Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa
File: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (raw, json)
Hash identifier: sxaPQ+ZqxnBrZjtGVRwER4T4gwZhUZTm3DzgPwkczhE=
Subject key identifier: 03:F1:E3:39:E9:21:72:53:49:B4:76:2D:29:4C:31:9E:6A:A5:44:C9
Certificate issuer: /CN=5C559181306986EE89AADF0A1CFC78EA8A093530
Certificate serial: 167ECCA58CA798EDB9C44D88E995E3E519C82338
Authority key identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa
Signing time: Thu 26 Sep 2024 08:01:00 +0000
ROA not before: Thu 26 Sep 2024 07:56:00 +0000
ROA not after: Thu 25 Sep 2025 08:01:00 +0000
asID: 151556
IP address blocks: 103.250.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:7e:cc:a5:8c:a7:98:ed:b9:c4:4d:88:e9:95:e3:e5:19:c8:23:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C559181306986EE89AADF0A1CFC78EA8A093530
Validity
Not Before: Sep 26 07:56:00 2024 GMT
Not After : Sep 25 08:01:00 2025 GMT
Subject: CN=03F1E339E921725349B4762D294C319E6AA544C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1d:51:f3:70:a4:bc:be:85:61:3e:c4:04:fb:
ae:18:84:0b:12:d3:79:2a:94:f9:34:1f:51:97:b7:
42:a1:23:c1:28:ff:ae:ca:22:33:32:c6:96:26:60:
0c:8e:42:22:ff:10:c5:41:d2:2c:72:a4:0b:6a:ad:
cf:1f:cb:e1:05:6b:af:d5:1b:76:20:84:8b:44:e6:
6b:69:08:22:2d:49:8e:20:e8:32:fd:3f:d8:52:48:
f4:34:9a:f6:aa:75:20:80:1b:01:b4:92:4d:ea:a9:
4b:d4:40:81:9a:98:de:69:a3:07:f1:49:aa:42:57:
b6:84:33:eb:cb:1f:1f:2e:25:1c:99:77:c9:f5:1f:
81:1d:5b:eb:0d:2b:51:fa:7d:7c:0f:78:23:f0:06:
ef:7e:c9:be:59:e6:8e:ea:9a:14:53:0c:46:57:29:
35:1a:d4:33:4b:03:2c:07:e6:71:b2:2c:a3:97:5e:
57:4c:31:bf:01:d2:77:76:23:0e:26:08:1b:df:b1:
54:d6:64:cb:4b:27:54:b9:fc:2c:5e:9e:e2:db:78:
5c:c2:52:2c:e9:b8:4a:fe:55:6d:f8:1a:6f:33:13:
9b:17:0f:03:2b:f3:0f:6f:85:c6:5e:55:86:9b:60:
83:09:16:51:0d:f0:4a:d0:8a:8d:91:08:4c:f7:02:
26:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F1:E3:39:E9:21:72:53:49:B4:76:2D:29:4C:31:9E:6A:A5:44:C9
X509v3 Authority Key Identifier:
keyid:5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.250.129.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:87:76:12:a6:50:9b:80:37:f5:03:09:36:63:23:81:39:8f:
95:ba:07:c0:7d:bc:3d:59:7d:5a:f3:c7:01:25:86:e8:a7:35:
a6:c7:9a:80:33:52:a0:f2:4a:1f:5b:6c:bb:12:fc:d8:c9:4e:
19:5d:4c:3f:ad:48:ae:d1:e9:12:55:c8:e2:f7:b4:01:92:95:
9a:b3:ff:bf:b4:66:ae:38:76:ae:b1:4e:c1:c5:92:e4:e4:92:
d3:5a:97:32:e6:08:63:94:16:de:20:b5:a8:4f:11:b2:be:66:
fa:2b:d9:2a:e3:86:16:f1:f1:19:15:c6:92:10:e1:c0:26:32:
e5:b9:7c:b1:f5:ed:d6:5b:10:0c:40:a2:c2:07:2f:0a:e5:f4:
07:72:3a:82:0a:84:b5:2b:1d:65:b3:30:b8:70:7b:f9:8f:4c:
4b:74:38:b5:94:4b:de:85:7a:72:6d:59:b1:dd:64:ba:08:9a:
31:17:df:3c:a4:75:10:d4:5d:40:90:d3:92:3c:35:08:6a:f2:
33:7f:2d:76:8a:06:74:5d:f4:3b:72:f1:54:38:d7:32:e8:fc:
01:bf:03:3e:91:21:d0:84:0a:ab:73:36:13:72:f4:47:5a:91:
43:22:a2:c0:be:13:3d:22:44:fe:97:2c:ce:70:63:bc:a4:5c:
d9:f2:51:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:37:02 2025 by rpki-client