Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa
File: 3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa (raw, json)
Hash identifier: IVJ0b0O0UGWFb8DQACwVWHuzImwsy85XwTmxoeLCF2Q=
Subject key identifier: 3B:A8:14:C9:DF:82:79:89:37:27:FD:00:44:D1:56:EB:1C:A1:25:CF
Certificate issuer: /CN=87C7B4B7933266A0A09E2290B0934622DD072C9B
Certificate serial: 3363B648337B5587D0E4384AEAF9F20325B65E4E
Authority key identifier: 87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa
Signing time: Wed 04 Dec 2024 09:03:08 +0000
ROA not before: Wed 04 Dec 2024 08:58:08 +0000
ROA not after: Wed 03 Dec 2025 09:03:08 +0000
asID: 135478
IP address blocks: 103.121.170.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:63:b6:48:33:7b:55:87:d0:e4:38:4a:ea:f9:f2:03:25:b6:5e:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87C7B4B7933266A0A09E2290B0934622DD072C9B
Validity
Not Before: Dec 4 08:58:08 2024 GMT
Not After : Dec 3 09:03:08 2025 GMT
Subject: CN=3BA814C9DF8279893727FD0044D156EB1CA125CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:ca:a8:85:d7:77:b1:01:9f:89:10:48:e1:
a3:fe:4b:b2:ad:61:77:c9:86:ee:30:be:89:1b:b2:
a4:f6:fa:56:f3:e5:57:68:df:f8:d8:f7:78:80:cc:
ab:d7:7f:d7:1b:05:9e:4c:f5:40:28:27:89:0f:da:
4b:6c:00:fc:6a:81:4e:e4:f1:6f:63:a0:f6:68:00:
55:22:8b:db:90:02:e5:83:0d:f8:87:c9:24:77:cb:
6b:f7:56:f9:5f:8d:58:57:8a:4e:c3:f4:64:17:9d:
06:53:3f:7d:15:fe:f6:8c:b6:ad:f5:b5:f1:90:35:
8b:0f:25:3b:f7:f6:8f:d5:8d:dc:7a:c9:7c:30:00:
99:05:b3:ff:9c:3f:16:16:f2:33:48:3b:98:ab:62:
58:96:32:bf:c6:67:dc:86:fd:74:1e:67:d3:84:2a:
ce:07:63:83:0b:e2:42:8c:d7:c7:ee:af:2f:4a:54:
b5:39:1f:09:76:0d:b9:35:c4:e0:68:57:d8:cf:03:
07:8f:59:33:e2:77:84:a0:91:63:39:58:d9:13:c7:
3a:83:63:07:c5:16:25:bb:a5:8e:84:aa:de:b4:37:
c4:80:8e:f3:ea:af:cd:17:94:bc:8a:f8:b1:b4:5b:
ee:61:83:a8:fa:a1:6a:ad:cd:b7:e8:8b:98:de:d1:
5a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A8:14:C9:DF:82:79:89:37:27:FD:00:44:D1:56:EB:1C:A1:25:CF
X509v3 Authority Key Identifier:
keyid:87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.121.170.0/23
Signature Algorithm: sha256WithRSAEncryption
16:2b:f0:32:1f:96:42:4a:2b:9d:69:ec:9b:f3:31:63:a7:f5:
54:2d:fd:41:03:be:e1:d1:59:55:5a:21:df:3f:a7:3e:2f:45:
40:88:ed:b5:51:86:02:da:6e:57:87:11:72:ff:4c:13:04:a6:
fc:13:d3:91:81:61:83:8a:e5:2b:85:6b:c4:62:1b:ac:b7:43:
04:f7:38:5b:bf:e7:f6:b0:c1:21:b5:9c:1e:79:07:13:60:df:
87:19:ae:b9:67:98:60:07:49:cc:94:05:34:c0:eb:70:df:c8:
8e:5c:e3:eb:5a:28:89:71:60:ce:98:f3:26:26:5d:65:5b:c3:
ac:05:f9:d2:e3:50:6a:43:c6:34:d1:96:4b:cb:b8:87:56:06:
11:0d:fe:73:3d:95:7f:ae:2c:67:0c:d3:33:32:75:4e:c4:0a:
8c:48:8b:d2:89:e0:85:99:f3:d9:4d:24:c0:91:b2:7f:d3:bd:
0b:08:01:cc:8d:dd:85:75:58:aa:0b:83:a3:5b:89:b0:79:96:
80:c3:13:44:11:ab:03:49:65:7e:24:c0:a2:5a:1a:67:d3:44:
8b:f4:2c:0e:a7:ff:0b:c3:96:8e:1a:b5:22:78:52:13:39:de:
65:c5:a9:d1:5d:d8:36:6b:b2:9f:a3:7c:5a:08:d3:d1:4a:43:
30:57:c6:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:37:00 2025 by rpki-client