Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/3130332e3136342e31322e302f32332d3234203d3e20313431383938.roa
File: 3130332e3136342e31322e302f32332d3234203d3e20313431383938.roa (raw, json)
Hash identifier: lo2Vk1iwPOAeWHe18ZoZOb7f+oK3frxdmjMpWVUzEsE=
Subject key identifier: E1:D0:9E:0B:55:7C:1D:0B:FE:41:AA:A6:03:C1:DA:CD:7A:6A:45:FD
Certificate issuer: /CN=917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784
Certificate serial: 7BA762F53899C5E4CB03B343497F7E8E5C80041E
Authority key identifier: 91:7A:9D:24:BF:1E:AD:6F:A4:A1:F8:FD:81:D5:31:37:EF:52:E7:84
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/3130332e3136342e31322e302f32332d3234203d3e20313431383938.roa
Signing time: Wed 04 Dec 2024 07:00:00 +0000
ROA not before: Wed 04 Dec 2024 06:55:00 +0000
ROA not after: Wed 03 Dec 2025 07:00:00 +0000
asID: 141898
IP address blocks: 103.164.12.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:a7:62:f5:38:99:c5:e4:cb:03:b3:43:49:7f:7e:8e:5c:80:04:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784
Validity
Not Before: Dec 4 06:55:00 2024 GMT
Not After : Dec 3 07:00:00 2025 GMT
Subject: CN=E1D09E0B557C1D0BFE41AAA603C1DACD7A6A45FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e4:1e:e4:4a:8c:ab:79:31:ec:c8:0f:76:ef:
d6:68:b6:94:13:00:e9:71:07:11:33:f1:aa:fe:3a:
15:c4:a1:a7:bb:ea:5e:48:42:19:c9:a3:1e:20:ed:
a5:8e:df:0e:68:f2:2b:77:45:8e:e5:7d:e2:be:17:
9c:aa:f6:d7:ff:a3:8a:78:54:eb:46:72:0c:41:74:
52:30:12:a1:75:0f:db:99:85:28:50:f7:2a:13:f5:
44:ab:55:d6:0a:c3:f5:89:92:15:dd:90:40:82:a3:
4c:50:45:00:37:d5:b0:e1:db:10:ae:24:39:00:b8:
3d:5c:af:0f:35:1c:18:0c:f9:76:be:a9:02:04:55:
70:b0:f2:06:79:f1:66:03:4e:59:26:bf:07:e0:ef:
dc:fb:61:0d:c6:87:7c:8b:48:3a:c5:56:cb:f1:d3:
08:83:2e:69:86:fd:cf:37:50:03:df:f8:51:53:7f:
c1:c5:b4:5e:e3:ee:19:eb:e1:21:8a:b8:63:d5:2c:
2e:5a:fb:03:28:c4:4b:ed:d7:f9:cd:1c:cd:60:11:
66:df:62:db:ee:2a:35:1e:d3:de:23:cb:46:f2:50:
03:83:28:72:05:c5:aa:d9:10:63:8a:d3:52:02:41:
31:d9:29:8a:3d:a7:35:2c:fd:fd:f1:9e:57:07:7e:
5b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D0:9E:0B:55:7C:1D:0B:FE:41:AA:A6:03:C1:DA:CD:7A:6A:45:FD
X509v3 Authority Key Identifier:
keyid:91:7A:9D:24:BF:1E:AD:6F:A4:A1:F8:FD:81:D5:31:37:EF:52:E7:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/3130332e3136342e31322e302f32332d3234203d3e20313431383938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.12.0/23
Signature Algorithm: sha256WithRSAEncryption
09:73:19:b6:0e:7a:61:b7:d9:1c:0c:60:da:3d:ea:4a:f6:ce:
f5:e2:6f:fa:92:85:1b:a5:82:8e:c0:13:35:50:2f:cf:79:58:
e4:71:e9:4e:83:a7:14:c2:65:c2:2d:4a:b1:61:8a:10:3a:5d:
2f:1e:81:6f:5a:c0:23:00:b7:80:22:e2:12:ad:fe:5c:ff:0d:
ca:d7:82:84:ad:8e:75:32:c9:1c:af:77:d4:5b:fc:d0:77:ba:
ad:9d:dc:c0:8b:e1:50:87:bf:d8:00:eb:ff:c2:c7:38:55:07:
9d:c7:d2:14:d1:03:08:c2:fd:83:38:7f:29:f3:b6:1e:30:b1:
76:43:e3:18:de:71:73:90:1d:72:37:f3:dd:65:fd:5e:16:19:
3a:cb:da:46:86:34:11:0f:a0:c2:c7:22:cd:1d:55:fa:3b:3e:
df:e1:c9:1a:c4:07:c8:99:cd:81:dc:af:fe:18:37:7b:67:04:
3c:46:5a:73:4c:9a:18:7d:7b:e7:02:48:5d:ad:02:9d:7a:23:
ec:c4:c2:92:8d:17:38:2e:47:48:e3:b2:5d:18:27:81:21:f4:
e5:0d:ec:ac:63:c4:14:b7:47:03:f1:80:a7:4e:3e:63:9a:85:
b7:26:ab:c9:5c:4b:e8:28:99:dc:de:07:da:cf:bd:b2:f9:14:
f2:45:cd:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:00:50 2025 by rpki-client