Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32342d3234203d3e20313339393532.roa
File: 3130332e3137342e3131322e302f32342d3234203d3e20313339393532.roa (raw, json)
Hash identifier: H8eCB1ajNrVrh3omhOA+7EIUqPrlMk7lfLVZEODKpTs=
Subject key identifier: 96:19:31:C9:AC:9D:F1:C8:DC:93:94:F8:DE:9A:72:BC:6B:01:90:BF
Certificate issuer: /CN=061065EDF2843A4462114BCE0A173E21A84A019E
Certificate serial: 4AF57E0DE1A8BA41574FF6102B0A6CC27DDCAE06
Authority key identifier: 06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32342d3234203d3e20313339393532.roa
Signing time: Thu 05 Sep 2024 04:00:00 +0000
ROA not before: Thu 05 Sep 2024 03:55:00 +0000
ROA not after: Thu 04 Sep 2025 04:00:00 +0000
asID: 139952
IP address blocks: 103.174.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:f5:7e:0d:e1:a8:ba:41:57:4f:f6:10:2b:0a:6c:c2:7d:dc:ae:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=061065EDF2843A4462114BCE0A173E21A84A019E
Validity
Not Before: Sep 5 03:55:00 2024 GMT
Not After : Sep 4 04:00:00 2025 GMT
Subject: CN=961931C9AC9DF1C8DC9394F8DE9A72BC6B0190BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0a:40:4b:d8:f4:ed:ca:52:a6:d4:02:63:d5:
36:a7:76:35:4f:86:7c:d9:d6:53:44:9a:f8:d8:71:
0b:92:ce:a9:2d:11:55:35:3b:0e:d9:69:f9:b3:9a:
8e:45:82:42:cd:b4:d9:82:68:52:ba:30:ac:f3:43:
17:c9:14:aa:0f:ee:6f:43:11:04:9d:e7:3f:70:d8:
d7:56:31:a9:9d:0c:ee:f9:f2:df:83:69:f0:7e:8f:
b7:f2:99:5a:a5:01:c8:ee:4b:fe:1a:6c:c2:70:1d:
b4:75:04:f0:25:66:e6:49:fe:27:06:5a:02:a0:25:
5a:a5:96:0e:1b:51:25:99:5e:16:f3:24:74:92:99:
c8:74:d1:f1:18:26:de:f4:80:2c:d2:a4:c6:10:b3:
4a:b4:32:81:08:59:40:fb:da:1d:78:7c:6a:2b:49:
5d:17:7b:29:9b:93:6b:82:7f:cc:4b:29:f2:48:21:
a9:22:8b:03:65:25:58:43:6c:aa:92:50:69:55:25:
8f:65:1a:e8:74:d1:57:d0:71:0e:98:4d:e2:68:f2:
e8:31:c9:c1:3b:8a:d2:92:6a:27:80:ae:1b:d0:84:
a7:20:f0:ec:f5:e0:c3:46:a4:84:f4:f9:bd:b3:c4:
a0:79:42:1c:50:14:82:da:c6:19:c3:44:9f:7e:2b:
a5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:19:31:C9:AC:9D:F1:C8:DC:93:94:F8:DE:9A:72:BC:6B:01:90:BF
X509v3 Authority Key Identifier:
keyid:06:10:65:ED:F2:84:3A:44:62:11:4B:CE:0A:17:3E:21:A8:4A:01:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/061065EDF2843A4462114BCE0A173E21A84A019E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/061065EDF2843A4462114BCE0A173E21A84A019E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c3624c4-bfdc-4e48-8ea0-eb05605c6213/0/3130332e3137342e3131322e302f32342d3234203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.174.112.0/24
Signature Algorithm: sha256WithRSAEncryption
14:98:14:05:0c:49:a6:e2:fd:05:e1:da:73:65:24:5b:41:1c:
c3:71:b5:28:17:84:be:d6:83:6e:3b:55:fe:e7:7f:0f:c1:fa:
ce:e2:f5:fe:fd:e9:9e:e0:66:bd:85:30:d9:c0:e8:0a:58:2e:
6e:2d:fe:fc:e0:2e:7c:ec:ef:49:01:fa:c7:55:8b:58:ff:23:
89:e2:ba:86:33:4c:bb:22:41:10:90:3b:0f:ff:96:d8:5f:85:
4c:13:71:f7:36:e7:ef:eb:95:e2:55:57:60:ec:52:fd:9a:fd:
d8:01:c6:41:be:80:58:fd:7b:ec:1f:06:17:b0:23:06:20:83:
f2:11:a6:40:78:09:6b:d6:d5:3e:21:0b:43:62:88:d9:a8:81:
c1:0f:f7:14:e0:99:a9:9a:20:47:ad:26:fd:95:29:ea:dd:25:
39:50:84:40:b8:1f:94:b2:ea:1a:d2:08:21:b9:25:da:6e:86:
56:71:01:eb:58:d9:da:39:10:5a:b6:c7:b1:d5:1a:81:e7:ab:
03:16:7f:f9:6f:df:09:fe:2a:12:ea:67:72:a0:6e:31:91:37:
bb:cf:46:84:d3:83:c2:e3:23:11:5e:36:64:45:3a:86:31:c0:
cf:db:88:f4:b5:1e:67:dc:0d:dd:42:24:61:2e:c3:88:d3:b0:
c0:6e:5a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:41 2025 by rpki-client