Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e382e302f32342d3234203d3e20313331373137.roa
File: 3130332e3131302e382e302f32342d3234203d3e20313331373137.roa (raw, json)
Hash identifier: 6z/aBJVjmnV5y30TyBAs1DIg7YaA2W+Hxhks9f6rrXI=
Subject key identifier: 51:D7:E8:AF:AF:50:7A:D9:EC:BC:A5:12:67:96:6B:FD:9B:1A:05:4F
Certificate issuer: /CN=2FB994CD1282292E6D2907FCECD7F9E472F49985
Certificate serial: 6827EC81102532754D6D4344653D191BA0DD3FFA
Authority key identifier: 2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e382e302f32342d3234203d3e20313331373137.roa
Signing time: Mon 01 Jul 2024 01:05:21 +0000
ROA not before: Mon 01 Jul 2024 01:00:21 +0000
ROA not after: Mon 30 Jun 2025 01:05:21 +0000
asID: 131717
IP address blocks: 103.110.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:27:ec:81:10:25:32:75:4d:6d:43:44:65:3d:19:1b:a0:dd:3f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FB994CD1282292E6D2907FCECD7F9E472F49985
Validity
Not Before: Jul 1 01:00:21 2024 GMT
Not After : Jun 30 01:05:21 2025 GMT
Subject: CN=51D7E8AFAF507AD9ECBCA51267966BFD9B1A054F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:70:ac:fd:af:d2:0c:1b:50:e1:fb:79:0a:35:
64:f9:8e:5a:3d:06:c2:27:c9:60:b6:0b:d1:3e:a5:
04:5a:ea:8b:a7:c8:52:c0:9c:3b:20:05:54:a5:77:
23:c7:e4:bc:5b:6a:9d:a9:72:51:6c:04:5d:9b:df:
a9:65:46:ba:a3:ef:9a:7b:c3:e8:fc:33:7b:a8:90:
a1:92:02:50:0d:f3:74:db:38:ef:f9:f3:26:fa:60:
36:3d:aa:50:0e:31:3b:8a:b1:e9:f1:c5:9f:ca:11:
19:41:97:88:e6:4c:e9:33:13:81:ed:f0:a5:51:07:
b3:f4:29:ee:0f:1b:d6:ca:da:bd:1b:a4:e3:42:07:
5f:93:9a:9e:68:d0:68:cc:41:9a:89:a3:b3:26:33:
a7:7b:0f:68:4a:1e:41:ae:fe:15:e6:5b:05:37:c9:
2d:43:f7:0a:98:ce:da:0a:40:15:f3:a8:02:c0:56:
ba:6a:fc:03:bb:52:9a:c9:5f:6e:84:1c:f5:18:ce:
90:18:44:b1:46:97:c2:a3:8f:b7:6d:5a:99:29:6d:
d9:63:6b:c7:31:fc:72:c8:3b:0a:97:c9:be:a6:9f:
63:50:00:bd:bc:7e:d7:5d:5a:df:c3:d5:5f:79:93:
fe:d0:9d:70:ff:59:f2:35:3f:94:07:0b:b2:f0:d8:
7b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D7:E8:AF:AF:50:7A:D9:EC:BC:A5:12:67:96:6B:FD:9B:1A:05:4F
X509v3 Authority Key Identifier:
keyid:2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/3130332e3131302e382e302f32342d3234203d3e20313331373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.110.8.0/24
Signature Algorithm: sha256WithRSAEncryption
48:77:8b:88:4e:a8:6b:5d:d1:91:0a:f8:85:62:a2:5a:a2:3f:
38:75:0d:34:33:5c:c9:b7:2a:58:53:56:05:76:d0:de:f3:d2:
28:30:41:c6:9e:cc:46:e0:34:ac:98:6a:91:d0:16:91:88:73:
c3:32:27:98:bf:c0:2c:b7:c5:e3:58:78:f0:33:d7:4f:22:28:
7d:24:74:b6:5b:04:e2:7f:25:39:75:c6:4d:d9:06:e8:23:20:
24:08:b4:72:ce:51:ff:ab:e4:d7:85:ee:bd:39:d3:51:26:b2:
46:93:98:e7:e8:62:07:84:4c:a0:59:a6:6f:63:94:5f:84:12:
5c:8f:ab:21:47:5c:54:d0:f4:25:05:22:a9:8b:e4:4f:55:65:
97:43:e4:dc:82:41:86:5d:64:98:5c:00:18:bc:b7:c5:d3:8c:
4b:a2:48:7e:e0:79:79:2d:7a:7d:68:f7:d6:01:4a:25:95:b1:
c4:50:de:8f:b9:3b:46:4a:f0:1c:3f:97:3b:97:ba:36:98:24:
9b:76:e6:2c:6f:a8:65:f6:d8:d9:be:75:53:85:51:55:5d:75:
4d:08:fd:e7:27:65:92:3f:e8:54:7a:c9:87:85:19:db:a1:95:
28:63:39:60:8c:30:19:d8:91:08:3b:ce:03:e4:1d:d0:1a:59:
36:63:42:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:55:31 2025 by rpki-client