:fc:db:9c:12:27:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728
Validity
Not Before: Nov 29 14:55:02 2024 GMT
Not After : Nov 28 15:00:02 2025 GMT
Subject: CN=F873C22D09AA87E9CFB29DE50E9FEE07EFA7CFD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:96:64:e1:dd:b5:b3:79:51:a8:dc:37:fd:04:
2a:3b:21:ff:c8:ba:ab:a8:3f:94:13:f1:2f:aa:01:
e7:51:5a:24:03:ac:a5:35:48:42:ef:60:a4:da:a7:
22:41:13:22:24:c8:d6:84:fb:2d:c1:e0:aa:7e:50:
5d:45:f0:08:c8:e0:6f:71:59:ee:66:7d:01:7c:39:
8b:c0:bf:b6:64:73:ab:36:3a:2c:b2:69:91:7c:1b:
a4:d3:b2:2d:07:9f:5a:28:98:d7:96:3a:b6:fa:90:
f9:f6:24:2d:68:6e:a4:49:e3:a5:10:e2:4b:16:66:
55:38:47:e4:4b:0a:b0:01:f8:5b:7a:c3:b8:0f:ed:
c0:cb:06:e6:2c:5e:22:61:b1:43:e0:4c:b9:d1:b2:
1e:0f:03:40:a3:ba:f3:b4:93:6a:50:02:e3:e6:f6:
54:3f:1b:e8:90:fa:78:46:bf:e0:c8:85:35:0f:29:
ac:c8:ee:de:8a:7d:f8:5b:9f:fd:10:ee:e3:83:8b:
9e:03:1e:e1:3a:1c:74:17:c2:24:ad:0c:7f:b6:55:
c9:06:8a:49:1b:d2:9c:09:8d:7b:a3:48:3e:5d:80:
22:1f:27:bc:3e:b1:50:30:0a:bd:b4:69:b4:fa:37:
1c:98:36:04:08:2a:ef:59:fe:c8:17:db:5c:d9:7c:
0f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:73:C2:2D:09:AA:87:E9:CF:B2:9D:E5:0E:9F:EE:07:EF:A7:CF:D5
X509v3 Authority Key Identifier:
keyid:C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132332e302f32342d3234203d3e20313430343537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.189.123.0/24
Signature Algorithm: sha256WithRSAEncryption
70:92:e1:d6:82:2e:d5:c2:17:b7:6d:95:1a:56:a8:ad:8e:31:
4a:ba:53:9e:d6:0c:28:ef:12:9b:de:f7:ab:b5:4e:77:01:03:
b5:96:2e:da:e4:f4:0c:9a:18:8d:1f:67:3a:24:9b:ce:51:9f:
08:17:55:a5:54:c7:a1:0c:ea:81:cb:87:a0:56:94:9e:a0:68:
c7:27:06:1e:0e:2e:bc:d0:7e:d8:db:bb:19:96:31:de:aa:ad:
1d:87:46:11:15:2a:fa:17:52:42:5f:8b:49:8d:7f:64:c6:9a:
a7:25:71:18:53:c9:bd:7a:f8:22:2e:37:46:4f:69:25:30:05:
17:64:5b:38:7d:2f:ca:95:28:b0:40:e2:e4:11:04:23:2c:17:
fa:f7:0c:91:fc:a6:05:1d:b2:02:13:0c:5b:5a:7f:b2:9e:43:
c9:b1:35:86:c3:e5:a3:b3:18:de:10:78:50:8c:bf:19:2e:fe:
2e:77:72:9b:78:c4:0e:5d:18:16:f9:7a:32:49:dd:d1:6c:6a:
fa:20:a0:8a:6f:a5:58:01:6e:be:ad:9e:63:61:e8:36:54:11:
d1:95:67:c5:7c:79:82:dd:b1:bc:0e:28:20:2d:52:24:83:44:
c7:4c:c4:82:2a:5d:ae:59:9d:bd:94:25:1a:8d:7e:5c:23:03:
ff:81:1b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:43 2025 by rpki-client