Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3130332e31302e36302e302f32342d3234203d3e203338373538.roa
File: 3130332e31302e36302e302f32342d3234203d3e203338373538.roa (raw, json)
Hash identifier: 5lHQNRH9ZyHtRlqVq3mhv2CF0AIKUXgULtiM3hQL6BM=
Subject key identifier: 11:DC:4F:6E:1D:B8:EB:36:2C:62:A6:1A:42:1F:3F:70:F2:34:0F:0A
Certificate issuer: /CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4
Certificate serial: 26CD60FA88350891DB3C0A56C2BAC704EE4D1F2F
Authority key identifier: 9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3130332e31302e36302e302f32342d3234203d3e203338373538.roa
Signing time: Mon 01 Jul 2024 00:02:12 +0000
ROA not before: Sun 30 Jun 2024 23:57:12 +0000
ROA not after: Mon 30 Jun 2025 00:02:12 +0000
asID: 38758
IP address blocks: 103.10.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:cd:60:fa:88:35:08:91:db:3c:0a:56:c2:ba:c7:04:ee:4d:1f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FEB25155CF1AFF90AE11DA0298F164D554986F4
Validity
Not Before: Jun 30 23:57:12 2024 GMT
Not After : Jun 30 00:02:12 2025 GMT
Subject: CN=11DC4F6E1DB8EB362C62A61A421F3F70F2340F0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:74:6c:d9:70:7d:b6:21:f0:07:2a:37:94:eb:
f1:5a:df:c8:b2:ad:a3:a1:12:26:b1:14:ba:f8:0a:
32:f1:40:dc:fc:17:eb:3d:86:af:fe:ae:7d:f1:25:
ee:3d:b4:71:25:1d:97:94:89:e8:33:84:53:f1:1b:
e2:d4:bd:67:c3:e9:fc:70:da:70:68:f9:75:39:92:
bf:9b:b2:78:a3:0d:56:c9:bf:07:d5:c0:da:16:e1:
d5:7d:f5:c4:34:6c:f4:7f:bb:1b:a9:c2:c8:1e:3d:
4f:58:8c:86:f7:32:35:53:59:5c:72:06:37:c7:fa:
f5:e7:4e:c7:8f:d2:bf:32:e4:7c:ff:d0:47:37:c9:
bd:65:da:c9:c6:4b:b9:4a:d3:a2:93:e3:43:c7:6f:
9b:d9:dd:ea:b5:e7:51:34:2a:5f:b8:f3:c7:05:46:
51:5f:01:9a:de:20:b2:f2:9d:95:9a:68:44:62:ba:
d3:28:1b:62:3e:4a:c9:fc:7a:37:4e:09:e0:2f:14:
5c:5b:b9:b1:2a:4a:e7:e7:dd:c1:43:df:8b:ec:c7:
3f:39:1e:5a:61:95:4c:91:db:45:d3:92:25:17:63:
52:61:6d:23:2d:7e:e4:c9:f1:97:51:6c:b4:de:fa:
c6:f8:5f:60:3b:1f:30:28:28:30:cb:05:38:b0:be:
93:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:DC:4F:6E:1D:B8:EB:36:2C:62:A6:1A:42:1F:3F:70:F2:34:0F:0A
X509v3 Authority Key Identifier:
keyid:9F:EB:25:15:5C:F1:AF:F9:0A:E1:1D:A0:29:8F:16:4D:55:49:86:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/9FEB25155CF1AFF90AE11DA0298F164D554986F4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FEB25155CF1AFF90AE11DA0298F164D554986F4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b4e195e-12de-4c3c-93e5-522ee54018d6/0/3130332e31302e36302e302f32342d3234203d3e203338373538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.10.60.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:8a:99:ee:e2:42:25:3c:e7:d6:a9:63:dd:f0:68:f3:a1:38:
39:89:3e:69:9d:8b:c8:cf:79:7d:25:2b:e9:50:6e:ff:3a:af:
2f:af:03:23:70:3f:bf:5b:a1:8c:07:04:e5:52:0a:8b:c2:ac:
66:c1:b0:d1:af:12:6b:eb:53:96:ab:9c:5e:b6:a2:8d:b0:fe:
ec:75:79:b5:4f:c1:a3:e5:1d:67:cc:64:e7:14:a9:cf:12:8c:
af:09:9a:a3:55:f8:53:50:ae:7c:d7:a9:6f:24:76:9a:34:9f:
41:bf:53:4c:73:21:09:2c:f1:73:59:fa:12:6a:0a:18:b7:80:
09:c4:37:9a:ff:99:36:9b:93:8b:bb:2b:27:65:77:07:b7:cb:
40:36:27:44:61:f4:a6:fb:c4:36:3f:78:44:5a:43:85:ea:63:
69:78:ce:28:ff:40:53:51:a8:f1:d6:1e:b7:28:1e:64:4b:8a:
ed:04:79:17:22:d2:ba:13:1c:55:66:a0:c2:e5:b8:df:d8:b3:
8a:af:4a:8f:3c:f8:c0:9e:e3:d0:7d:3b:3f:90:e4:ff:98:e8:
da:f5:2c:1e:c4:7a:81:2d:43:91:4f:8c:bb:58:71:d8:bf:7e:
59:b5:e2:bf:c2:e6:c5:89:6b:66:33:8b:2d:b6:24:9f:57:1e:
02:75:ad:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 21:54:55 2025 by rpki-client