Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa
File: 3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa (raw, json)
Hash identifier: LgMxY+C8IWBIXMtNC15cz+Yu8Nh834gvigEyj+73bps=
Subject key identifier: 3D:CE:A0:72:C9:A8:00:66:9F:DB:34:AD:91:97:73:F7:19:B0:2F:17
Certificate issuer: /CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F
Certificate serial: 254EFCD9FCC8701B733A94C776C0D4745974A584
Authority key identifier: 97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa
Signing time: Mon 01 Jul 2024 01:03:27 +0000
ROA not before: Mon 01 Jul 2024 00:58:27 +0000
ROA not after: Mon 30 Jun 2025 01:03:27 +0000
asID: 134648
IP address blocks: 103.208.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:4e:fc:d9:fc:c8:70:1b:73:3a:94:c7:76:c0:d4:74:59:74:a5:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F
Validity
Not Before: Jul 1 00:58:27 2024 GMT
Not After : Jun 30 01:03:27 2025 GMT
Subject: CN=3DCEA072C9A800669FDB34AD919773F719B02F17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3f:d2:b1:92:a7:63:49:c1:f9:85:e3:a3:cc:
5f:3f:0d:6b:6b:c9:63:64:d9:c9:15:32:91:73:2e:
56:7a:eb:79:fb:99:5f:c9:d0:28:48:a8:8c:12:d9:
f1:7a:9b:ea:4d:e0:2d:2d:c1:93:e4:7a:33:2d:07:
88:3c:ab:14:62:b1:a2:62:ba:ac:24:2f:ec:29:da:
66:63:57:55:e9:a8:06:8e:38:7c:b4:92:11:c0:bb:
27:ba:1c:af:82:13:1e:2e:00:de:1f:78:61:60:02:
28:03:73:6c:5a:a0:76:fa:df:2c:56:96:66:db:d3:
a7:91:69:56:1a:e7:90:12:1e:34:db:ea:f8:57:ab:
e5:f4:b2:ad:98:ef:ce:20:c8:40:4a:70:dc:2a:01:
fe:c0:2f:35:04:29:a3:70:5a:b2:4d:e5:4d:0b:d2:
1e:3d:51:c7:52:40:bf:34:d6:0a:21:04:26:1d:e3:
5e:38:d5:a1:7a:fd:02:18:c6:f5:e7:e3:d1:9b:14:
91:85:78:1a:1c:89:c1:04:30:3a:17:d6:db:af:4d:
df:9f:9b:32:57:c0:82:38:19:5c:ab:37:db:fa:9e:
b2:99:2e:d9:df:64:56:9e:bf:1a:a1:1d:8d:46:1f:
2c:97:d0:22:86:48:06:de:a6:8d:5e:53:58:33:04:
81:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:CE:A0:72:C9:A8:00:66:9F:DB:34:AD:91:97:73:F7:19:B0:2F:17
X509v3 Authority Key Identifier:
keyid:97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130302e302f32342d3234203d3e20313334363438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.208.100.0/24
Signature Algorithm: sha256WithRSAEncryption
be:40:9a:a5:9d:d7:71:be:1f:b2:e2:25:23:12:9a:32:1c:e9:
7a:c1:a2:f7:93:63:04:bf:74:84:55:2b:db:71:7b:c0:df:8f:
ee:2d:39:ba:af:37:17:94:49:c7:72:a0:46:f3:45:6a:b8:c9:
76:ab:03:50:1b:6b:17:c9:25:a9:cb:a0:a9:a1:97:06:09:ab:
79:ce:06:3c:45:1f:92:98:bd:65:28:93:5e:f9:18:70:9b:63:
02:7a:f8:b7:93:61:b2:33:0c:98:6e:0b:57:69:cd:0b:da:fb:
b6:b4:21:59:9e:25:02:7a:31:f2:f8:b1:df:c5:a4:db:ae:2a:
75:5b:1d:15:b5:59:a9:a6:4c:c7:00:ed:45:a9:65:61:5a:71:
4d:32:1e:7b:68:9d:3a:4a:8e:5e:bf:fb:0a:bf:e1:bc:48:2f:
32:26:0c:a0:ee:ea:d1:c2:8c:c4:8b:b9:5b:26:b5:66:af:ba:
20:c8:ff:ed:61:b4:27:ed:f9:12:79:aa:64:73:91:3a:38:53:
b4:9b:2c:33:8d:3c:f9:e5:e6:c9:45:67:5b:7c:fa:e1:ab:0a:
e7:8b:ee:3f:6c:e1:38:c4:ca:69:ca:c9:c1:0d:49:52:5b:c1:
e9:18:3b:d2:91:14:25:38:e8:5a:79:3a:b6:ea:35:db:9c:b6:
3d:b9:2b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:31:40 2025 by rpki-client