Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa
File: 3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa (raw, json)
Hash identifier: A88i4sMQ69jvjKSJIbcvM1Qm/xBfQH1X9pjGAAXcOnA=
Subject key identifier: 36:55:0A:D7:C7:98:7E:E0:F2:AA:AC:F3:A2:02:C5:C2:14:25:68:D6
Certificate issuer: /CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F
Certificate serial: 174641ECD116CA79CF92A4FDE51316583075D2C7
Authority key identifier: 97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa
Signing time: Mon 01 Jul 2024 01:03:27 +0000
ROA not before: Mon 01 Jul 2024 00:58:27 +0000
ROA not after: Mon 30 Jun 2025 01:03:27 +0000
asID: 134648
IP address blocks: 103.208.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:46:41:ec:d1:16:ca:79:cf:92:a4:fd:e5:13:16:58:30:75:d2:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97D77F08669FB94E4E99F795519FB61DCAC62C9F
Validity
Not Before: Jul 1 00:58:27 2024 GMT
Not After : Jun 30 01:03:27 2025 GMT
Subject: CN=36550AD7C7987EE0F2AAACF3A202C5C2142568D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3d:ce:c4:5d:93:b0:10:e3:90:2f:fc:1b:ae:
e7:f4:06:3c:a5:8f:1e:c7:25:33:30:3f:d7:4e:5b:
02:ec:cf:4e:3b:8e:00:a0:a4:3a:62:27:67:cf:da:
ad:d8:52:9d:c9:fb:3b:0b:9e:b4:f2:17:09:a7:37:
1a:41:b0:df:8b:f9:51:a6:fa:3f:06:2b:42:15:39:
a1:81:b1:65:81:0e:ca:f0:fd:49:05:f3:e1:24:71:
c2:8d:0c:2e:46:5e:c3:55:f7:b8:95:22:ff:15:59:
f6:b8:b2:04:d0:c6:1a:0d:9d:41:bb:cf:ea:99:1c:
e5:ae:ad:3f:14:94:77:95:f4:9a:08:6d:a9:d9:34:
b1:39:f5:d6:02:e3:8a:39:8d:44:b1:7e:f3:ba:a7:
16:97:48:8d:dd:6c:21:39:db:e4:61:dc:e0:53:f6:
68:df:a1:6c:5d:7c:2b:87:6c:f4:2f:6d:fe:07:0c:
e3:17:d5:c1:d0:e0:dd:05:1e:84:df:c2:f8:74:5d:
19:b8:1a:32:bb:71:a3:92:c5:79:d8:f8:6e:2c:ba:
d9:45:97:2c:7a:a9:10:01:8b:f7:a8:a4:07:6f:95:
f7:75:f3:fc:2b:01:14:d3:23:b9:48:a7:e5:d1:c1:
8b:b9:48:c6:4a:27:c5:99:ba:84:34:94:7b:57:fe:
d2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:55:0A:D7:C7:98:7E:E0:F2:AA:AC:F3:A2:02:C5:C2:14:25:68:D6
X509v3 Authority Key Identifier:
keyid:97:D7:7F:08:66:9F:B9:4E:4E:99:F7:95:51:9F:B6:1D:CA:C6:2C:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/97D77F08669FB94E4E99F795519FB61DCAC62C9F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/97D77F08669FB94E4E99F795519FB61DCAC62C9F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22c69440-8b17-4a68-a0fa-66159e2162e0/0/3130332e3230382e3130332e302f32342d3234203d3e20313334363438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.208.103.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:41:73:4b:2a:30:88:38:ec:07:cc:1f:b6:af:05:d6:a6:a1:
a7:86:30:24:df:01:cc:51:5b:7d:ec:dd:cc:ae:3e:ed:69:da:
84:16:91:d7:70:2c:4a:4d:95:68:05:ef:0c:b9:94:66:82:5a:
65:0b:a8:7a:13:3e:71:3a:1b:56:09:08:8e:bb:a4:12:5c:8c:
18:fc:d4:7c:3d:d6:56:1a:89:e1:26:83:6d:a0:bb:ad:60:f2:
68:9a:a4:b3:cf:ca:7d:b5:4e:cc:72:2d:18:ac:36:b7:1c:b6:
bb:ab:90:97:7a:a9:cd:7a:a9:af:96:24:d2:e7:8b:b9:19:75:
a1:4e:d6:54:94:fb:f2:33:b2:41:e3:5e:bf:08:7c:07:cb:a6:
03:00:0b:34:40:af:0b:49:f9:d4:37:fd:d1:c0:a0:d5:36:cb:
af:24:aa:e1:e7:1a:da:03:a9:a3:22:83:19:40:b3:0b:71:7d:
ff:c1:b0:1e:ff:5a:b1:13:72:01:7b:49:96:48:f4:00:c2:14:
f6:5e:61:d1:30:57:a1:55:4f:e7:83:6b:d3:8b:31:6f:2c:fc:
81:a3:9e:e9:1e:59:eb:bb:cf:65:62:a9:5a:bc:6a:76:13:09:
5a:14:b9:2d:be:19:ae:c7:09:cb:6b:ce:11:06:61:61:3d:d1:
c0:a4:cc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:32:13 2025 by rpki-client