Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa
File: 3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa (raw, json)
Hash identifier: vhMXT0X2yZyfjqh1If/jDIC06hgxnPfiOfL606K6iKk=
Subject key identifier: 8C:D9:CA:6D:F3:02:8F:AA:5A:85:28:80:58:A0:51:42:21:D9:2B:B5
Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F
Certificate serial: 55161A159C2D3BF4735054B006528E811A9170E1
Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa
Signing time: Tue 20 Aug 2024 04:00:00 +0000
ROA not before: Tue 20 Aug 2024 03:55:00 +0000
ROA not after: Tue 19 Aug 2025 04:00:00 +0000
asID: 23951
IP address blocks: 103.101.138.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:16:1a:15:9c:2d:3b:f4:73:50:54:b0:06:52:8e:81:1a:91:70:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F
Validity
Not Before: Aug 20 03:55:00 2024 GMT
Not After : Aug 19 04:00:00 2025 GMT
Subject: CN=8CD9CA6DF3028FAA5A85288058A0514221D92BB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:92:e7:dc:43:cf:db:09:9f:c0:74:7d:ea:40:
63:7f:7a:d1:d4:ac:a4:02:97:9b:47:9f:34:5f:8d:
91:73:b2:ca:30:5f:ea:3e:d1:40:01:a2:04:22:ec:
da:7e:92:e6:5b:9e:6d:30:61:42:d1:20:17:b2:cd:
35:8f:cf:ba:71:1b:e7:15:0d:c2:8b:89:1c:07:20:
41:7a:f1:a2:23:4d:29:69:8f:24:b0:f6:d5:e8:61:
1f:ed:b8:97:66:b7:87:c0:a7:48:46:2f:f6:09:20:
1f:a3:5b:ce:f5:d3:3f:30:10:8b:eb:0e:16:2a:ab:
ef:c5:5d:ba:a4:51:cb:3e:8a:b8:a5:2b:84:5f:64:
65:d7:6d:6b:ee:67:63:8f:7e:ee:3c:f3:a2:fe:ff:
6b:42:72:6d:ce:0b:69:3f:00:9e:da:2b:18:e5:31:
f7:6e:41:8b:cf:7c:56:c0:e0:35:b2:58:4f:9a:15:
4f:3e:a6:b5:be:11:f2:cd:a6:89:b7:1d:14:96:bf:
ba:91:59:e2:8e:cf:fb:2e:f4:ac:7e:64:6f:00:5d:
f4:db:20:11:d6:c5:e3:34:10:c3:c3:52:81:e0:1d:
cb:ae:d6:c5:ff:b7:ea:87:d3:e4:05:bd:54:19:7f:
6a:0c:a2:d2:9e:0d:db:7a:46:5c:60:6b:7a:50:1c:
78:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D9:CA:6D:F3:02:8F:AA:5A:85:28:80:58:A0:51:42:21:D9:2B:B5
X509v3 Authority Key Identifier:
keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.101.138.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:72:66:f7:38:04:e2:92:1d:91:79:b0:00:4a:64:32:d3:b1:
57:da:ca:65:37:48:f5:82:39:1b:ad:f7:69:72:ac:05:e3:46:
39:4a:10:10:ca:f6:44:37:93:4d:ee:2b:54:2b:7d:0c:cf:73:
9e:e6:06:e5:b5:de:83:ff:9d:5a:44:28:ef:3c:0d:86:f1:2d:
76:dc:65:fe:c8:de:7d:0c:f0:66:91:55:32:48:e4:bf:0d:d4:
4d:4c:68:c2:a7:b9:c3:d1:1d:3d:6e:7a:0c:cf:95:20:43:fa:
2b:43:a3:3c:ee:df:05:3c:fe:70:9c:62:7c:08:9b:35:ab:61:
2a:9b:ac:ef:a9:25:c7:82:05:a0:68:77:d5:4f:11:65:21:22:
ac:2a:30:65:2b:1e:6d:d6:ba:d9:83:ca:57:95:c6:55:e4:e3:
4d:ef:d1:95:fa:d1:42:b0:e6:40:85:f7:52:0b:53:67:8a:9d:
a7:f5:2f:26:b8:1d:69:bc:a4:12:0e:88:4a:2a:0b:d9:50:62:
74:f9:49:e7:f8:3b:d9:5a:b1:a8:d3:aa:81:62:b4:40:6d:46:
2d:77:db:0d:cb:67:ca:35:18:e7:4c:45:65:ea:3c:b2:b1:c9:
f2:77:d4:fe:00:b5:3e:e2:7a:a0:3a:42:61:1c:53:c1:75:0e:
08:a7:11:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:29:33 2025 by rpki-client