Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa
File: 3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa (raw, json)
Hash identifier: K6IPwg5vPS17ImLidsJLbGqSOx5ucj2gTrepRe+aavU=
Subject key identifier: 52:E6:F8:F9:4B:EF:75:3A:3E:16:F0:63:A6:5E:26:A0:92:09:3B:CC
Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C
Certificate serial: 24B17F971630CB18000504B52EEBF67149E3A019
Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa
Signing time: Mon 01 Jul 2024 01:02:46 +0000
ROA not before: Mon 01 Jul 2024 00:57:46 +0000
ROA not after: Mon 30 Jun 2025 01:02:46 +0000
asID: 133815
IP address blocks: 103.130.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:b1:7f:97:16:30:cb:18:00:05:04:b5:2e:eb:f6:71:49:e3:a0:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C
Validity
Not Before: Jul 1 00:57:46 2024 GMT
Not After : Jun 30 01:02:46 2025 GMT
Subject: CN=52E6F8F94BEF753A3E16F063A65E26A092093BCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:0c:94:83:80:97:63:01:b3:e6:e0:a4:e6:2c:
78:8d:75:21:fc:ee:b0:ce:b8:59:1c:90:8b:ba:7c:
6c:80:5d:34:16:a8:6f:44:8a:5c:68:75:f7:84:a6:
1e:f0:48:21:9a:0f:bf:2f:e8:26:b0:8c:10:ba:94:
07:06:02:92:8a:ed:43:a1:c6:95:05:ae:15:e3:d2:
df:39:5e:1a:db:a0:d8:f8:2b:b1:ce:08:68:75:d7:
f7:b3:40:66:75:6c:2a:74:c1:da:d9:b9:d3:a5:11:
13:8d:9f:1d:10:8e:0c:2a:33:3d:b2:50:74:b2:a3:
ce:c6:0e:a6:81:9b:6f:56:58:80:48:be:62:bd:45:
da:84:a3:ef:ce:00:32:b7:ce:ec:61:44:33:ce:82:
0a:fa:70:b0:a8:9c:23:9d:85:f7:e2:c0:f6:8c:bf:
31:91:be:df:ba:3a:ac:12:f6:32:ba:50:4e:e0:7a:
0b:f9:d9:45:27:fb:66:8b:85:95:eb:6f:9a:60:9f:
a2:10:c1:b4:ca:ed:ec:31:21:b1:b4:16:7a:d1:8b:
ed:f0:f6:6a:63:73:eb:fc:53:43:7c:af:28:1a:81:
fa:e5:8f:6e:79:59:e6:f4:d4:bc:d1:6d:1c:7c:b1:
d5:bc:54:da:21:da:63:98:86:97:b0:67:d7:3a:79:
58:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E6:F8:F9:4B:EF:75:3A:3E:16:F0:63:A6:5E:26:A0:92:09:3B:CC
X509v3 Authority Key Identifier:
keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.130.136.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:df:a3:11:b0:a0:77:27:bb:4d:35:3e:0c:57:95:ff:a1:4f:
d2:1c:ac:b8:42:7b:a3:58:f8:36:cc:a3:34:7b:d5:bc:f9:39:
23:92:36:3b:5d:8d:c7:2f:40:95:b8:38:37:41:9c:f6:4c:af:
94:d0:7c:d5:92:5f:5b:54:70:27:4b:fb:84:00:28:eb:41:6c:
26:bc:c4:f4:ba:06:a3:e8:b3:4a:d7:fe:2f:88:9c:da:c3:88:
19:35:6f:69:af:a1:0c:f3:e9:3f:fa:20:55:e7:c2:4d:27:30:
f4:c3:e8:08:94:e9:6a:93:7e:64:bc:04:e3:dc:d7:1e:9e:2c:
30:33:b3:6d:1d:13:4f:f4:a0:fb:05:38:7f:93:3a:3c:74:ff:
b6:39:41:d8:4c:f5:b2:d9:f3:bb:59:43:64:fa:51:99:a8:2f:
80:f9:c1:93:79:88:82:cb:a5:7a:da:a0:08:c1:e4:73:e9:8c:
4a:a9:76:fe:e3:ea:a0:07:f1:8b:79:d5:f1:e3:b4:43:62:75:
6e:44:64:57:35:c7:c2:49:d9:dc:58:1e:eb:ca:0e:ba:fc:1b:
a1:bb:ba:c5:91:42:34:71:3d:03:a5:73:e8:da:2b:02:07:72:
c9:2d:23:19:52:ea:97:36:d5:7d:1d:b5:d7:a5:c7:bd:e8:d8:
59:25:c4:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:59:23 2025 by rpki-client