Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32332d3233203d3e20313432333332.roa
File: 3130332e3136392e34302e302f32332d3233203d3e20313432333332.roa (raw, json)
Hash identifier: mzHcsRUTUCBbpQh0PF3/13tfxFdR6gl4I3cFgd8Tuk8=
Subject key identifier: 5C:82:84:A8:28:B5:F6:8C:C1:DE:FA:2F:C5:00:32:B9:D1:50:97:7C
Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7
Certificate serial: 5548760CFE0F31E961CA713B17EB1721DBC9C406
Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32332d3233203d3e20313432333332.roa
Signing time: Fri 09 Aug 2024 10:02:20 +0000
ROA not before: Fri 09 Aug 2024 09:57:20 +0000
ROA not after: Fri 08 Aug 2025 10:02:20 +0000
asID: 142332
IP address blocks: 103.169.40.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:48:76:0c:fe:0f:31:e9:61:ca:71:3b:17:eb:17:21:db:c9:c4:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7
Validity
Not Before: Aug 9 09:57:20 2024 GMT
Not After : Aug 8 10:02:20 2025 GMT
Subject: CN=5C8284A828B5F68CC1DEFA2FC50032B9D150977C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:03:b1:9b:77:13:09:95:9e:da:79:6d:9d:15:
0a:8a:3d:8a:36:79:da:f6:9f:a7:41:43:3c:1a:cd:
6c:91:31:51:24:dd:69:98:e3:2e:3b:92:05:bf:4a:
67:c6:59:4a:e0:95:0d:34:74:bf:7f:c6:84:f2:86:
81:8b:41:51:ed:be:1b:57:a4:33:a1:cf:04:5a:41:
3e:04:a1:d1:44:3e:bc:89:89:54:ac:b1:aa:f8:5e:
0b:9e:c3:f6:38:9a:65:56:69:cf:82:8b:bb:09:a2:
5e:ca:4c:18:ca:93:d9:a1:cc:b5:61:9d:b2:aa:2b:
36:27:81:de:42:a0:1f:e8:a4:8c:f4:bf:8c:d6:9a:
74:64:9b:af:3f:8f:15:78:43:10:0b:90:57:df:a7:
5a:a8:f0:71:55:05:5c:03:ab:6b:83:7a:0f:4f:c9:
a5:c4:5d:39:52:fa:47:81:df:c3:53:c9:09:03:06:
37:74:1a:16:0e:c5:d9:38:77:c8:f0:6c:92:bc:01:
64:c4:bd:eb:57:03:ec:ff:f0:18:cd:c1:6b:45:12:
6f:3f:9e:20:95:45:18:a5:4e:f4:2e:a7:70:d1:25:
c8:b9:0b:b6:23:c9:04:4d:4e:d3:80:c8:32:26:34:
45:a5:f4:98:ca:01:4f:81:4a:1d:17:7c:6d:d0:1f:
d7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:82:84:A8:28:B5:F6:8C:C1:DE:FA:2F:C5:00:32:B9:D1:50:97:7C
X509v3 Authority Key Identifier:
keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34302e302f32332d3233203d3e20313432333332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.40.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:d3:9d:9d:af:f1:83:a7:2a:d3:f3:4c:44:a0:a1:b7:60:d0:
6f:67:86:5f:e6:9e:57:62:cb:1e:07:6b:cd:77:dc:c6:9d:a9:
57:a6:3d:93:72:82:1d:ee:a4:5b:0a:93:4a:7e:9a:cf:82:88:
ee:2e:82:41:99:86:88:bf:86:2a:df:d0:e9:06:6e:f4:ea:61:
b1:64:78:4c:e3:fb:e8:b3:4d:65:32:1b:31:74:a5:8b:55:e5:
fa:3c:71:30:98:a9:6c:30:74:4e:8b:fc:59:41:52:da:c9:2a:
93:bf:5c:be:da:9b:86:6e:53:53:ec:ff:34:a3:df:af:e0:ca:
74:f2:6d:93:fc:4b:d3:c6:51:81:d5:ec:9f:ea:15:24:b0:f9:
1c:4c:63:de:3c:af:d9:15:48:04:58:55:91:db:dc:3d:71:03:
a7:26:f1:71:90:56:40:73:04:4e:50:f9:18:e1:c0:86:c5:81:
d5:51:71:39:fa:1f:8e:18:1b:14:20:5b:a4:6b:a4:3a:dc:fd:
08:0d:eb:35:f3:51:76:ca:ee:56:ba:2c:a4:0c:58:da:6e:00:
fe:a9:30:0a:58:4a:c6:00:f2:f6:00:00:ea:5e:55:df:51:11:
f2:0e:d2:14:97:db:f3:f5:d1:6b:f5:d7:43:4f:c8:e1:a2:8b:
db:a5:fb:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:12:00 2025 by rpki-client