Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa
File: 3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa (raw, json)
Hash identifier: 9eTzVSPH+omA3cV5yyIW0hWjWwQg4yB4G18BN8FCyjg=
Subject key identifier: 1D:85:42:A0:7C:74:A5:DA:94:C1:31:06:EF:9F:85:56:4E:F3:C9:53
Certificate issuer: /CN=798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5
Certificate serial: 59981C89EAC41CEA46A4DEE61FA49E4E8ADEEA40
Authority key identifier: 79:89:44:F7:FB:C5:7D:5C:FB:F5:F1:BB:68:0F:2D:73:CA:D2:6D:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa
Signing time: Wed 12 Jun 2024 15:42:35 +0000
ROA not before: Wed 12 Jun 2024 15:37:35 +0000
ROA not after: Wed 11 Jun 2025 15:42:35 +0000
asID: 149976
IP address blocks: 103.157.62.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:98:1c:89:ea:c4:1c:ea:46:a4:de:e6:1f:a4:9e:4e:8a:de:ea:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5
Validity
Not Before: Jun 12 15:37:35 2024 GMT
Not After : Jun 11 15:42:35 2025 GMT
Subject: CN=1D8542A07C74A5DA94C13106EF9F85564EF3C953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:6c:27:db:18:85:56:cb:8c:5b:21:35:24:
87:a4:be:8d:a6:14:32:36:11:e5:c9:78:20:7c:ea:
81:98:ea:a3:b0:40:e1:63:c7:42:41:6f:f6:1c:1c:
4c:43:15:fc:bc:0b:b1:8d:81:19:42:7b:7f:08:f4:
2c:77:69:33:e7:66:1b:e6:f8:1a:a7:2b:50:a5:77:
3a:1a:27:f6:07:5e:43:76:8c:ed:1c:5a:5f:e3:9b:
ef:2c:59:df:68:53:7d:93:b7:55:2e:0f:98:8f:1d:
b5:07:a6:02:9b:09:84:18:64:80:17:c1:8d:5a:b3:
36:3a:30:7a:ae:fd:17:24:fd:f7:e6:68:0f:f3:54:
2a:5c:f9:34:10:cb:89:e6:3f:b4:f9:51:ef:8e:6d:
da:c1:84:a2:98:35:9e:b7:ee:31:42:64:e9:a5:84:
cf:98:aa:5b:8d:0b:bc:11:04:37:f6:7a:ec:bf:5a:
e4:53:0f:c8:b4:d9:5f:de:76:52:9f:a6:4a:bc:3e:
b0:c5:e7:3a:4b:6a:11:66:4d:c4:fd:01:3f:e3:c2:
e6:15:58:1b:a3:5e:99:5e:54:2b:ed:98:ba:f5:54:
0f:b0:5d:67:c0:f8:38:29:0f:1a:83:21:fc:89:fe:
50:a1:5c:e9:b1:ec:4a:7b:b5:2b:42:3c:85:06:54:
e8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:85:42:A0:7C:74:A5:DA:94:C1:31:06:EF:9F:85:56:4E:F3:C9:53
X509v3 Authority Key Identifier:
keyid:79:89:44:F7:FB:C5:7D:5C:FB:F5:F1:BB:68:0F:2D:73:CA:D2:6D:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798944F7FBC57D5CFBF5F1BB680F2D73CAD26DD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bd30587-a7ca-4195-a359-0c0f627af8da/0/3130332e3135372e36322e302f32332d3234203d3e20313439393736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.157.62.0/23
Signature Algorithm: sha256WithRSAEncryption
91:92:e0:a0:9e:48:74:f9:55:74:2d:09:8c:37:0f:e3:36:67:
92:16:53:7a:8d:7e:aa:9c:b0:ec:f5:1a:a8:d9:56:07:99:3f:
9d:1e:14:ea:7c:95:d7:7c:09:47:88:6d:0f:cb:7e:5c:80:5c:
8c:35:cd:81:1a:b4:d9:f1:a5:20:10:ff:89:0c:4b:5d:ba:18:
7e:58:82:d2:1b:6a:c7:66:e6:c9:1f:02:5d:b0:99:c5:3d:5e:
01:c3:6d:6d:a5:59:75:cf:01:f4:22:4b:f5:af:5e:63:ea:8c:
d2:9f:31:59:a4:0a:22:29:52:6d:16:a2:88:6c:e8:d0:cc:af:
23:48:b1:57:c0:fa:b6:ac:8f:ac:e2:d7:b8:4a:56:5d:7c:50:
c7:19:09:b8:0c:7f:82:82:72:0c:f4:6e:1b:ab:ae:a6:80:fb:
60:2a:76:37:fa:ce:5f:4d:ec:b3:c5:07:bf:be:ba:88:a0:5c:
dd:49:bd:7a:52:a1:26:6e:b8:90:8e:9b:e9:11:b0:2e:ff:ce:
3c:c2:cb:fe:3b:18:2d:be:41:1b:af:16:8c:f4:c2:94:0a:23:
78:5d:b7:bb:a7:97:0c:5d:4f:b3:c1:b4:69:0f:d8:3d:ed:ee:
ed:c3:98:86:80:b2:99:a0:11:78:a4:27:72:95:ab:64:e2:95:
29:a2:80:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 13:39:44 2025 by rpki-client