Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32342d3234203d3e20313431353936.roa
File: 3130332e3137392e3231382e302f32342d3234203d3e20313431353936.roa (raw, json)
Hash identifier: 5cGFOXICgLmaNpmZAogfW5ytKDPAYz1pnqRlwPOSxTo=
Subject key identifier: F9:DB:F4:50:74:51:F6:20:8C:3E:42:3A:CF:83:71:0F:8D:C0:B3:8D
Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653
Certificate serial: 71739BC1A5746E5FB2D027313F6C5E5383B0521D
Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32342d3234203d3e20313431353936.roa
Signing time: Tue 02 Jul 2024 11:00:01 +0000
ROA not before: Tue 02 Jul 2024 10:55:01 +0000
ROA not after: Tue 01 Jul 2025 11:00:01 +0000
asID: 141596
IP address blocks: 103.179.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:73:9b:c1:a5:74:6e:5f:b2:d0:27:31:3f:6c:5e:53:83:b0:52:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653
Validity
Not Before: Jul 2 10:55:01 2024 GMT
Not After : Jul 1 11:00:01 2025 GMT
Subject: CN=F9DBF4507451F6208C3E423ACF83710F8DC0B38D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b6:4a:ae:cb:f6:5e:9f:50:05:b6:08:04:03:
27:29:59:15:5e:a1:5d:40:7c:64:0e:b0:0c:fd:33:
28:53:a5:ae:e0:13:ed:e4:2d:60:c1:d2:65:2f:cf:
95:bf:69:91:13:e4:fc:e9:65:0a:80:57:d5:cb:5f:
c2:54:87:67:58:d5:42:04:b9:d3:aa:47:fc:1d:08:
89:1e:92:ed:ac:d9:69:6b:a9:5c:9f:7e:e6:ce:98:
a0:14:f3:8a:63:20:eb:b7:37:88:8a:ce:cf:0f:ed:
a6:14:9b:d5:57:5b:d3:26:c8:13:84:5a:87:ab:ca:
63:1e:be:a0:93:0a:fe:f5:29:86:2f:be:14:60:4d:
9c:b4:59:58:32:b0:08:8e:36:01:f7:6f:48:b8:af:
0a:4b:6f:c8:f4:47:bf:f4:7a:3a:b4:c6:39:47:ab:
47:71:6f:e4:50:30:f6:38:87:47:c9:19:8f:4f:10:
ef:26:42:c8:bd:6f:22:92:e0:05:25:be:31:25:19:
0c:c1:93:ca:9a:aa:b6:04:bd:2c:8c:c9:b3:de:ae:
16:a9:b6:74:08:bb:5c:b5:85:19:f7:a6:38:5b:cf:
97:ad:08:8f:57:7f:57:58:59:7f:c1:16:bc:41:bf:
77:8b:09:3b:a0:35:41:6c:e4:1f:b2:8f:c0:c3:27:
04:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DB:F4:50:74:51:F6:20:8C:3E:42:3A:CF:83:71:0F:8D:C0:B3:8D
X509v3 Authority Key Identifier:
keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32342d3234203d3e20313431353936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.179.218.0/24
Signature Algorithm: sha256WithRSAEncryption
65:44:99:c0:62:0d:84:e1:38:c6:02:42:e1:21:f5:bd:36:0d:
38:e5:6c:09:29:4f:14:67:02:1c:c7:93:9a:05:4a:fd:e0:1a:
00:23:77:e7:fa:e7:e9:33:67:7a:dd:5e:f7:66:13:88:73:5a:
f1:af:27:f8:69:86:22:57:14:73:07:16:3f:75:66:8c:48:94:
58:a6:3f:90:a4:13:d2:9b:d5:e4:94:ba:16:fc:92:be:89:04:
ae:cb:bd:ab:53:d6:b4:26:a4:de:cf:e3:9b:86:ff:e8:5c:33:
61:0f:9b:67:54:a5:ed:a9:2a:f6:9c:c7:a6:d9:71:89:f9:8e:
c1:02:fa:a7:52:8e:18:76:8d:76:73:55:71:e2:10:bf:c5:8b:
3a:c5:69:27:c0:db:45:a1:f3:f6:a7:00:20:6f:b2:6a:95:b9:
cd:27:27:c7:37:b1:d1:d5:be:44:54:15:4b:3c:20:6a:1e:81:
4e:31:8a:32:94:ef:8a:2d:a4:4f:7c:e0:95:8f:9c:bc:4b:1a:
01:14:32:01:ab:0d:4e:78:60:b1:ab:dd:56:8c:f1:e1:af:2d:
51:b3:75:fd:e9:80:ef:58:90:b5:78:60:7b:43:a4:57:4b:17:
4a:67:59:44:2f:e6:8c:dc:35:42:d6:dc:00:06:dd:86:f4:4a:
bc:2d:3d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:47:24 2025 by rpki-client