Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa
File: 3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa (raw, json)
Hash identifier: 6AB5bq4lxkpATYu0rKSJdzLFkqGQhdfrOpLg4Tu8L9I=
Subject key identifier: 0D:17:B2:A7:D5:11:BA:A5:07:E4:63:3C:2E:BA:85:1D:32:F6:AA:3F
Certificate issuer: /CN=D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E
Certificate serial: 2DB5F5A6016A8065287DA3630CDF18626104157E
Authority key identifier: D0:D1:DD:92:25:32:1E:1D:4D:1D:2F:63:A7:E0:88:0B:35:F6:83:7E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa
Signing time: Thu 08 Aug 2024 07:01:49 +0000
ROA not before: Thu 08 Aug 2024 06:56:49 +0000
ROA not after: Thu 07 Aug 2025 07:01:49 +0000
asID: 140465
IP address blocks: 103.35.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:b5:f5:a6:01:6a:80:65:28:7d:a3:63:0c:df:18:62:61:04:15:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E
Validity
Not Before: Aug 8 06:56:49 2024 GMT
Not After : Aug 7 07:01:49 2025 GMT
Subject: CN=0D17B2A7D511BAA507E4633C2EBA851D32F6AA3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5a:3e:b3:e4:11:22:20:71:a5:88:e4:3c:ce:
29:82:5d:fe:e4:af:80:bf:12:dd:80:23:a1:5a:ba:
05:08:4f:03:31:0e:a2:b6:18:1e:83:94:e1:a3:38:
c7:ee:11:22:6b:79:d1:34:d1:43:fc:69:8c:8d:17:
3d:80:84:18:76:67:1c:aa:c3:eb:3c:b1:6f:a6:f4:
e3:77:e3:bd:8c:ad:6c:cf:83:27:6f:36:15:ec:1a:
5f:a6:e5:d7:87:66:e5:ed:3b:33:83:d0:57:81:3f:
6e:75:67:f9:88:aa:4a:22:82:90:42:01:8e:0a:9f:
19:1f:55:8e:6b:46:31:71:27:36:5b:84:28:8e:45:
5b:69:63:69:06:c4:f2:1f:b6:fe:80:6e:84:41:25:
18:49:23:eb:e0:ee:06:a6:32:8f:3e:f1:d6:fb:f1:
c6:7a:3c:e6:8c:5d:ca:11:50:e5:ec:9f:ee:35:c8:
b1:0b:86:66:59:43:80:12:9a:f0:51:60:45:81:6b:
55:da:4b:1b:bf:02:08:c6:94:bd:d4:32:01:cb:bb:
93:71:bf:39:e7:c8:7f:72:2e:07:66:63:9e:28:7d:
a1:64:69:40:e0:7c:34:37:7e:0b:c8:09:7e:b9:cb:
1b:0c:23:f9:8e:3d:40:8d:03:5b:8a:aa:ac:4e:c7:
04:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:17:B2:A7:D5:11:BA:A5:07:E4:63:3C:2E:BA:85:1D:32:F6:AA:3F
X509v3 Authority Key Identifier:
keyid:D0:D1:DD:92:25:32:1E:1D:4D:1D:2F:63:A7:E0:88:0B:35:F6:83:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0D1DD9225321E1D4D1D2F63A7E0880B35F6837E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/229329cf-3123-4ce0-a687-0a03cd758738/0/3130332e33352e3135342e302f32342d3234203d3e20313430343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.35.154.0/24
Signature Algorithm: sha256WithRSAEncryption
71:a5:09:66:b8:ec:8a:c7:8a:25:b4:ae:d0:60:69:db:99:74:
14:7c:8a:eb:8b:ef:89:eb:8d:ca:8e:b4:0b:40:0a:f3:b9:4f:
bb:24:39:24:9d:74:91:1a:cd:b2:ab:8c:41:8c:17:82:a0:41:
d0:a9:80:03:e9:a8:b2:7a:56:d2:8f:36:a7:36:58:01:21:09:
59:34:f3:83:b3:96:a4:93:bd:8b:39:2b:00:49:20:be:a6:fd:
ae:ae:52:c1:94:c7:b5:a4:76:aa:bb:9b:9a:a4:9e:5c:1d:a4:
45:74:16:6a:74:7b:57:d8:4b:e0:ea:fc:0c:2c:71:f9:0c:81:
dd:60:46:17:94:d0:27:eb:5b:49:33:15:42:79:6e:ff:f6:f6:
ba:c2:c4:ba:29:ba:b7:3f:83:76:83:bb:b3:3b:48:2f:08:55:
2d:6f:4e:3c:83:d5:28:41:24:cb:05:df:32:18:2b:64:51:ee:
f8:db:1f:ac:d1:d9:a5:b8:cb:b8:dc:3b:4e:b9:0a:87:a5:40:
e9:8b:e3:57:be:a9:fe:3e:97:69:42:fc:95:f8:55:25:f1:21:
ec:47:28:40:98:5d:73:6c:49:c3:75:19:d8:0b:00:f3:a4:5e:
c2:94:38:38:dd:bd:14:75:a7:e4:4f:f2:3a:a2:94:36:15:ee:
79:6d:06:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:07:05 2025 by rpki-client