Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131372e302f32342d3234203d3e203536323433.roa
File: 3130332e3234362e3131372e302f32342d3234203d3e203536323433.roa (raw, json)
Hash identifier: ob1d6SVKwSuVb/WaiI2LMibW1+j9IE+zWQht1ZpcnQk=
Subject key identifier: 21:C4:CF:EC:76:97:76:FE:16:54:49:08:B5:8E:87:01:28:14:48:64
Certificate issuer: /CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C
Certificate serial: 5D2C287F00502B8CD5D30D993B425CB34E90F109
Authority key identifier: 01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131372e302f32342d3234203d3e203536323433.roa
Signing time: Wed 05 Jun 2024 10:00:00 +0000
ROA not before: Wed 05 Jun 2024 09:55:00 +0000
ROA not after: Wed 04 Jun 2025 10:00:00 +0000
asID: 56243
IP address blocks: 103.246.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:2c:28:7f:00:50:2b:8c:d5:d3:0d:99:3b:42:5c:b3:4e:90:f1:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=012D2F59937FDBE65095B9EB4971D9D31EFDA93C
Validity
Not Before: Jun 5 09:55:00 2024 GMT
Not After : Jun 4 10:00:00 2025 GMT
Subject: CN=21C4CFEC769776FE16544908B58E870128144864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e9:4a:ce:3c:89:e5:c9:d0:4e:8d:84:fe:91:
1c:d9:a3:7f:b2:7d:4f:8c:5c:22:0e:fa:1a:8a:75:
6e:b7:19:38:75:c8:20:87:99:d5:c1:f6:62:41:13:
f6:f1:89:92:e3:76:00:e7:c2:91:46:4d:ad:61:f4:
58:f6:9a:59:e1:3e:ae:20:df:11:42:b2:3d:2f:74:
d6:e2:fa:ec:8e:f5:fe:1e:ca:ac:31:c9:4e:c6:12:
98:0a:9e:a9:7a:bb:95:5c:67:86:09:23:de:fb:cf:
d4:64:1f:cb:9f:9f:c1:0e:2a:9a:25:d2:2a:d0:d6:
21:21:2f:87:e6:0a:21:26:1c:58:7a:44:d3:a5:fc:
70:6c:68:72:ac:a6:b1:2e:85:7b:2c:1e:39:a9:e0:
84:22:fe:90:42:59:57:8c:a0:84:e9:47:49:36:ef:
8d:28:67:57:4d:63:a8:a7:f8:e5:60:34:bf:87:b5:
a3:d6:74:08:60:22:25:4a:46:fb:24:c8:9b:f5:45:
6c:ef:83:9b:88:45:e6:d7:90:85:a0:ee:59:5e:2d:
0b:d4:ba:a0:68:bf:09:5d:be:b4:c0:a0:ca:e6:57:
c0:5c:53:61:de:33:2e:3f:5c:c2:94:5a:d0:37:12:
a4:b1:4a:dc:03:1b:e4:74:0a:86:c8:ab:29:8e:b9:
7e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C4:CF:EC:76:97:76:FE:16:54:49:08:B5:8E:87:01:28:14:48:64
X509v3 Authority Key Identifier:
keyid:01:2D:2F:59:93:7F:DB:E6:50:95:B9:EB:49:71:D9:D3:1E:FD:A9:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/012D2F59937FDBE65095B9EB4971D9D31EFDA93C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/186b3889-6966-45ef-9073-ad14011ac3b2/0/3130332e3234362e3131372e302f32342d3234203d3e203536323433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.246.117.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:42:d1:fe:2f:b6:72:50:0b:7e:a6:c9:a3:b6:5d:08:0a:36:
65:14:51:fe:38:08:e9:e7:e5:b6:c0:bd:b3:f6:9c:84:ed:56:
bd:82:d8:13:f5:14:f6:2d:33:30:35:5f:75:a4:7e:1f:49:b3:
c7:df:42:c9:25:eb:6f:a9:0d:33:19:b5:c2:a1:68:32:47:d8:
f2:64:4e:c9:b9:01:5f:05:45:03:e3:bd:7c:ec:e5:c8:14:9b:
c9:bc:38:a9:66:5a:66:91:62:de:63:be:66:ce:80:d3:60:56:
68:08:47:49:0a:ff:51:4d:5e:fa:22:63:93:09:1d:25:2e:58:
c1:e4:a5:4d:13:c1:e1:4c:1a:4b:4f:9f:fe:04:a1:69:a8:2f:
b5:5d:c2:23:87:e0:cf:36:15:b3:89:c5:1a:ea:a7:28:65:89:
87:df:a1:21:fb:d0:e7:ca:e2:d6:62:d4:bd:ac:e5:0b:95:81:
18:9a:90:3a:b6:b5:57:16:81:60:8b:98:7d:66:e8:8f:fa:11:
6c:50:d4:1a:fd:ac:ca:4d:0c:c4:83:bb:62:59:88:0c:fa:ba:
cd:76:46:06:ef:cd:c5:df:92:b0:1d:33:a9:b3:41:a4:f5:85:
2e:48:58:69:11:82:80:06:d0:b5:00:eb:03:87:43:68:22:e7:
f3:eb:31:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:35:57 2025 by rpki-client