Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa
File: 3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa (raw, json)
Hash identifier: q3D0gokLtaoTWGXZ65FjjWiIlEBRw2BR2w0tZwoughw=
Subject key identifier: 69:CF:06:25:CF:E9:C7:31:A7:50:29:6A:99:D4:E0:0A:F5:57:6A:1E
Certificate issuer: /CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779
Certificate serial: 2EE0F073FF19B8ABCEC8E4875B2D06C17D2EB670
Authority key identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa
Signing time: Sat 28 Sep 2024 10:00:02 +0000
ROA not before: Sat 28 Sep 2024 09:55:02 +0000
ROA not after: Sat 27 Sep 2025 10:00:02 +0000
asID: 140392
IP address blocks: 103.150.148.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:e0:f0:73:ff:19:b8:ab:ce:c8:e4:87:5b:2d:06:c1:7d:2e:b6:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779
Validity
Not Before: Sep 28 09:55:02 2024 GMT
Not After : Sep 27 10:00:02 2025 GMT
Subject: CN=69CF0625CFE9C731A750296A99D4E00AF5576A1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d6:1f:28:be:89:90:39:bb:4e:06:99:57:57:
37:4e:ab:5d:d0:af:c9:9f:07:e5:51:89:37:c7:41:
16:76:cf:96:1b:27:66:ff:46:b0:a4:e9:aa:46:69:
67:fa:88:fb:05:d2:c1:ff:2f:b8:df:4d:93:e9:0d:
0d:c9:2b:08:e7:21:a5:5f:fe:ca:35:89:c0:8c:4e:
99:4d:b3:80:87:02:8c:58:ea:af:c5:48:67:9b:19:
70:78:2d:bd:ea:b1:84:d0:1c:8a:3b:c2:2f:12:72:
da:64:57:e1:a7:ea:71:04:8a:46:20:c5:f0:23:50:
60:f4:a8:0b:b1:33:2a:65:d7:9a:8b:5b:c0:da:66:
8f:03:7b:bc:21:3d:03:21:64:dc:18:0b:8f:89:bb:
27:8e:38:ba:29:44:17:ac:2a:2d:de:11:40:62:96:
47:1a:20:6e:ba:63:40:47:95:4f:b7:2a:e9:90:05:
d8:e6:9f:0a:a7:bc:24:6f:d7:2f:9e:9b:d3:a1:d3:
94:29:46:a0:47:2e:ac:45:4f:f3:fd:7f:84:86:d7:
47:32:4a:3f:a7:38:08:1d:dd:44:d3:be:b4:a6:94:
b6:94:89:53:06:c3:c5:4c:f4:4c:a2:82:ed:55:b9:
c7:e6:7e:f1:5b:1a:ad:01:5f:01:3f:ee:15:c1:3f:
4b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:CF:06:25:CF:E9:C7:31:A7:50:29:6A:99:D4:E0:0A:F5:57:6A:1E
X509v3 Authority Key Identifier:
keyid:8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/3130332e3135302e3134382e302f32332d3233203d3e20313430333932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.150.148.0/23
Signature Algorithm: sha256WithRSAEncryption
76:66:96:81:ec:1e:4d:17:e9:72:18:a3:27:3f:c8:a9:19:68:
dc:63:cc:16:47:57:db:ab:37:bd:99:13:43:21:f9:c4:ff:c4:
f7:66:5c:88:cc:28:56:70:0f:54:5e:75:f8:c9:f2:0a:f1:39:
eb:2d:fb:c9:71:89:95:c3:4e:a1:48:76:dd:9b:41:26:a6:47:
39:fc:40:a0:f9:88:e8:84:72:63:f0:00:3d:ee:a0:7d:69:cb:
83:cb:6b:cd:89:9f:7e:d5:c0:55:bf:41:8a:3f:da:9e:4a:79:
5f:e7:63:44:c6:df:53:29:f8:fa:51:8e:3e:eb:34:de:a4:64:
be:b7:2a:77:0b:77:20:8c:07:01:b2:47:7d:44:27:f7:43:0f:
60:ca:c4:dc:13:fd:df:37:fd:5a:f0:e3:69:d7:b7:bd:6a:be:
af:fc:66:9d:ae:72:70:b6:14:44:3e:af:87:d6:93:5c:10:2c:
e7:5e:00:db:79:eb:c6:a3:0c:76:26:7a:c6:26:1a:bd:94:a4:
cf:7b:a2:3b:ad:2e:73:0f:9b:bb:f5:c0:80:c7:5f:5a:7d:af:
15:66:67:0b:c3:2d:a6:f9:e4:75:7c:eb:d1:e3:a6:12:a0:44:
87:29:37:c4:46:68:4d:d8:f2:e2:34:2e:cb:31:0c:8b:8d:a6:
5e:0b:1c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:44:13 2025 by rpki-client