Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/3130332e3139302e33302e302f32342d3234203d3e20313439383931.roa
File: 3130332e3139302e33302e302f32342d3234203d3e20313439383931.roa (raw, json)
Hash identifier: 42y3l7yp2lQIcyswjsolGN8lKdsqqlwrtR0fdv/FhBo=
Subject key identifier: 43:FD:DF:7C:3B:1F:1E:BE:FC:F8:87:EC:0F:86:50:F6:78:C1:31:0C
Certificate issuer: /CN=146B42876A5C2AB0705F67F1A3918D76984989AF
Certificate serial: 50BFA608759D011A5B49A3411E6AB9E5EF8FF666
Authority key identifier: 14:6B:42:87:6A:5C:2A:B0:70:5F:67:F1:A3:91:8D:76:98:49:89:AF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146B42876A5C2AB0705F67F1A3918D76984989AF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/3130332e3139302e33302e302f32342d3234203d3e20313439383931.roa
Signing time: Fri 28 Jun 2024 02:00:00 +0000
ROA not before: Fri 28 Jun 2024 01:55:00 +0000
ROA not after: Fri 27 Jun 2025 02:00:00 +0000
asID: 149891
IP address blocks: 103.190.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:bf:a6:08:75:9d:01:1a:5b:49:a3:41:1e:6a:b9:e5:ef:8f:f6:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=146B42876A5C2AB0705F67F1A3918D76984989AF
Validity
Not Before: Jun 28 01:55:00 2024 GMT
Not After : Jun 27 02:00:00 2025 GMT
Subject: CN=43FDDF7C3B1F1EBEFCF887EC0F8650F678C1310C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b0:c6:d3:34:28:44:38:9b:a8:74:b0:9d:ae:
4d:64:c6:5a:70:ad:59:0e:4b:f2:19:b4:ba:b8:49:
a7:6a:12:44:8f:53:d0:f8:74:37:c0:08:02:de:ca:
e3:81:0b:c2:67:1e:82:5d:09:43:74:82:6b:1f:fb:
38:3f:22:e0:6d:de:b2:8e:76:5b:18:16:b1:40:d5:
5a:e3:cf:50:f7:04:47:79:4e:2a:84:c0:8c:44:10:
69:c4:74:ee:39:b9:75:25:e8:99:52:88:1b:15:a4:
ba:82:b0:60:ca:7c:16:79:8d:e5:a2:3b:e9:96:cf:
11:0d:c1:9d:17:ba:30:4a:c4:d4:a7:b8:c6:53:d2:
bf:fe:7f:bf:1b:66:49:7d:94:75:99:ca:21:93:93:
03:e7:71:ce:f8:0e:20:fc:e7:d9:84:b6:ce:ea:cf:
41:35:ca:7b:39:9a:cb:63:51:6b:72:37:30:f5:5b:
c0:5a:9a:11:73:7b:4d:dd:c3:64:0c:89:84:ec:d0:
59:e8:d7:3d:a1:e2:c0:79:83:3f:e4:93:38:0d:b4:
14:7e:bc:f6:ff:c0:d6:4e:ec:bf:5e:d2:fd:73:7a:
12:a4:3e:1f:44:93:a8:f7:11:7e:b0:6c:f2:76:15:
e3:c6:c4:87:b3:17:9a:c6:31:c2:5e:64:a9:cb:e5:
ee:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FD:DF:7C:3B:1F:1E:BE:FC:F8:87:EC:0F:86:50:F6:78:C1:31:0C
X509v3 Authority Key Identifier:
keyid:14:6B:42:87:6A:5C:2A:B0:70:5F:67:F1:A3:91:8D:76:98:49:89:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/146B42876A5C2AB0705F67F1A3918D76984989AF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146B42876A5C2AB0705F67F1A3918D76984989AF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1dee126f-8192-4d28-b25e-deabdb79eb21/0/3130332e3139302e33302e302f32342d3234203d3e20313439383931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.190.30.0/24
Signature Algorithm: sha256WithRSAEncryption
17:95:77:1d:ae:86:f8:df:02:30:9a:30:ad:76:f3:93:22:88:
2d:c7:bc:7f:9a:de:3a:3d:06:42:e9:86:9f:cd:3e:19:80:3e:
14:5f:1c:d4:2a:53:ca:fe:4f:dd:b9:a4:3d:99:1b:a3:90:2c:
89:a0:aa:c5:08:52:98:4f:7f:e4:31:c2:1a:b6:7e:f1:78:8a:
bf:cd:f6:bc:bf:53:6f:30:97:f7:bd:32:e6:6b:6f:05:52:5c:
bd:74:0a:65:1b:dc:55:7f:49:3a:b5:98:58:e0:06:d8:29:99:
e2:27:51:54:da:cc:6e:49:99:9c:50:78:88:89:5d:95:ff:d7:
ef:5f:fa:39:66:22:8b:8b:a9:42:20:6c:03:ac:cf:d9:ed:42:
fa:06:93:b7:69:79:60:1f:c3:18:35:84:18:61:ff:f0:0f:34:
2f:c5:77:2f:80:b4:00:de:88:17:75:6c:66:1e:7d:0f:44:76:
fe:2b:57:93:d1:02:a5:90:c2:46:d0:64:74:98:1b:05:7c:17:
78:8a:4a:d6:ef:ae:82:70:19:1f:5f:21:50:4c:1a:82:c2:59:
cd:46:02:8d:c7:35:4e:3a:fb:7f:14:67:ad:9b:7b:3e:23:51:
d8:43:b4:1d:1d:0b:8f:c5:25:57:b5:59:7f:7f:40:0a:38:20:
b2:44:2e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:18:28 2025 by rpki-client