Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa
File: 3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa (raw, json)
Hash identifier: s7ZRS2Zcu3hJueMyatfY5+9nMoD7nFYIofv5YO21v9A=
Subject key identifier: 7B:75:F7:54:50:EF:7A:09:A4:06:F8:EA:45:9B:9D:8C:CB:F0:59:61
Certificate issuer: /CN=E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1
Certificate serial: 1AA4886BF26E8FA9D857F3CBEA4332B887915BA6
Authority key identifier: E0:9D:0E:1D:26:3D:BD:91:4D:0C:4E:0C:AA:7E:5E:50:D0:22:46:F1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa
Signing time: Tue 22 Oct 2024 08:02:02 +0000
ROA not before: Tue 22 Oct 2024 07:57:02 +0000
ROA not after: Tue 21 Oct 2025 08:02:02 +0000
asID: 139952
IP address blocks: 103.178.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:a4:88:6b:f2:6e:8f:a9:d8:57:f3:cb:ea:43:32:b8:87:91:5b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1
Validity
Not Before: Oct 22 07:57:02 2024 GMT
Not After : Oct 21 08:02:02 2025 GMT
Subject: CN=7B75F75450EF7A09A406F8EA459B9D8CCBF05961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:21:3d:98:e3:c7:b1:b3:6a:24:60:b9:d7:d9:
d9:af:36:76:f9:20:24:b6:7c:4e:ee:69:ba:cb:a7:
93:a6:24:47:5d:60:a6:a2:81:55:4a:b9:42:8d:ce:
a3:ca:a7:e5:59:1e:0f:3f:aa:ef:0a:3c:41:68:60:
03:3a:67:ed:7b:6c:2e:79:63:0c:75:66:57:fa:2b:
81:85:ee:bd:f0:3d:ac:a7:aa:5b:d3:5f:68:68:79:
70:39:51:02:84:e5:91:cd:c7:b2:09:9c:fd:80:31:
12:4c:e7:a5:a4:d0:b8:b0:21:77:7a:a1:ca:8f:82:
14:c8:63:4f:6c:7c:12:71:23:5b:9c:dc:50:20:f1:
29:6a:26:b9:ce:b2:f1:a4:36:15:8e:51:6b:70:21:
b5:37:db:dc:52:56:90:77:f9:b8:eb:8d:68:1e:f7:
81:85:c9:f3:50:85:dd:65:8e:11:46:2d:65:04:45:
70:9f:0a:9f:26:4d:60:a1:c9:22:4f:be:08:59:00:
77:92:87:56:c2:6c:f0:ff:c2:24:78:07:65:1f:e3:
7f:11:6b:34:cb:8f:1f:6d:a7:33:43:12:67:b3:c9:
df:f7:48:fd:1d:97:56:84:29:73:8e:5d:c1:5e:38:
71:fd:4d:06:a1:f3:52:dd:b4:9d:97:87:d9:a0:54:
82:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:75:F7:54:50:EF:7A:09:A4:06:F8:EA:45:9B:9D:8C:CB:F0:59:61
X509v3 Authority Key Identifier:
keyid:E0:9D:0E:1D:26:3D:BD:91:4D:0C:4E:0C:AA:7E:5E:50:D0:22:46:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E09D0E1D263DBD914D0C4E0CAA7E5E50D02246F1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c01fd44-8cd6-4d9f-9bd1-8367ad9cd9ea/0/3130332e3137382e3137302e302f32342d3234203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.178.170.0/24
Signature Algorithm: sha256WithRSAEncryption
64:e4:0c:35:3a:71:7f:af:a4:aa:66:e6:01:96:d1:e9:a4:6e:
52:e1:9e:12:07:b2:86:67:20:5f:b8:0e:78:68:4f:08:ab:c0:
cc:aa:ca:5b:fb:a6:bf:28:d0:f1:4a:66:4e:bc:72:6a:31:3a:
62:78:3d:c1:77:ac:4c:fc:b0:0f:63:05:75:17:10:80:1f:48:
c0:60:8b:80:4c:c8:23:7a:c0:28:1b:35:d6:88:08:93:1f:de:
16:3f:24:58:f6:18:00:c6:e2:f8:d9:a7:dd:d8:42:e6:8c:de:
6e:cb:3c:b4:ce:07:80:8e:bc:57:45:0d:26:87:21:da:59:6c:
a0:3f:3f:64:dd:2e:ce:51:c0:11:a0:35:48:be:3e:3a:1e:7c:
ff:8e:0a:d3:e2:10:d3:c4:24:78:b2:27:da:81:58:c2:13:e5:
28:fa:fc:bf:86:00:5c:cf:8a:5c:6f:3e:95:7c:3c:16:4b:3a:
9a:60:a1:3d:53:0e:4f:a9:43:b0:35:ce:dc:46:7a:1a:bc:9f:
62:41:11:06:81:56:57:29:bf:d5:91:11:fe:d9:83:86:a9:66:
69:96:09:82:20:c8:f4:b0:5f:d1:e2:7e:86:3d:54:dd:49:20:
80:5e:3e:de:e6:c5:ee:a8:8b:1b:d5:b4:ff:fc:1e:4f:15:41:
22:40:18:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:33 2025 by rpki-client