Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32332d3233203d3e20313432333339.roa
File: 3130332e3136392e3134382e302f32332d3233203d3e20313432333339.roa (raw, json)
Hash identifier: +gGFIbmz6MNLj5Vm2IvAwgGsv19fCAUik3uGncQgwzA=
Subject key identifier: E5:F2:1F:5C:24:63:24:B0:44:64:4B:B8:4A:7A:0D:B5:70:44:54:42
Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45
Certificate serial: 446025F28A8038C261388708BF35D07564C9D41A
Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32332d3233203d3e20313432333339.roa
Signing time: Wed 21 Aug 2024 15:00:00 +0000
ROA not before: Wed 21 Aug 2024 14:55:00 +0000
ROA not after: Wed 20 Aug 2025 15:00:00 +0000
asID: 142339
IP address blocks: 103.169.148.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:60:25:f2:8a:80:38:c2:61:38:87:08:bf:35:d0:75:64:c9:d4:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45
Validity
Not Before: Aug 21 14:55:00 2024 GMT
Not After : Aug 20 15:00:00 2025 GMT
Subject: CN=E5F21F5C246324B044644BB84A7A0DB570445442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e4:45:d4:b4:06:7e:a6:f7:e2:15:9a:30:64:
0a:86:5e:3f:ea:0a:2a:ab:55:42:16:1e:39:0a:e8:
f9:38:a7:61:cf:2a:86:84:c1:75:09:7c:14:1e:56:
b0:85:ef:56:17:15:46:9f:b0:de:ba:76:6d:c6:c4:
c6:6b:b1:8a:42:52:1e:34:63:3b:ac:43:93:ba:5b:
77:79:13:ee:d5:ad:1c:b9:76:aa:ae:a7:6d:85:91:
bc:27:df:17:32:38:55:81:c8:46:82:a5:35:1d:41:
91:1c:4e:ef:64:e6:1c:bb:30:34:57:b6:63:a3:b9:
f9:b3:21:04:a4:c8:d6:4e:e1:59:b5:ac:10:dd:8d:
40:6a:f6:62:c8:d5:78:08:1a:e4:5f:13:cb:50:32:
d1:0b:cb:9f:c1:63:dd:df:1e:9f:d9:9e:b0:14:a0:
a8:30:96:2c:4a:86:62:f7:3d:c9:72:71:1a:8a:4e:
e6:84:91:00:f2:73:9d:16:03:f0:e8:09:c5:40:b3:
6b:f8:21:d0:c7:78:a0:01:fa:fd:fa:53:d1:f8:68:
fb:aa:89:b3:99:fe:e9:5e:d3:4f:6a:8e:94:d1:db:
c8:d3:33:4b:11:fe:c1:c4:60:c2:d1:62:d8:30:a2:
b2:90:f9:ab:82:3d:cf:c0:b4:d7:43:c9:f8:81:f9:
84:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F2:1F:5C:24:63:24:B0:44:64:4B:B8:4A:7A:0D:B5:70:44:54:42
X509v3 Authority Key Identifier:
keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32332d3233203d3e20313432333339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.148.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:e7:f3:37:27:56:76:9b:a5:0f:0a:a9:38:b9:40:f9:49:ee:
51:94:7f:36:31:3e:42:09:91:d7:1d:02:4e:96:bf:2b:8c:b9:
0d:c0:66:2f:7b:3a:c2:de:5c:c5:8c:a4:79:5d:7d:d0:91:3a:
9b:ee:82:f0:1d:7f:f8:95:3c:70:49:b2:8b:ff:13:97:f1:ee:
23:44:94:1f:56:b1:8f:34:ff:a0:43:c2:2e:8f:ae:cc:cf:46:
a6:f9:74:57:82:28:19:8f:28:ea:db:0b:4a:6b:e3:3f:e7:50:
95:7a:99:73:cc:9d:fd:85:ba:e9:1f:e4:81:b2:7b:60:97:8c:
42:34:e1:38:e4:68:04:b9:e3:18:8f:63:2f:5f:d7:8c:cb:44:
00:ec:29:57:70:a0:97:14:ac:bd:8a:32:0f:83:fd:11:8a:1b:
66:30:fe:ae:54:65:dd:94:78:43:c3:41:7f:b9:0e:e2:c5:17:
4a:ee:c0:2c:82:cb:4d:d0:25:e4:5c:18:52:1a:c6:21:f0:dc:
77:53:83:cc:7b:ea:85:b3:67:8a:0b:d5:98:7c:ee:e7:37:3b:
ad:4e:e7:82:bf:46:52:39:b8:07:84:1a:c9:3f:28:fd:a9:d2:
7a:e9:b0:48:b2:ea:2e:a5:8c:5e:9e:be:4f:55:db:52:4b:40:
9b:0b:ee:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:19:41 2025 by rpki-client