Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa
File: 3130332e37312e382e302f32322d3234203d3e203535363632.roa (raw, json)
Hash identifier: yqFry/4LxGJrVDuxbVY2RcAPDTNylJF/fe+W8ljuItE=
Subject key identifier: 47:F0:AE:73:93:4C:F9:B8:E3:CF:9D:9C:EC:35:F0:46:1A:09:D7:7F
Certificate issuer: /CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9
Certificate serial: 3FFE24767B2C343E434E790498B537318E467EF1
Authority key identifier: 87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa
Signing time: Tue 14 May 2024 08:02:08 +0000
ROA not before: Tue 14 May 2024 07:57:08 +0000
ROA not after: Tue 13 May 2025 08:02:08 +0000
asID: 55662
IP address blocks: 103.71.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:fe:24:76:7b:2c:34:3e:43:4e:79:04:98:b5:37:31:8e:46:7e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87CE66700720FB0B31EA1EA3295AF636C6F3B2F9
Validity
Not Before: May 14 07:57:08 2024 GMT
Not After : May 13 08:02:08 2025 GMT
Subject: CN=47F0AE73934CF9B8E3CF9D9CEC35F0461A09D77F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:04:f6:96:69:7d:68:78:7a:99:9b:2c:26:ac:
96:72:fc:a2:4f:bb:46:f8:69:90:68:f1:d9:9b:f3:
84:be:c9:b1:3e:a8:27:81:3e:9d:fc:9a:2b:0d:55:
2d:b0:0a:f4:b6:51:28:9c:a4:35:5f:ef:f7:ad:1b:
20:64:ac:70:c5:bf:a8:37:94:03:81:3b:e0:81:06:
2e:cb:45:be:bc:be:8b:b9:f7:79:ba:fd:0f:0f:f9:
b2:66:cb:06:16:2e:f7:fe:54:2c:a7:5c:e8:c8:84:
ea:7d:b1:d7:be:de:21:52:d1:0d:c6:3b:c7:70:8d:
bf:b6:71:82:49:4d:2f:cb:4c:55:b0:c2:c2:7b:a1:
63:97:59:ac:0c:8d:bc:df:e2:34:21:00:e1:e8:59:
70:1c:fe:4d:86:6e:d2:d5:65:88:6f:da:e0:7f:3c:
2b:81:d9:b4:3d:dc:c1:de:97:fd:15:a1:1c:e8:c5:
d4:06:2a:24:bf:61:2b:b5:2e:3a:86:90:2e:ca:f5:
c1:25:57:8b:bd:71:f1:1e:b3:f1:14:af:e8:19:2b:
70:50:da:85:2e:a2:00:ef:b4:d5:38:b4:d0:d0:48:
b7:f8:1f:ff:a8:e8:c1:19:2a:a9:98:37:7d:01:66:
bb:46:eb:c7:24:1b:60:17:fb:85:55:11:59:d2:b4:
3a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:F0:AE:73:93:4C:F9:B8:E3:CF:9D:9C:EC:35:F0:46:1A:09:D7:7F
X509v3 Authority Key Identifier:
keyid:87:CE:66:70:07:20:FB:0B:31:EA:1E:A3:29:5A:F6:36:C6:F3:B2:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87CE66700720FB0B31EA1EA3295AF636C6F3B2F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/3130332e37312e382e302f32322d3234203d3e203535363632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.71.8.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:a4:35:dd:4f:ef:38:4c:c2:55:45:da:b7:e8:aa:f0:b0:92:
21:7c:f5:09:5f:d2:d4:64:b5:76:ad:aa:ff:28:7a:07:89:73:
f1:57:35:c9:1e:47:34:1a:1a:fe:d5:7f:84:71:1c:96:d6:fd:
1a:98:81:de:96:c5:20:7e:77:14:23:7a:3b:b6:f9:26:87:f0:
05:6c:a3:c6:03:19:c5:ac:39:a8:6c:3a:76:c4:59:8a:ec:c3:
cc:83:ba:9a:9e:1f:ef:18:67:d5:2b:bc:32:18:46:23:30:22:
fe:d0:0a:03:10:95:e7:a1:60:15:c6:d3:c8:f0:4a:7f:8f:a5:
c0:49:b9:9a:17:af:02:ea:97:57:db:8b:f2:c6:2a:ea:2c:b3:
d0:32:43:2f:ad:92:2b:7d:d5:8d:ab:00:2c:cf:4e:64:d7:ec:
8b:e1:17:33:16:00:a3:b0:90:9a:7a:c7:a1:54:9c:3c:76:79:
84:8f:dc:76:c4:d8:4c:44:c1:5c:00:c9:d1:da:ca:31:bb:05:
53:8f:e5:71:36:73:42:66:6b:95:b9:5d:ad:60:e5:df:bd:5e:
5c:c3:95:06:4f:dd:6e:09:ba:e2:8f:41:59:3d:00:f5:59:a5:
e8:95:c6:c8:a2:e4:f3:fa:79:8b:7b:90:84:38:e7:75:c9:9c:
46:00:31:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:30 2025 by rpki-client