Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa
File: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (raw, json)
Hash identifier: CnfRbobaPk9MDY310cd2407p48KXM88AEI8ZWvg/uB0=
Subject key identifier: F5:99:7F:B2:27:13:66:26:E4:D8:01:3F:79:4B:7D:A8:69:50:32:35
Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9
Certificate serial: 405794F34F1FF0C7EB56651D018AE317AC11743E
Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa
Signing time: Thu 12 Sep 2024 12:00:02 +0000
ROA not before: Thu 12 Sep 2024 11:55:02 +0000
ROA not after: Thu 11 Sep 2025 12:00:02 +0000
asID: 141137
IP address blocks: 103.158.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:57:94:f3:4f:1f:f0:c7:eb:56:65:1d:01:8a:e3:17:ac:11:74:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9
Validity
Not Before: Sep 12 11:55:02 2024 GMT
Not After : Sep 11 12:00:02 2025 GMT
Subject: CN=F5997FB227136626E4D8013F794B7DA869503235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b2:49:1e:82:b5:9b:97:0e:5f:fd:65:dd:5f:
b0:04:99:98:67:07:b4:e2:f1:28:40:03:5a:e2:23:
c4:b3:99:2c:a6:04:eb:39:2f:94:5a:da:0b:f8:5f:
1d:a3:02:d3:ca:b6:04:76:18:9c:00:5f:5a:83:88:
d2:c3:e4:73:3d:50:ea:39:db:f6:85:59:ea:29:63:
ff:33:f3:f2:d1:f2:10:f6:46:d6:19:c9:9d:ff:3f:
73:17:2d:50:c3:c3:18:54:35:f9:99:64:b5:dc:a1:
97:7d:aa:3d:3f:00:ae:55:84:7d:40:99:dc:1e:f2:
d1:89:2f:f8:42:e6:09:81:50:ef:61:cf:fc:9b:09:
c8:ca:cd:01:a4:76:b0:21:85:71:e2:9a:46:18:34:
25:7f:d5:1a:13:53:05:37:f6:b5:40:46:8b:77:ef:
70:5e:6e:72:ee:de:f7:40:68:db:ee:64:cd:b5:77:
2c:e0:93:98:09:5c:66:d7:5a:32:59:54:24:ba:11:
b6:bc:fa:8f:b5:ee:2a:26:fc:93:d5:b8:de:f8:55:
44:cc:7b:d4:56:aa:1f:69:7f:53:c9:ed:19:f2:9f:
ad:28:80:eb:02:d5:93:83:a4:60:f4:03:a0:75:51:
7e:77:ad:e4:08:eb:fd:c3:0e:ff:53:79:9d:87:f2:
31:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:99:7F:B2:27:13:66:26:E4:D8:01:3F:79:4B:7D:A8:69:50:32:35
X509v3 Authority Key Identifier:
keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.253.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:54:09:20:96:33:75:dd:5a:78:3c:14:42:e4:d1:b9:b8:bd:
01:7e:d6:1b:fb:e4:c3:8c:df:32:a0:e9:0a:b1:0e:60:70:f0:
16:01:21:37:cb:4f:5b:2b:7d:42:f4:2a:e2:5b:d9:8d:3a:a0:
3b:89:25:dd:3d:29:70:0f:0c:09:d6:c1:89:81:d1:e4:c7:b5:
56:af:47:be:6f:e4:2e:d3:fb:d0:ba:77:81:68:f9:5a:ef:b9:
29:43:d0:42:16:19:fb:7d:99:e5:2d:b1:ae:45:73:fb:bf:5a:
d8:aa:2e:18:7d:fc:a1:93:bf:26:fb:fa:4e:cd:55:93:7c:69:
e5:1d:50:f1:eb:30:5a:2c:75:15:4a:86:44:2d:89:3a:66:f0:
aa:3c:8b:3d:7c:32:5a:47:da:d8:c3:78:1a:5d:98:53:f4:f1:
e1:90:2e:e1:1e:89:21:ca:83:f5:7c:80:d3:5f:7e:04:30:fa:
6e:3a:34:42:17:2d:ad:ad:1e:7b:da:4b:08:4c:c9:75:c1:fc:
72:ee:33:c8:bc:57:f9:99:51:e6:ff:39:64:6f:65:cf:3a:4d:
a8:4c:09:0c:5a:6b:c1:61:ac:46:13:64:76:f2:85:16:09:02:
b0:2a:61:4b:92:68:9e:d1:01:24:e7:9f:93:3b:a8:3a:1c:ab:
2f:9b:59:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:31 2025 by rpki-client