Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa
File: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (raw, json)
Hash identifier: 3Mmpn/Dag2AKulQ+C8mVDMduU1Rnc8mOjy91rhhCe8M=
Subject key identifier: 82:78:62:35:48:A5:71:F6:92:30:60:BF:B3:85:12:8F:0D:C1:24:4D
Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9
Certificate serial: 54DF0466AF2AA7C20AD8E28E8646E12A10648E75
Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa
Signing time: Thu 12 Sep 2024 12:00:03 +0000
ROA not before: Thu 12 Sep 2024 11:55:03 +0000
ROA not after: Thu 11 Sep 2025 12:00:03 +0000
asID: 141137
IP address blocks: 103.158.252.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:df:04:66:af:2a:a7:c2:0a:d8:e2:8e:86:46:e1:2a:10:64:8e:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9
Validity
Not Before: Sep 12 11:55:03 2024 GMT
Not After : Sep 11 12:00:03 2025 GMT
Subject: CN=8278623548A571F6923060BFB385128F0DC1244D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0b:31:3b:a5:13:d0:59:cc:75:9a:f8:53:aa:
3d:3f:9a:a2:31:b4:f3:62:97:b4:c6:79:3a:4f:e8:
23:a6:6e:6c:7e:fc:25:57:f6:09:54:28:5c:d6:6d:
d6:67:73:d4:90:4f:f5:a4:73:4b:7e:c9:dd:9c:62:
f4:2f:72:1f:20:24:d2:c2:5a:b1:4f:36:97:de:8f:
b1:2a:e6:22:5f:8e:0e:97:1e:77:7e:36:e0:11:40:
48:8b:4c:5c:68:b6:f9:61:39:d9:ac:8e:ea:cf:1c:
4b:94:ac:f1:41:09:4c:4e:be:58:dd:c0:62:82:b1:
23:8a:39:b6:b0:4b:93:3b:5a:98:6f:7d:c6:be:ef:
d4:93:73:96:2a:a8:8a:5f:13:6d:95:8a:94:64:0d:
e9:9a:eb:b1:b4:df:cd:d0:54:dd:b1:79:2d:ca:10:
ea:d0:8c:4a:05:b3:90:94:61:14:3b:e6:86:9d:11:
94:b7:3d:00:92:f5:67:5c:64:5b:7b:43:e1:ef:6f:
f4:d4:62:01:b7:b2:aa:6b:05:5a:46:e4:b1:3f:90:
35:3f:5b:17:7a:6b:9e:82:ed:8f:e5:26:9c:9c:99:
25:25:de:ae:84:c3:36:98:9d:a4:a4:0e:93:2c:ea:
de:a7:a3:22:63:13:9a:fe:a1:32:64:42:b5:fa:fa:
57:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:78:62:35:48:A5:71:F6:92:30:60:BF:B3:85:12:8F:0D:C1:24:4D
X509v3 Authority Key Identifier:
keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.252.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:c9:c3:14:00:53:13:64:48:1a:fe:cd:c5:d8:60:20:e6:5a:
16:65:67:3b:01:85:9c:9c:45:0e:1d:64:fb:fd:71:49:98:e3:
cd:a8:ca:a0:cd:7e:1a:cf:e0:e5:61:cc:57:93:5e:f9:6e:2f:
de:be:35:d1:c4:66:c6:da:ed:02:ce:5b:bf:4e:1a:34:61:bf:
f7:10:c3:fb:70:29:59:36:e0:d8:06:f5:4c:0a:3e:91:11:1e:
07:82:b3:a8:d7:3a:88:2b:81:11:39:c1:23:70:36:9b:0d:5b:
15:7e:0b:c6:d2:7d:6a:8b:48:7b:17:e6:de:6a:52:c3:fc:53:
97:60:d0:48:5d:56:62:60:26:18:f3:15:d7:b8:5a:61:66:fa:
2d:34:81:6c:68:7a:11:22:a3:b8:db:87:3d:41:c9:ab:c7:a5:
95:1f:dc:79:a0:70:77:d3:3d:cb:76:ce:9d:76:fd:0c:90:bf:
da:cf:71:32:a1:5f:72:47:6a:3b:2b:f2:ed:a0:26:67:9a:f1:
97:db:4d:28:86:4f:2f:8e:91:50:79:68:53:ac:b5:29:6a:07:
d8:8c:7f:54:0c:8f:88:88:f2:02:e1:23:6b:99:c0:97:b3:94:
92:a8:a2:63:53:bf:0a:09:b0:d0:12:3a:13:62:f5:cb:0b:95:
76:52:fa:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:06 2025 by rpki-client