Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/28d6ca9b-584f-40f1-bd61-1858e7eba3ea/0/3130332e39342e3234382e302f32332d3234203d3e203633383738.roa
File: 3130332e39342e3234382e302f32332d3234203d3e203633383738.roa (raw, json)
Hash identifier: I5XFMLy1652sQiuP2NYe3N0DFH8ezt6dmCznChXGVV4=
Subject key identifier: 5A:B6:B9:08:8A:87:0D:5E:08:BA:E7:76:AD:5E:DC:41:E9:40:64:D9
Certificate issuer: /CN=C629ACA160F978E31BC564E62FF22DBA802D0E87
Certificate serial: 58345D2D4D5A376FFDD37DD26D34B9CAD06F6378
Authority key identifier: C6:29:AC:A1:60:F9:78:E3:1B:C5:64:E6:2F:F2:2D:BA:80:2D:0E:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C629ACA160F978E31BC564E62FF22DBA802D0E87.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/28d6ca9b-584f-40f1-bd61-1858e7eba3ea/0/3130332e39342e3234382e302f32332d3234203d3e203633383738.roa
Signing time: Thu 09 Jan 2025 05:00:02 +0000
ROA not before: Thu 09 Jan 2025 04:55:02 +0000
ROA not after: Thu 08 Jan 2026 05:00:02 +0000
asID: 63878
IP address blocks: 103.94.248.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:34:5d:2d:4d:5a:37:6f:fd:d3:7d:d2:6d:34:b9:ca:d0:6f:63:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C629ACA160F978E31BC564E62FF22DBA802D0E87
Validity
Not Before: Jan 9 04:55:02 2025 GMT
Not After : Jan 8 05:00:02 2026 GMT
Subject: CN=5AB6B9088A870D5E08BAE776AD5EDC41E94064D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:dc:67:15:2e:41:1b:60:63:37:f5:d4:ad:ee:
9a:33:98:28:57:49:f9:f3:6f:33:d6:2e:c8:be:6e:
08:9c:8c:70:55:d0:e3:79:d9:2e:94:72:77:ad:62:
53:2b:62:90:38:30:c7:ca:af:82:34:3f:1e:86:b2:
a6:8c:b9:7e:22:37:a4:fc:30:de:d1:72:0c:8e:e8:
7c:42:5b:c7:29:7d:e4:4a:96:32:03:94:8e:f3:bd:
a5:2b:ae:fc:3f:24:b4:0c:e8:61:7d:e6:33:81:a2:
3d:37:b5:06:cf:f9:73:da:29:11:7f:00:51:3e:2a:
eb:f1:c7:6a:77:f8:f9:d2:bb:12:13:c0:2f:5d:67:
ac:cf:84:bc:f6:aa:55:28:0e:93:f7:8b:25:61:0e:
81:8e:c5:a9:4e:2a:48:19:dc:b1:be:ee:ee:c3:70:
79:a2:1c:db:27:9d:46:59:a7:09:35:1d:80:26:a4:
c7:20:eb:c9:5a:f9:92:c5:3c:a4:09:14:c5:fa:ff:
24:03:66:eb:e5:44:f0:9c:d9:da:32:81:8b:c4:44:
59:39:99:d2:68:d3:4a:bd:1a:1c:4a:6f:01:c5:cd:
69:3c:00:2a:1c:b3:b2:ed:c0:b0:6b:e9:d2:87:e1:
03:8c:26:cc:24:88:78:80:d3:ec:b5:1d:9e:5c:11:
fa:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B6:B9:08:8A:87:0D:5E:08:BA:E7:76:AD:5E:DC:41:E9:40:64:D9
X509v3 Authority Key Identifier:
keyid:C6:29:AC:A1:60:F9:78:E3:1B:C5:64:E6:2F:F2:2D:BA:80:2D:0E:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/28d6ca9b-584f-40f1-bd61-1858e7eba3ea/0/C629ACA160F978E31BC564E62FF22DBA802D0E87.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C629ACA160F978E31BC564E62FF22DBA802D0E87.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28d6ca9b-584f-40f1-bd61-1858e7eba3ea/0/3130332e39342e3234382e302f32332d3234203d3e203633383738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.94.248.0/23
Signature Algorithm: sha256WithRSAEncryption
37:c7:87:2b:92:4e:27:eb:e9:5a:1d:0c:c3:9a:53:29:15:cf:
39:09:15:a0:2a:68:0f:75:4f:26:29:09:05:09:39:7b:ed:2b:
0e:58:fc:40:b3:13:c5:08:c5:f0:76:0c:51:3a:aa:8c:38:e2:
ba:b6:4e:86:af:d4:1b:15:af:16:3c:d3:64:c3:be:86:37:91:
6d:e8:38:bf:db:79:16:37:31:77:6d:bb:61:d9:bd:b7:a7:57:
fe:8d:57:ab:f5:3f:4b:fc:59:4e:32:5c:38:d0:bf:b5:4a:dd:
8c:a7:8d:19:10:13:02:fa:7c:40:12:69:19:2c:36:e7:2c:8d:
0a:30:62:98:1d:84:ff:4c:12:25:aa:84:bc:1b:9c:f8:33:c8:
23:8f:09:20:a7:ba:a1:71:97:23:a7:4b:55:58:d9:76:e4:0e:
ed:ef:d1:41:63:dc:ff:66:59:c1:7b:68:52:32:53:4a:fe:0b:
e2:a7:c7:82:d5:02:1f:a9:86:14:d2:89:96:da:e4:3b:91:74:
51:05:47:b0:93:d4:b5:d6:5d:74:c8:78:e6:14:02:ae:d1:a9:
c8:c0:59:0c:4d:4f:77:c4:ad:07:fb:bf:55:0f:56:4c:5f:3b:
b1:86:9b:a5:77:6d:e9:11:f9:a4:42:76:72:d2:56:d6:f5:1a:
64:1d:e4:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:06:12 2025 by rpki-client