Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/3130332e31392e3135362e302f32342d3234203d3e20313530323334.roa
File: 3130332e31392e3135362e302f32342d3234203d3e20313530323334.roa (raw, json)
Hash identifier: pMyTmTZ5D3XZDU7dj1ONiHT78+3tHTZkrG2AM+igXrc=
Subject key identifier: 01:78:B6:76:2A:44:47:FE:92:24:7C:02:4D:49:FC:3F:8D:E8:5E:DC
Certificate issuer: /CN=1B42B2BB5674F23468744614CDF9B0B00D510190
Certificate serial: 50CF9067556FB95CEC0E7BD951B3A22D98C6EC83
Authority key identifier: 1B:42:B2:BB:56:74:F2:34:68:74:46:14:CD:F9:B0:B0:0D:51:01:90
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1B42B2BB5674F23468744614CDF9B0B00D510190.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/3130332e31392e3135362e302f32342d3234203d3e20313530323334.roa
Signing time: Tue 17 Sep 2024 13:00:01 +0000
ROA not before: Tue 17 Sep 2024 12:55:01 +0000
ROA not after: Tue 16 Sep 2025 13:00:01 +0000
asID: 150234
IP address blocks: 103.19.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:cf:90:67:55:6f:b9:5c:ec:0e:7b:d9:51:b3:a2:2d:98:c6:ec:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B42B2BB5674F23468744614CDF9B0B00D510190
Validity
Not Before: Sep 17 12:55:01 2024 GMT
Not After : Sep 16 13:00:01 2025 GMT
Subject: CN=0178B6762A4447FE92247C024D49FC3F8DE85EDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8a:77:79:cb:49:f1:d4:f5:6d:30:38:b6:69:
76:59:e9:78:23:8f:d5:21:b7:c7:f0:37:11:cd:f3:
e1:c8:bc:d5:ae:95:6f:99:00:b8:64:2c:48:80:3b:
f4:0f:d0:f3:e9:53:c3:3c:6c:a8:6a:fa:b8:3f:e4:
03:60:bf:be:16:bd:b9:cd:eb:02:ff:c7:ad:26:30:
27:2d:d0:64:f2:d0:c5:29:79:ea:01:b9:57:2c:ba:
87:09:1c:17:a2:2d:3f:6f:7b:41:85:65:85:70:5b:
3c:d5:a5:27:35:d6:bb:f4:68:15:69:96:28:c7:f8:
7f:62:5d:59:49:b9:9c:99:fb:a7:d5:7c:be:88:f0:
8d:93:5e:c8:a2:3d:cd:b1:2c:f4:73:e5:49:11:24:
eb:41:86:92:8e:be:71:86:18:01:c5:36:89:3b:09:
64:26:35:72:23:1c:3f:98:6d:69:bc:32:08:c9:f7:
8f:e5:63:3c:8c:79:c5:15:f5:64:84:6c:1e:27:37:
24:14:c6:4d:8e:aa:b5:aa:c8:84:78:e5:f9:56:46:
7a:dd:99:7d:46:9a:bf:fb:8a:58:e9:d9:4b:25:96:
1f:b5:81:50:61:b3:4c:30:58:12:78:87:58:95:75:
4e:38:17:cb:95:1f:be:cd:20:da:1b:57:60:9c:4a:
6f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:78:B6:76:2A:44:47:FE:92:24:7C:02:4D:49:FC:3F:8D:E8:5E:DC
X509v3 Authority Key Identifier:
keyid:1B:42:B2:BB:56:74:F2:34:68:74:46:14:CD:F9:B0:B0:0D:51:01:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/1B42B2BB5674F23468744614CDF9B0B00D510190.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1B42B2BB5674F23468744614CDF9B0B00D510190.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2144252b-d30e-4bdc-832f-b38b05c7a035/0/3130332e31392e3135362e302f32342d3234203d3e20313530323334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.19.156.0/24
Signature Algorithm: sha256WithRSAEncryption
68:e4:39:8a:d5:29:03:6f:95:24:31:e9:76:9e:68:ba:cd:53:
e3:50:8e:c4:cd:6b:6e:12:3b:5f:44:ab:cb:31:76:23:8b:2c:
29:e4:87:89:83:ed:46:8c:9d:64:9f:28:b1:ae:bf:62:cf:0f:
0a:5b:d1:2c:84:b3:a9:69:06:99:8f:bb:c5:2b:ec:33:b2:88:
c1:e6:e3:82:82:92:29:d9:e8:e6:40:07:d4:43:f3:a7:e4:8a:
7f:82:88:5d:77:90:ac:44:8e:73:37:53:6f:c5:ed:fc:1c:61:
1b:f9:63:f9:2a:b8:89:98:c3:57:f6:a4:c3:c6:e6:0b:4d:d8:
e4:db:35:2f:a5:71:71:39:36:f9:50:69:1e:2e:4c:3f:39:3c:
a7:c2:f5:16:46:4f:91:29:49:de:b2:28:49:c1:d9:6f:28:d7:
dd:b0:87:94:68:d1:eb:0a:a1:4f:ba:05:12:af:17:cb:96:85:
25:cb:fa:30:ac:e1:46:71:a4:93:38:15:87:ba:c8:12:77:6d:
4c:3f:96:ae:a8:4a:47:54:64:7d:e0:1d:18:3b:10:8c:af:d2:
40:39:09:14:39:cb:cf:ec:f9:22:06:07:b0:b5:b5:fd:c6:d8:
59:29:89:47:02:45:1a:29:e8:81:f5:1f:7c:5c:0a:0d:ec:ef:
58:a2:c3:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:06 2025 by rpki-client