Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/10e88774-844f-4616-8bd0-dc313928730c/0/3130332e38352e3131362e302f32332d3234203d3e203633383734.roa
File: 3130332e38352e3131362e302f32332d3234203d3e203633383734.roa (raw, json)
Hash identifier: T3m8FCWNJK+RVPg/hxCti3q4f+FxE3xDrofjxIUWm4Y=
Subject key identifier: 6F:7A:B7:86:5F:4C:DE:C1:AA:CF:DA:7D:8D:B8:31:EE:34:51:66:F9
Certificate issuer: /CN=A551C9C9991E20FF99C2A748CB7665B2DE0D2F0C
Certificate serial: 797DAB11948E1E3482B21544332FDFF580789DBC
Authority key identifier: A5:51:C9:C9:99:1E:20:FF:99:C2:A7:48:CB:76:65:B2:DE:0D:2F:0C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A551C9C9991E20FF99C2A748CB7665B2DE0D2F0C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/10e88774-844f-4616-8bd0-dc313928730c/0/3130332e38352e3131362e302f32332d3234203d3e203633383734.roa
Signing time: Thu 01 Aug 2024 06:00:00 +0000
ROA not before: Thu 01 Aug 2024 05:55:00 +0000
ROA not after: Thu 31 Jul 2025 06:00:00 +0000
asID: 63874
IP address blocks: 103.85.116.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:7d:ab:11:94:8e:1e:34:82:b2:15:44:33:2f:df:f5:80:78:9d:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A551C9C9991E20FF99C2A748CB7665B2DE0D2F0C
Validity
Not Before: Aug 1 05:55:00 2024 GMT
Not After : Jul 31 06:00:00 2025 GMT
Subject: CN=6F7AB7865F4CDEC1AACFDA7D8DB831EE345166F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:be:97:3c:7f:00:8a:d3:15:cb:d5:64:f4:3f:
0a:66:97:79:19:f8:01:78:ad:db:56:c0:ef:9d:7f:
e8:00:3c:b6:86:e5:70:4b:b2:86:c0:15:b3:a7:0d:
25:b2:d8:4d:0a:a3:fd:54:8d:80:dd:d3:18:62:63:
ed:29:ec:8c:a8:dc:94:c2:c9:0f:4a:9c:4e:e3:02:
ee:fa:cf:b1:7d:aa:ef:c7:15:56:9a:f1:25:d2:89:
3e:d2:7c:82:60:e7:b9:a4:67:68:02:27:fc:26:a7:
f0:4b:72:3b:90:23:6c:70:f3:e0:24:b7:89:13:f6:
90:b7:f5:96:77:6a:63:aa:dd:ad:ac:1a:f8:47:af:
4b:29:17:1c:d4:90:d4:99:a9:fe:a9:a2:d5:38:f7:
01:ae:df:84:d6:2c:a2:d6:f8:18:d0:22:93:41:a1:
a0:01:0c:bc:9d:4e:21:8f:57:3f:ee:c4:9e:b0:c6:
52:02:56:c1:ae:31:75:c7:6a:57:11:78:66:c5:8d:
54:99:2c:06:75:14:db:5c:11:57:f1:07:4a:bb:58:
e2:32:59:ed:4c:d7:74:52:65:f1:0d:7c:b5:7d:cd:
5d:c0:fc:a5:47:5f:52:51:78:1d:f2:c9:4c:16:e6:
d5:d0:d7:e9:b9:2c:30:9c:5c:41:75:16:d1:22:74:
35:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7A:B7:86:5F:4C:DE:C1:AA:CF:DA:7D:8D:B8:31:EE:34:51:66:F9
X509v3 Authority Key Identifier:
keyid:A5:51:C9:C9:99:1E:20:FF:99:C2:A7:48:CB:76:65:B2:DE:0D:2F:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/10e88774-844f-4616-8bd0-dc313928730c/0/A551C9C9991E20FF99C2A748CB7665B2DE0D2F0C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A551C9C9991E20FF99C2A748CB7665B2DE0D2F0C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10e88774-844f-4616-8bd0-dc313928730c/0/3130332e38352e3131362e302f32332d3234203d3e203633383734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.85.116.0/23
Signature Algorithm: sha256WithRSAEncryption
32:6c:33:3c:17:8d:14:8b:62:e2:1c:d1:8f:2f:67:56:6d:34:
03:26:9c:a4:eb:04:01:f3:ce:54:c6:99:45:11:51:05:b8:e9:
54:be:51:7a:d3:3c:14:72:5e:e1:c2:dd:b3:b5:d4:81:d3:6d:
ee:9b:37:3d:91:a2:09:9e:8d:b3:82:0a:36:99:7e:7e:0b:23:
1c:5d:48:8d:8b:34:e6:02:09:74:d4:bf:74:f5:12:d6:82:2c:
95:b4:1a:23:49:51:df:27:77:c4:22:ec:f5:98:76:fe:76:22:
60:ce:d5:cb:5f:c3:45:cf:79:b3:ee:5b:78:4e:cf:15:f4:54:
6b:68:f5:3b:00:d9:25:5d:39:f8:27:2a:d5:30:1a:e7:a4:72:
86:32:db:10:1d:c7:4e:ed:cf:5e:83:34:d8:a9:41:da:b2:13:
6c:eb:98:bb:75:f1:31:89:22:f4:f0:2e:17:53:eb:67:fd:34:
5c:fd:bf:b0:b5:6e:fc:4a:db:93:f5:1b:7f:e5:c5:8a:91:e7:
d6:27:46:ab:7c:fa:56:0f:f4:5f:ff:7e:d4:e4:d3:fa:d8:3a:
05:75:21:9d:10:39:37:62:5d:7f:73:2f:fc:ae:1b:4a:00:38:
00:e8:d8:bf:08:1c:56:11:3a:51:76:77:4e:ef:f1:4f:03:de:
3e:8e:6e:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:20:18 2025 by rpki-client