Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa
File: 3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa (raw, json)
Hash identifier: CfGKDTwzaK9/cDjPw8NSmCs5voaTVZ8iBlLH2WBXSno=
Subject key identifier: F8:F7:3D:5A:A5:4B:88:8B:F0:C9:DF:69:2C:D2:A3:80:6E:66:B3:53
Certificate issuer: /CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7
Certificate serial: 0FA6C57311D446E7C8A41E7E60D4D04796D028C8
Authority key identifier: D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa
Signing time: Fri 09 Aug 2024 10:02:20 +0000
ROA not before: Fri 09 Aug 2024 09:57:20 +0000
ROA not after: Fri 08 Aug 2025 10:02:20 +0000
asID: 142332
IP address blocks: 103.169.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:a6:c5:73:11:d4:46:e7:c8:a4:1e:7e:60:d4:d0:47:96:d0:28:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7
Validity
Not Before: Aug 9 09:57:20 2024 GMT
Not After : Aug 8 10:02:20 2025 GMT
Subject: CN=F8F73D5AA54B888BF0C9DF692CD2A3806E66B353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a3:58:0e:f7:98:6e:9b:9c:af:96:3c:d8:86:
98:c1:e7:37:7e:73:58:f7:ab:b1:b9:1c:68:a1:54:
c6:a5:42:12:ec:29:91:b3:fc:4a:75:06:0e:83:fd:
e3:7d:b1:07:ae:16:6e:e3:b5:ba:53:f1:6c:3e:ce:
61:3e:9f:6b:97:e1:1f:c7:63:63:4e:df:75:6f:a6:
04:d7:bc:4b:51:83:b1:95:9c:42:c1:d9:58:73:d3:
85:6b:39:15:3c:0f:6d:5c:ec:bb:36:6d:34:c3:84:
8a:ec:94:30:23:14:08:ac:0e:8b:63:a0:14:c2:34:
35:45:89:98:b4:1b:16:64:72:79:d1:46:da:10:74:
6c:fb:65:4e:4a:e7:7e:bc:fe:a6:ac:ab:47:83:83:
b6:a1:69:cc:5a:b2:cd:69:3e:05:2e:b5:5b:38:79:
46:22:8f:aa:ba:df:2b:e4:af:9a:5f:6c:90:d6:4f:
5a:9c:36:a3:c8:3a:58:ae:37:13:f5:ff:86:ac:79:
60:be:25:5a:94:81:e7:f5:e0:aa:58:a5:6f:9b:44:
c1:93:12:70:c3:76:0c:02:0f:2d:25:16:0e:64:e3:
7c:bb:2c:bc:fa:6b:93:9b:52:d2:ee:2c:15:0e:50:
d8:a1:5a:fc:e0:cb:90:7b:75:5e:e1:36:fd:7e:4a:
63:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F7:3D:5A:A5:4B:88:8B:F0:C9:DF:69:2C:D2:A3:80:6E:66:B3:53
X509v3 Authority Key Identifier:
keyid:D5:8B:CD:47:A6:26:3C:C3:A1:2A:BD:E6:E3:A2:AD:28:AF:8B:DE:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D58BCD47A6263CC3A12ABDE6E3A2AD28AF8BDED7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cb52619-379d-430a-b19b-1f0ec53ae909/0/3130332e3136392e34312e302f32342d3234203d3e20313432333332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.41.0/24
Signature Algorithm: sha256WithRSAEncryption
19:88:bf:29:16:57:6b:5d:ca:8b:f6:bd:14:f1:67:00:09:f6:
5b:8e:33:13:94:e5:84:e7:26:23:8a:11:9a:78:6a:ee:db:36:
06:21:e5:0e:19:4c:a9:df:21:66:07:40:2d:71:64:21:e6:e0:
f2:74:c2:77:46:3c:eb:bc:f4:00:bc:c5:b1:c3:e7:52:a6:63:
0e:79:80:6a:86:79:02:8b:c2:7a:de:29:74:04:a6:6b:37:43:
09:bc:10:6c:70:ca:07:10:d6:a8:78:d1:44:80:49:d2:44:89:
8f:1a:1d:5f:22:b3:dc:1d:bb:64:50:5a:4c:06:c9:a0:74:5c:
b1:0b:5e:06:75:0f:b0:c2:cb:9f:b3:3f:45:19:e9:21:67:b1:
3a:6d:41:7f:86:b4:a7:20:11:92:cd:90:62:fc:6f:76:06:3c:
04:af:93:65:fb:a2:01:14:f2:66:13:a9:8c:2a:db:67:81:07:
dc:0f:14:c5:ba:82:d4:68:0b:3b:7b:21:fb:34:16:f7:ac:0c:
51:e9:8c:b5:8b:be:03:72:b7:fb:f3:a5:fa:a9:3c:e1:7f:df:
ff:a1:c1:4f:bc:95:f4:a1:33:8d:43:c0:5d:98:51:96:1a:7d:
63:84:7e:3f:64:da:a8:9d:cf:18:af:4f:4b:78:95:62:af:6c:
db:a2:bf:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:21:50 2025 by rpki-client