Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32342d3234203d3e20313530323730.roa
File: 3130332e33392e36382e302f32342d3234203d3e20313530323730.roa (raw, json)
Hash identifier: +j7LagtiA8DZoXzNOV4ipiXaXeq17wIoKxvndY1v7cs=
Subject key identifier: 34:38:5B:10:88:D1:4B:4F:A7:F3:1F:80:EC:B8:54:BF:24:8C:CB:A3
Certificate issuer: /CN=75890247E178C40DD3F9A5968202F684AEB89D9A
Certificate serial: 1A79A0B2DB5B580A85C3AAF42A0A45B008EECB38
Authority key identifier: 75:89:02:47:E1:78:C4:0D:D3:F9:A5:96:82:02:F6:84:AE:B8:9D:9A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32342d3234203d3e20313530323730.roa
Signing time: Fri 20 Sep 2024 05:00:03 +0000
ROA not before: Fri 20 Sep 2024 04:55:03 +0000
ROA not after: Fri 19 Sep 2025 05:00:03 +0000
asID: 150270
IP address blocks: 103.39.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:79:a0:b2:db:5b:58:0a:85:c3:aa:f4:2a:0a:45:b0:08:ee:cb:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75890247E178C40DD3F9A5968202F684AEB89D9A
Validity
Not Before: Sep 20 04:55:03 2024 GMT
Not After : Sep 19 05:00:03 2025 GMT
Subject: CN=34385B1088D14B4FA7F31F80ECB854BF248CCBA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:88:52:b4:ac:67:ad:25:e9:f4:b2:46:c0:
ea:5e:ce:6e:08:ed:54:4c:43:e3:ce:0b:0f:df:8f:
09:34:58:3b:b3:3c:3a:f0:28:bb:fa:f5:7e:dd:8a:
99:65:82:4c:4f:a4:14:45:21:f9:49:d3:87:fe:b3:
15:e2:8f:7f:45:48:67:77:48:88:db:88:4c:60:0c:
d4:b3:a4:c0:de:3a:a3:c7:40:92:c2:92:d5:4d:c1:
28:18:33:9f:49:62:6d:b9:2a:c3:7f:3d:7c:9e:ca:
4d:88:32:4d:b0:73:ac:3e:59:1d:3e:0f:b2:d1:d4:
47:7f:17:60:9d:a0:18:6f:c2:b3:51:57:27:b3:9e:
2d:f2:a3:66:66:4c:82:7c:76:1e:8f:ba:b7:9a:08:
7f:42:0a:a8:33:0f:b4:f5:10:d3:40:6c:1e:90:0b:
5f:68:fa:98:bb:c6:e4:ac:e4:82:12:56:82:fd:98:
3f:2c:e3:dd:3a:43:51:8a:d5:f9:dc:a5:92:40:1f:
ae:14:fb:84:7f:22:f8:00:ec:0d:2d:83:eb:4f:c0:
fc:cb:8e:ef:99:5d:bb:0c:aa:a6:e8:44:6c:75:c4:
62:7f:d2:57:72:3d:38:51:d5:43:81:46:5c:fe:de:
9d:f3:82:06:08:43:0b:2b:45:a6:f1:60:d2:5c:cc:
50:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:38:5B:10:88:D1:4B:4F:A7:F3:1F:80:EC:B8:54:BF:24:8C:CB:A3
X509v3 Authority Key Identifier:
keyid:75:89:02:47:E1:78:C4:0D:D3:F9:A5:96:82:02:F6:84:AE:B8:9D:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32342d3234203d3e20313530323730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.39.68.0/24
Signature Algorithm: sha256WithRSAEncryption
87:6e:a5:26:ad:0b:db:67:ef:ec:d1:4b:1b:f4:16:cf:10:88:
78:96:ad:01:01:29:2e:b0:d1:ae:50:6d:7d:e9:f8:05:91:ae:
dc:c1:a5:bf:c1:6e:78:05:12:62:9c:fe:ca:49:2c:a2:25:81:
93:18:b6:e4:23:f5:34:88:a5:b6:26:78:c2:ce:a5:e9:b7:86:
34:20:4e:c3:f1:53:a1:b5:0a:77:5d:da:67:0e:47:c3:09:08:
6a:04:b8:ea:c3:33:36:71:ab:e6:35:b4:6d:e8:ed:2b:ce:e9:
2d:c6:5e:44:ec:9f:2d:3b:ca:1a:df:89:62:7d:ff:f8:4a:12:
a9:bb:55:eb:19:25:a3:1a:5f:b0:1f:ea:7a:e2:aa:e1:e0:15:
2a:d0:9f:41:03:1a:03:a1:e2:34:f1:66:cf:25:aa:7c:f4:63:
b2:3a:09:de:44:13:5b:f5:54:9a:e9:8f:c2:b5:49:ec:95:1e:
eb:8c:1f:ac:02:b6:b4:25:51:5a:22:2c:0e:e1:13:cd:c7:c8:
6f:3c:f2:26:ff:e6:a6:90:61:2b:5c:66:1a:14:99:21:36:8a:
ba:3a:28:af:d3:5f:c6:71:37:dc:4d:4b:1d:8b:49:d8:48:d7:
15:bf:4c:00:95:22:1d:7f:61:34:dc:41:be:ca:67:05:6d:22:
a8:72:5e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:01:04 2025 by rpki-client