Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e382e3233382e302f32342d3234203d3e20313332363334.roa
File: 3130332e382e3233382e302f32342d3234203d3e20313332363334.roa (raw, json)
Hash identifier: ETpw0a+aN27La/w8z8t2+Ujt+M7eqg9mv9UITCWqsgM=
Subject key identifier: F1:D3:3F:D2:C1:E5:0C:19:83:1D:E8:1D:98:CD:9F:45:DF:BB:6C:75
Certificate issuer: /CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130
Certificate serial: 424292A2BAA68ACAB4BFB4BEB3379CDC07D0BAAE
Authority key identifier: 0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e382e3233382e302f32342d3234203d3e20313332363334.roa
Signing time: Sat 14 Dec 2024 10:00:02 +0000
ROA not before: Sat 14 Dec 2024 09:55:02 +0000
ROA not after: Sat 13 Dec 2025 10:00:02 +0000
asID: 132634
IP address blocks: 103.8.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:42:92:a2:ba:a6:8a:ca:b4:bf:b4:be:b3:37:9c:dc:07:d0:ba:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130
Validity
Not Before: Dec 14 09:55:02 2024 GMT
Not After : Dec 13 10:00:02 2025 GMT
Subject: CN=F1D33FD2C1E50C19831DE81D98CD9F45DFBB6C75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:38:32:97:dd:a2:ba:4c:ce:2f:51:7b:de:
15:17:4e:95:7f:84:85:92:8c:14:75:cb:15:5d:f4:
66:ae:28:39:3e:e8:a0:a2:d8:f2:81:5f:a0:f6:d7:
1b:39:8e:99:16:d9:4a:18:db:14:ca:73:02:32:2f:
bf:7f:e4:7d:7e:a6:97:fb:11:34:2f:49:e3:06:fc:
06:93:81:8c:59:22:1f:23:39:85:a1:d5:b4:b7:65:
0a:13:62:34:cd:74:4d:bc:5f:0c:b9:ae:56:d3:ff:
18:93:86:1a:71:8b:1b:d6:23:ef:91:73:94:64:eb:
0c:db:a6:0d:4a:18:f9:e9:c9:de:c9:3f:0c:d6:f0:
cf:13:22:95:02:6b:a3:a3:40:d0:dc:3d:3f:c3:33:
93:a1:ae:dd:c8:a9:b5:da:97:7b:e6:4d:aa:23:74:
7a:9b:b4:df:bd:c1:a3:b5:14:06:54:06:15:93:cf:
3c:e3:17:2f:5c:bf:9f:1e:9e:7b:b5:aa:11:26:3f:
26:ef:70:47:ad:fc:05:35:29:2b:e9:45:e0:81:7d:
33:26:49:74:fb:fa:8f:d6:84:52:19:61:e5:67:8d:
99:15:26:9b:4a:1f:5f:4f:52:fa:86:83:86:f1:fc:
6a:5c:0f:c3:10:44:17:5c:a9:4f:09:38:e4:1c:c7:
23:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D3:3F:D2:C1:E5:0C:19:83:1D:E8:1D:98:CD:9F:45:DF:BB:6C:75
X509v3 Authority Key Identifier:
keyid:0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e382e3233382e302f32342d3234203d3e20313332363334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.8.238.0/24
Signature Algorithm: sha256WithRSAEncryption
29:4c:96:d2:41:ad:52:95:f6:12:83:33:20:0c:34:cf:af:82:
3b:6d:f4:02:0f:46:1e:8c:c0:e6:08:92:a4:26:2a:e1:e4:d7:
a4:6a:79:52:d9:54:88:eb:43:50:c3:be:44:6b:ba:24:c5:a7:
65:be:73:e4:b4:5e:17:67:44:92:3c:4d:a4:7b:da:07:4d:37:
0b:94:fc:13:46:2c:25:19:42:f5:80:d6:30:76:d4:50:c3:ec:
b9:75:4f:a3:d4:da:11:56:bb:0c:6b:ec:5d:44:86:03:34:73:
eb:e7:8e:cb:cf:6a:84:ba:a2:db:4a:0d:42:84:da:02:02:76:
4e:5f:bf:bf:a4:56:f8:76:d2:96:52:26:88:e1:07:1c:3e:e0:
c7:41:e1:cc:69:58:c4:89:4d:22:cf:36:32:7e:2d:ab:09:e5:
8a:12:54:e7:8c:09:8d:a1:3c:c7:f3:16:5f:6a:95:1c:b3:34:
5e:88:8d:5e:e2:5f:19:a1:56:e2:81:a8:2f:d1:2f:b7:a8:e2:
45:bf:8d:76:ca:2e:58:a1:71:28:e4:dc:42:2d:24:46:5a:31:
20:31:0f:8e:a5:60:27:04:b2:9e:27:dd:07:d6:0e:42:72:3a:
cc:5b:60:0d:01:86:9e:d7:3c:58:24:26:a7:12:fd:b1:cb:8f:
d1:34:03:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:12:42 2025 by rpki-client