Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/187ade9f-6b79-4723-9949-96de7e41db70/0/3130332e31312e32322e302f32332d3234203d3e203538333930.roa
File: 3130332e31312e32322e302f32332d3234203d3e203538333930.roa (raw, json)
Hash identifier: LYswcn8qPihQgugQgV3QSAqvaMoaJ8Ak/kLhePchypk=
Subject key identifier: 67:1F:D5:67:30:DD:24:75:C9:B1:B8:53:AC:1B:34:08:EA:4B:1B:31
Certificate issuer: /CN=E4B72563B465301EE966885E5BE212EE92B97305
Certificate serial: 55F8C33EE1E0ED42734650F4834A7786D29E6E28
Authority key identifier: E4:B7:25:63:B4:65:30:1E:E9:66:88:5E:5B:E2:12:EE:92:B9:73:05
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4B72563B465301EE966885E5BE212EE92B97305.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/187ade9f-6b79-4723-9949-96de7e41db70/0/3130332e31312e32322e302f32332d3234203d3e203538333930.roa
Signing time: Mon 06 Jan 2025 08:00:02 +0000
ROA not before: Mon 06 Jan 2025 07:55:02 +0000
ROA not after: Mon 05 Jan 2026 08:00:02 +0000
asID: 58390
IP address blocks: 103.11.22.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:f8:c3:3e:e1:e0:ed:42:73:46:50:f4:83:4a:77:86:d2:9e:6e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E4B72563B465301EE966885E5BE212EE92B97305
Validity
Not Before: Jan 6 07:55:02 2025 GMT
Not After : Jan 5 08:00:02 2026 GMT
Subject: CN=671FD56730DD2475C9B1B853AC1B3408EA4B1B31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bb:91:43:32:cf:74:52:2e:32:be:3f:ec:cf:
10:75:c7:6b:49:16:fd:e6:42:37:0a:dd:67:0a:35:
c8:41:63:9e:69:3c:7e:da:21:32:5b:36:02:0a:67:
1c:0a:5b:ca:b4:da:46:56:43:42:0b:93:09:b8:7f:
3f:e3:ee:40:f1:67:76:09:37:40:d4:fc:90:17:1e:
d2:af:e4:bf:de:a6:58:2e:67:29:a6:21:9e:45:0f:
28:89:30:2c:48:37:94:4a:d0:a1:a0:fb:1b:4c:8b:
6d:1e:69:69:bc:e6:2d:6c:78:a5:0d:2b:76:8e:cb:
9f:26:1f:89:6d:04:51:76:7a:53:66:24:98:28:2b:
69:e6:98:72:83:19:76:ab:87:69:37:93:6f:75:e1:
c5:ec:09:c7:6a:d4:83:34:4c:2b:08:47:a8:56:a3:
10:17:a2:af:7d:cc:87:11:1a:9e:d1:ac:cc:78:fb:
bb:36:1c:3d:90:5d:79:79:f9:75:58:67:8e:7a:b7:
35:fb:bc:ad:63:0b:0e:9e:39:8b:d2:53:84:51:36:
6c:3f:57:c1:fd:c6:6b:e8:50:67:0c:00:56:38:61:
00:c1:7f:a2:8b:7f:02:44:ea:23:90:99:31:a0:9c:
ee:c2:ca:3d:6d:0a:92:da:50:7c:79:4e:77:7d:58:
62:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1F:D5:67:30:DD:24:75:C9:B1:B8:53:AC:1B:34:08:EA:4B:1B:31
X509v3 Authority Key Identifier:
keyid:E4:B7:25:63:B4:65:30:1E:E9:66:88:5E:5B:E2:12:EE:92:B9:73:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/187ade9f-6b79-4723-9949-96de7e41db70/0/E4B72563B465301EE966885E5BE212EE92B97305.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4B72563B465301EE966885E5BE212EE92B97305.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187ade9f-6b79-4723-9949-96de7e41db70/0/3130332e31312e32322e302f32332d3234203d3e203538333930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.11.22.0/23
Signature Algorithm: sha256WithRSAEncryption
14:c3:96:51:33:cc:2d:a3:17:46:d3:d9:d0:81:8f:c8:7a:be:
c9:67:fc:b0:d3:ff:25:56:dc:65:ab:a3:8a:bc:55:0e:21:d0:
bd:44:32:1d:50:8d:75:9e:3f:11:63:81:b4:16:fe:bd:e3:08:
43:d1:22:a4:1f:3e:92:c1:53:14:61:27:b2:96:da:21:23:76:
ab:6b:6b:92:86:6e:48:79:19:87:4d:e2:f2:1a:2e:6f:f2:b5:
dd:6d:1a:d2:d3:39:3e:ba:9f:7a:89:6d:a8:2b:b6:31:2f:e1:
31:3c:fa:78:23:56:4a:ed:ce:64:a6:cc:38:21:7c:63:30:ad:
a8:45:39:fa:eb:72:32:2d:85:fa:44:0f:8e:b4:d1:37:5e:57:
53:6a:73:3c:4a:0d:68:83:b2:0c:a1:af:82:a5:c5:d8:48:e2:
71:da:67:d8:4d:03:e6:54:51:34:51:ee:d5:8e:20:f4:dd:48:
fb:95:05:68:2c:53:e4:59:3b:22:05:2c:58:31:87:e6:37:c5:
8c:1c:3e:21:3d:3d:4d:b4:f2:e8:59:b1:c4:99:fe:97:61:64:
67:d8:5b:c5:bf:c7:87:45:65:db:01:3e:7e:e6:4d:fb:c5:6a:
57:43:1d:a1:65:04:72:5b:99:e9:47:62:fc:83:f3:f1:69:58:
49:ab:76:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:52:51 2025 by rpki-client