Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35382e302f32332d3234203d3e20313439373538.roa
File: 3130332e3138392e35382e302f32332d3234203d3e20313439373538.roa (raw, json)
Hash identifier: UeRCOjo57wOeUyYDJJ1YZ67dLYbNF8SefWTH/DR2yv8=
Subject key identifier: 92:DE:CD:7C:B0:D9:5A:73:B6:15:70:0A:F6:93:57:4E:F3:F9:20:9A
Certificate issuer: /CN=923816C042C964B6465A7BA06B2D44BDAF28D827
Certificate serial: 4DEFD0930A36F458B8D935BE5A040AD7862062F5
Authority key identifier: 92:38:16:C0:42:C9:64:B6:46:5A:7B:A0:6B:2D:44:BD:AF:28:D8:27
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35382e302f32332d3234203d3e20313439373538.roa
Signing time: Wed 13 Nov 2024 09:58:48 +0000
ROA not before: Wed 13 Nov 2024 09:53:48 +0000
ROA not after: Wed 12 Nov 2025 09:58:48 +0000
asID: 149758
IP address blocks: 103.189.58.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:ef:d0:93:0a:36:f4:58:b8:d9:35:be:5a:04:0a:d7:86:20:62:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=923816C042C964B6465A7BA06B2D44BDAF28D827
Validity
Not Before: Nov 13 09:53:48 2024 GMT
Not After : Nov 12 09:58:48 2025 GMT
Subject: CN=92DECD7CB0D95A73B615700AF693574EF3F9209A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d0:d6:2c:89:3f:0b:75:4e:1b:8a:64:3d:65:
f7:12:80:67:3e:0f:15:37:88:00:7c:82:88:e8:b7:
9d:d2:25:11:98:a1:9f:58:11:fe:e7:c9:35:a0:47:
a7:f3:4c:66:cf:d1:d6:15:bf:51:07:11:11:ba:d9:
51:69:29:62:b3:b2:21:9e:48:8d:3c:02:c8:a1:ae:
30:4f:4e:6d:52:9a:9f:0c:b4:86:f5:f1:42:04:1e:
f4:bf:bc:d5:5f:bb:64:a8:18:92:d6:65:a9:86:ad:
45:eb:a0:d1:84:ad:9c:83:9f:d2:2a:20:17:60:f6:
8c:6d:47:5d:ac:0e:1d:77:11:0f:b1:1f:2b:bb:f8:
f3:6e:5e:22:14:2b:68:33:73:cc:ce:6b:00:67:c0:
16:0e:98:44:2e:e0:32:73:28:62:c8:9b:36:8d:4d:
00:24:13:e9:dd:74:6e:d8:18:7e:d0:9f:9e:88:9b:
3e:b3:9d:cb:94:39:d0:32:42:14:db:3d:2a:b1:b8:
43:1f:be:ab:26:59:bd:c5:85:7a:2a:72:25:1a:3a:
38:18:ce:d5:4d:24:02:fd:68:6f:2a:de:88:dc:80:
1f:dc:56:9b:1d:4f:8c:18:91:96:c2:23:45:db:7a:
24:f4:8c:61:23:f1:04:5f:c0:09:d8:b4:e8:ce:79:
ed:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DE:CD:7C:B0:D9:5A:73:B6:15:70:0A:F6:93:57:4E:F3:F9:20:9A
X509v3 Authority Key Identifier:
keyid:92:38:16:C0:42:C9:64:B6:46:5A:7B:A0:6B:2D:44:BD:AF:28:D8:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/3130332e3138392e35382e302f32332d3234203d3e20313439373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.189.58.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:5a:36:b7:d7:28:a2:c2:9a:09:30:f5:76:81:1f:86:ae:8d:
6f:57:e5:e3:0c:4d:85:0d:f6:7d:2e:9d:a1:ed:d5:79:7a:aa:
82:11:d7:3b:ed:76:a3:85:6e:d1:d7:55:09:36:bb:33:34:ba:
92:2f:c3:cd:cd:cb:30:23:28:7c:34:7f:15:76:8b:cc:44:e5:
67:20:7b:71:34:da:b2:f6:18:0a:e6:3a:06:9f:2a:86:73:fa:
9b:6a:36:07:8d:0c:f4:69:ef:39:a9:4c:c0:67:2c:d9:fc:ef:
7e:d3:b3:4f:88:0e:40:fb:17:85:cf:9c:7f:35:b2:2b:2b:7a:
d5:76:73:ef:67:5e:40:55:70:f4:fc:5e:c5:03:3f:52:1f:08:
7e:ce:e0:9f:40:0f:59:2c:a3:35:47:d7:44:c0:9f:07:96:cf:
f0:e8:67:41:fb:89:7d:52:05:7e:07:e5:c2:ed:ff:cf:b1:60:
92:4a:d8:74:18:0a:78:4d:c8:d2:5d:de:f0:bd:44:d3:dc:7e:
e2:fb:f0:4e:1c:af:4b:50:11:f7:81:fb:1a:83:00:ae:6e:e0:
b6:4b:d8:e1:28:44:17:fe:d9:99:f9:73:ed:ef:e0:23:c3:d9:
64:a3:09:54:72:37:53:10:ca:86:b3:a0:84:7f:86:03:2c:53:
57:ea:e7:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:13:09 2025 by rpki-client