Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa
File: 3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa (raw, json)
Hash identifier: rzjnKVoPcvg8LoYYqlAPNG8z+kcZAMAEA1cgciQRlhI=
Subject key identifier: 2A:3A:4F:13:ED:ED:18:EE:1A:3F:35:B0:B6:28:32:D1:07:34:CF:6E
Certificate issuer: /CN=356EA38801BC51EF3EDB8730387F8EDEBD11898F
Certificate serial: 7599E2B92BD27422FD6CD7AC2F38458BCD3EE45B
Authority key identifier: 35:6E:A3:88:01:BC:51:EF:3E:DB:87:30:38:7F:8E:DE:BD:11:89:8F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/356EA38801BC51EF3EDB8730387F8EDEBD11898F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa
Signing time: Thu 15 Aug 2024 04:01:32 +0000
ROA not before: Thu 15 Aug 2024 03:56:32 +0000
ROA not after: Thu 14 Aug 2025 04:01:32 +0000
asID: 58404
IP address blocks: 103.102.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:99:e2:b9:2b:d2:74:22:fd:6c:d7:ac:2f:38:45:8b:cd:3e:e4:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=356EA38801BC51EF3EDB8730387F8EDEBD11898F
Validity
Not Before: Aug 15 03:56:32 2024 GMT
Not After : Aug 14 04:01:32 2025 GMT
Subject: CN=2A3A4F13EDED18EE1A3F35B0B62832D10734CF6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:94:e9:cf:a0:84:cf:a6:f4:06:f6:c5:05:ca:
dd:35:f7:6c:7a:c0:5d:fa:71:e7:3a:06:0b:5c:85:
88:f0:ac:12:37:1b:b9:ac:ff:34:4f:d7:75:33:fe:
ef:82:52:9a:50:3b:01:b8:9c:c2:13:33:24:ab:45:
14:34:b2:45:e1:31:67:dc:96:40:a6:5b:3e:a0:68:
88:3b:0e:b3:29:be:19:e6:10:1a:8b:42:d1:9c:32:
29:08:57:c8:dd:39:08:a8:99:f6:23:86:af:ce:4c:
30:2c:ce:1f:6f:bb:23:ad:f3:c7:55:b3:7e:d6:54:
29:64:d3:2c:80:be:40:19:69:b8:a8:55:ab:25:97:
4e:e6:86:a4:76:4a:1d:c2:d9:25:10:c6:4a:f2:d2:
bc:86:e2:9b:ce:50:e4:9c:ec:0d:7e:08:f7:1a:8b:
01:91:67:07:d5:b8:7e:b2:c4:82:7e:51:5c:33:31:
de:f7:ee:3a:9b:15:ef:fa:65:b3:86:0c:99:68:1d:
74:bd:0f:f9:a0:ca:66:7e:f0:17:4a:89:6c:a8:ed:
18:74:fc:66:9b:74:cb:78:86:8e:78:86:81:ab:5f:
ef:22:8d:a5:b2:9f:cc:a2:ea:6e:0b:45:95:7b:88:
4f:f9:b8:8e:b3:2a:ff:0a:d2:d4:9f:b5:ed:07:fd:
f1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:3A:4F:13:ED:ED:18:EE:1A:3F:35:B0:B6:28:32:D1:07:34:CF:6E
X509v3 Authority Key Identifier:
keyid:35:6E:A3:88:01:BC:51:EF:3E:DB:87:30:38:7F:8E:DE:BD:11:89:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/356EA38801BC51EF3EDB8730387F8EDEBD11898F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/356EA38801BC51EF3EDB8730387F8EDEBD11898F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f2b6ed2-cc58-45c5-bd88-cb9550716a04/0/3130332e3130322e3135322e302f32322d3234203d3e203538343034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.152.0/22
Signature Algorithm: sha256WithRSAEncryption
53:43:70:f6:b6:95:6f:f6:4e:1b:8f:d4:3d:96:cb:4e:1b:e1:
1b:43:dd:95:29:1d:3a:a4:bc:25:17:d9:c9:02:9f:fd:53:e8:
0c:a2:be:26:5a:88:d6:ae:48:ca:41:35:ab:4a:1c:37:3d:90:
59:28:41:6a:b1:eb:8c:4d:c3:0d:1c:c3:cb:60:ab:ef:38:f2:
ca:bf:ad:a9:29:8d:17:92:67:82:f9:44:c6:c9:fa:7e:9e:6c:
11:b5:26:83:b7:31:7b:26:18:69:cc:e5:99:82:b7:92:cf:f4:
8b:ee:27:ad:77:74:db:80:70:9b:06:28:b8:46:be:b2:be:26:
5f:95:12:b1:8f:53:1a:b6:97:50:ef:36:45:c9:c7:0a:e2:dc:
ec:6b:70:e4:f6:81:79:ed:91:13:76:20:94:0d:7e:aa:e7:ec:
98:c6:3b:18:58:10:f7:29:ee:8a:1e:e7:2c:5d:4a:3a:62:3b:
22:1c:58:cf:e7:8b:3b:d7:db:62:90:86:be:45:30:21:cb:67:
9d:bf:f2:8f:52:50:2b:ff:19:24:ee:c7:65:d0:e2:cb:cf:96:
92:07:5c:39:75:1d:27:9b:20:d2:9e:87:4b:cc:7b:ae:29:91:
bc:f9:b8:74:2f:f9:4f:74:79:70:57:f8:37:72:1f:d4:0b:da:
5a:1b:f8:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:18 2025 by rpki-client