Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/3130332e3134372e37322e302f32332d3234203d3e20313339393531.roa
File: 3130332e3134372e37322e302f32332d3234203d3e20313339393531.roa (raw, json)
Hash identifier: VrargDlMOcqR57wnlmh9egvUgy55RdV/PdmVKUweO1M=
Subject key identifier: 03:F2:D0:B1:19:BC:25:85:BA:36:98:12:E3:F0:8C:34:AD:29:1A:77
Certificate issuer: /CN=7D52713C0D26932DC1EECC75CB0C11784C9B0592
Certificate serial: 02F966BC62497949B19CD1D3273B21616B2419D6
Authority key identifier: 7D:52:71:3C:0D:26:93:2D:C1:EE:CC:75:CB:0C:11:78:4C:9B:05:92
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D52713C0D26932DC1EECC75CB0C11784C9B0592.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/3130332e3134372e37322e302f32332d3234203d3e20313339393531.roa
Signing time: Fri 27 Sep 2024 04:00:01 +0000
ROA not before: Fri 27 Sep 2024 03:55:01 +0000
ROA not after: Fri 26 Sep 2025 04:00:01 +0000
asID: 139951
IP address blocks: 103.147.72.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:f9:66:bc:62:49:79:49:b1:9c:d1:d3:27:3b:21:61:6b:24:19:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D52713C0D26932DC1EECC75CB0C11784C9B0592
Validity
Not Before: Sep 27 03:55:01 2024 GMT
Not After : Sep 26 04:00:01 2025 GMT
Subject: CN=03F2D0B119BC2585BA369812E3F08C34AD291A77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a2:9b:98:33:14:be:07:ff:12:ba:07:b0:98:
23:50:1a:ae:f2:3f:0f:90:cd:b9:c2:2a:b1:ff:5d:
08:f5:63:6e:d1:16:92:f5:c8:4e:23:53:df:2c:89:
ce:93:ff:89:12:c3:15:52:fc:7b:94:d1:ce:4d:a5:
d2:86:8d:17:b7:c4:91:c6:16:f9:43:4b:0d:b1:cc:
8b:7f:4b:50:14:bd:ef:7e:67:c4:01:86:f4:c2:c5:
60:fa:09:e0:7f:30:8b:63:4c:39:b5:86:a0:1d:3b:
dc:01:b8:25:e1:37:45:c5:80:c0:07:7d:91:a0:b8:
ba:37:bc:39:aa:c3:5c:84:02:42:a4:94:0b:e6:fc:
e5:a3:6f:38:5e:cb:ba:aa:b5:2e:85:91:90:67:16:
69:58:c9:2b:7f:72:85:03:d5:ec:82:a6:71:bf:62:
55:0b:07:06:73:80:01:0a:ba:ac:74:f1:34:6f:de:
fa:1d:35:92:c1:d2:5d:8f:e4:95:87:20:8f:a5:99:
37:22:e6:b7:56:fc:f5:36:65:12:4e:27:96:62:bb:
c9:4b:39:c1:b2:ad:9c:17:0b:18:18:6c:87:19:06:
f4:b3:f0:d0:37:97:d2:ab:4d:de:6c:c7:af:fd:6b:
2e:cc:12:31:be:8e:96:d4:42:6c:71:05:1b:3a:a1:
97:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F2:D0:B1:19:BC:25:85:BA:36:98:12:E3:F0:8C:34:AD:29:1A:77
X509v3 Authority Key Identifier:
keyid:7D:52:71:3C:0D:26:93:2D:C1:EE:CC:75:CB:0C:11:78:4C:9B:05:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/7D52713C0D26932DC1EECC75CB0C11784C9B0592.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D52713C0D26932DC1EECC75CB0C11784C9B0592.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26652000-1f2c-4791-81b4-d4457cef1270/0/3130332e3134372e37322e302f32332d3234203d3e20313339393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.72.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:37:fa:11:3c:d7:d0:34:d8:73:12:7b:bb:ad:5f:56:81:44:
79:03:fa:4d:ae:d9:fd:80:9e:c5:4a:87:76:34:5f:66:20:16:
32:fe:77:8a:29:25:6f:17:71:72:4e:f0:b4:ba:11:92:69:31:
66:8c:5a:24:d9:89:02:a6:f2:3e:ce:7d:ee:89:4c:98:c2:3d:
d7:9e:96:ad:53:56:d8:b6:34:2e:a1:de:a3:b8:98:65:ac:6f:
84:ba:49:87:0b:52:dd:34:c9:a9:77:ee:31:17:b0:be:ee:9b:
d4:1f:4a:c5:1e:bc:c1:8d:a8:66:e0:14:3e:57:1d:e8:98:b6:
a2:72:a6:ac:01:a5:81:29:93:4b:69:e3:a4:78:d9:8e:a6:a2:
85:b1:20:5f:20:b5:b5:ab:ba:0d:2c:b6:5f:95:e6:4a:b9:e4:
e6:52:03:2e:79:dc:86:45:37:31:2d:98:41:ce:dd:28:8e:5c:
2b:64:d0:de:c5:fa:85:49:6c:79:11:1e:1a:9b:7c:5f:ea:cf:
66:12:b9:c4:7a:96:98:13:d0:3f:89:36:25:3d:03:e9:14:07:
da:9e:73:c9:64:92:cb:e6:d5:d0:85:b3:25:47:c9:d9:ee:a3:
10:59:15:0d:b8:69:5c:0f:86:ac:eb:8f:47:6d:d0:56:d0:f0:
05:c5:ce:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:48:59 2025 by rpki-client