Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/3130332e362e3231342e302f32342d3234203d3e20313331313132.roa
File: 3130332e362e3231342e302f32342d3234203d3e20313331313132.roa (raw, json)
Hash identifier: wxhr1XRJclUw3rXb3dstQr5k0bYeJ5/Xkb24+3+fAGU=
Subject key identifier: 59:53:60:A5:54:7B:9C:BA:D7:29:43:86:4A:D2:32:81:FD:86:80:00
Certificate issuer: /CN=EC62A94970E56AC9FE8B828A542B7EDBA3D116D5
Certificate serial: 32FAA4277A6C9295F7B1FAA5D86DA3312D8020C6
Authority key identifier: EC:62:A9:49:70:E5:6A:C9:FE:8B:82:8A:54:2B:7E:DB:A3:D1:16:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC62A94970E56AC9FE8B828A542B7EDBA3D116D5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/3130332e362e3231342e302f32342d3234203d3e20313331313132.roa
Signing time: Mon 01 Jul 2024 01:05:10 +0000
ROA not before: Mon 01 Jul 2024 01:00:10 +0000
ROA not after: Mon 30 Jun 2025 01:05:10 +0000
asID: 131112
IP address blocks: 103.6.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:fa:a4:27:7a:6c:92:95:f7:b1:fa:a5:d8:6d:a3:31:2d:80:20:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EC62A94970E56AC9FE8B828A542B7EDBA3D116D5
Validity
Not Before: Jul 1 01:00:10 2024 GMT
Not After : Jun 30 01:05:10 2025 GMT
Subject: CN=595360A5547B9CBAD72943864AD23281FD868000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:20:d0:f8:c2:9e:e1:3d:c0:2c:c2:24:6b:56:
4d:7e:4c:f4:2e:3d:b6:0d:0d:17:30:f5:a9:1d:c1:
8f:7c:9f:d4:cc:16:f5:14:68:5f:4a:a9:31:ab:79:
5f:ab:02:5c:3e:0c:35:67:2d:11:50:1e:43:da:d1:
50:6a:b3:2e:c5:bf:6e:60:62:79:c6:43:b4:2a:52:
62:00:fc:2b:aa:bf:87:c2:c8:c3:eb:42:e4:d6:0a:
ba:33:de:71:c8:a3:3b:e2:7f:32:0c:9d:4b:7a:a1:
b6:4e:2d:bb:67:6a:89:b0:f8:1f:38:00:a0:c2:d3:
69:65:94:7d:6f:d1:67:a5:15:bf:7a:a1:51:e9:1f:
88:92:7d:1d:52:d1:96:23:c1:e0:ce:2d:18:15:6e:
96:71:38:f2:be:dd:9f:72:ce:f9:45:2e:93:24:32:
20:96:f8:83:bd:b2:51:f7:9d:e7:98:c7:21:73:d7:
da:8a:64:b6:3b:90:43:16:ae:0f:5f:5b:84:ea:c7:
e4:cd:0f:83:14:a9:60:f6:51:3d:63:95:bf:6f:4c:
ca:ce:02:a0:dc:8c:fd:d0:fa:11:65:c9:07:b7:4f:
bf:f5:98:29:4a:72:32:db:35:20:bd:07:7c:24:b0:
01:5d:6c:c7:8c:c5:8a:d5:d7:d4:eb:57:9e:df:c2:
60:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:53:60:A5:54:7B:9C:BA:D7:29:43:86:4A:D2:32:81:FD:86:80:00
X509v3 Authority Key Identifier:
keyid:EC:62:A9:49:70:E5:6A:C9:FE:8B:82:8A:54:2B:7E:DB:A3:D1:16:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/EC62A94970E56AC9FE8B828A542B7EDBA3D116D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC62A94970E56AC9FE8B828A542B7EDBA3D116D5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/287f8f82-37bb-4983-93ca-5e0670ab02e3/0/3130332e362e3231342e302f32342d3234203d3e20313331313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.6.214.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:46:76:ff:54:30:7c:8c:14:35:61:59:f1:b2:0b:0f:19:cc:
d0:a9:d6:8b:3b:3b:01:ff:87:25:85:d1:7c:ff:ec:ac:c0:13:
ea:bb:58:29:4b:dd:59:e8:e1:6f:af:d2:8c:c2:dd:e1:a7:15:
fa:73:13:d6:74:a1:d0:cb:d6:49:d6:85:7f:99:55:c4:06:e5:
56:a1:ea:d8:dd:80:12:b5:09:39:09:78:ab:76:00:df:7b:8c:
d3:d2:af:bd:9e:aa:62:db:a3:f0:80:0f:6b:c0:8b:6a:24:62:
6e:f1:6e:57:14:1d:9e:0c:57:8d:c1:09:97:91:43:9f:3e:f9:
9e:f8:75:f0:4d:9d:ef:b8:02:09:c5:aa:f0:79:78:33:51:ed:
a1:bb:f0:30:64:c2:c1:d7:fa:17:e8:a6:84:5e:08:96:7f:5d:
8b:e0:8f:da:e4:23:68:10:b6:e2:87:54:4c:a9:ca:35:de:b8:
26:31:39:e1:88:04:22:de:ff:92:0d:37:18:58:f5:b8:5e:36:
69:a6:bf:0d:7e:ca:ea:72:49:28:62:d3:00:30:9f:b0:71:a7:
0d:41:17:e2:a6:cd:94:d8:87:ae:12:0b:7e:e7:13:1f:27:49:
ac:49:4c:9b:25:86:32:f2:8f:3c:e1:f2:17:79:a4:5b:f6:19:
3b:05:67:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:10:03 2025 by rpki-client