Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa
File: 3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa (raw, json)
Hash identifier: i1T+k/Fj5jmrloNHibD0LTah+LErHR2m6DpQ2W7p/XI=
Subject key identifier: A1:89:CA:EF:8F:5D:D6:74:C8:27:8B:8D:DC:E1:18:AB:1E:F3:64:38
Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074
Certificate serial: 76573F7980B7DB9024109CB26BCADBFDCA180FDF
Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa
Signing time: Thu 30 May 2024 12:37:13 +0000
ROA not before: Thu 30 May 2024 12:32:13 +0000
ROA not after: Thu 29 May 2025 12:37:13 +0000
asID: 59149
IP address blocks: 103.254.168.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:57:3f:79:80:b7:db:90:24:10:9c:b2:6b:ca:db:fd:ca:18:0f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074
Validity
Not Before: May 30 12:32:13 2024 GMT
Not After : May 29 12:37:13 2025 GMT
Subject: CN=A189CAEF8F5DD674C8278B8DDCE118AB1EF36438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:99:6e:c2:55:7a:68:4a:92:4a:cf:66:c9:ae:
da:63:1f:a6:07:98:47:80:4e:7a:9f:bc:dd:94:43:
58:ac:8a:a7:d5:e2:e8:09:ea:06:88:a9:78:40:41:
fb:03:6e:0b:0d:93:33:ff:48:4a:c6:e4:ef:69:96:
af:8d:aa:b1:26:16:80:dc:1d:b9:b9:c1:14:fa:31:
70:f8:78:12:f9:73:a4:ed:3c:ca:2b:e8:e1:72:64:
cd:fc:6d:3d:51:6e:56:8c:54:17:61:f2:0d:63:e0:
87:32:96:5f:e7:aa:a5:92:aa:98:50:30:94:a4:46:
83:5b:ec:1d:9f:52:3e:0c:fa:19:b6:7a:f2:88:77:
35:9d:88:4c:03:ba:1a:c6:51:60:1c:6e:52:f8:f9:
8c:18:89:fe:11:0f:9b:c4:1c:28:dd:a4:78:dc:f6:
f9:a5:1f:02:3b:b6:4c:c8:ae:03:41:fa:36:74:57:
4d:87:79:32:d4:73:eb:a2:45:06:26:b5:7c:ef:a8:
97:54:d6:6f:93:27:cb:86:99:5c:a4:b8:ba:dc:f2:
74:08:ae:49:0f:be:af:f1:0c:45:25:19:f9:46:cf:
bf:85:03:08:e8:5d:40:7e:35:bf:0e:e4:0f:50:53:
d1:fc:fd:e0:72:26:3f:70:25:d7:18:93:03:72:02:
6d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:89:CA:EF:8F:5D:D6:74:C8:27:8B:8D:DC:E1:18:AB:1E:F3:64:38
X509v3 Authority Key Identifier:
keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32322d3232203d3e203539313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.254.168.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:aa:56:40:e8:ae:1d:8c:52:b8:3f:f7:60:75:d7:c7:ff:e0:
b1:2c:66:aa:8f:64:89:7e:b2:52:69:d5:b6:af:d9:46:9d:a2:
1f:5a:6c:e3:17:ce:5e:3a:19:9d:9c:32:26:d4:f9:02:79:cb:
26:45:87:5c:67:d5:dc:b7:66:ab:f8:18:99:8b:b9:6d:a1:49:
15:8e:b4:68:c7:b0:68:8b:c7:42:80:29:ba:c7:22:95:f5:15:
e9:04:9a:e3:d1:e5:97:f9:c2:98:b8:8c:e4:53:56:10:18:cc:
f1:71:0b:c6:d5:18:f4:08:0a:56:ee:95:9b:c7:08:b2:77:6e:
9e:b3:55:b5:72:dc:fa:be:d4:14:68:65:11:ca:17:c7:c7:91:
19:96:1b:76:2d:66:c4:e8:21:4a:75:d1:3c:7c:02:50:40:d1:
6e:62:72:e1:65:0d:bb:15:5a:0e:5a:8a:dc:fe:27:03:d2:27:
bd:b2:3c:2d:57:84:27:80:7e:a8:97:3a:0d:9b:5e:0a:cf:32:
8b:67:7b:80:57:6a:3a:c5:45:bd:1a:11:82:50:6e:3c:26:f5:
0f:6e:2c:44:59:4e:37:6c:a2:31:8f:54:b1:de:9e:3b:f5:c6:
7e:a3:11:ec:31:8c:c0:bd:53:55:7b:db:eb:2d:0c:ce:82:b1:
0e:7b:f1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:47:19 2025 by rpki-client