Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa
File: 3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa (raw, json)
Hash identifier: ZkDD1PXfJ1uxwAaNgZHZX7a5tpBbHZ0kvj8I0Rwjsd8=
Subject key identifier: 54:CB:E9:9C:50:A5:8C:A8:06:C6:F5:BF:E0:8E:C1:9E:B0:49:B5:74
Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF
Certificate serial: 38BB91E6F4075A191BFF2C19E37A086CCE633BD4
Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa
Signing time: Mon 01 Jul 2024 01:02:35 +0000
ROA not before: Mon 01 Jul 2024 00:57:35 +0000
ROA not after: Mon 30 Jun 2025 01:02:35 +0000
asID: 131749
IP address blocks: 103.31.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:bb:91:e6:f4:07:5a:19:1b:ff:2c:19:e3:7a:08:6c:ce:63:3b:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF
Validity
Not Before: Jul 1 00:57:35 2024 GMT
Not After : Jun 30 01:02:35 2025 GMT
Subject: CN=54CBE99C50A58CA806C6F5BFE08EC19EB049B574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ed:58:c2:65:f1:2b:9d:d8:fb:16:27:77:90:
6d:d1:3b:1c:de:8c:4a:24:e8:c4:fe:2e:e7:3d:68:
ca:7d:5d:24:c4:36:7f:e8:e3:c4:df:16:36:1b:b5:
a2:e1:33:6c:c4:88:e3:b9:be:f5:08:ff:a7:33:16:
ff:ab:9c:af:be:1d:10:c4:61:00:ba:e7:a9:18:f3:
86:1a:c6:d6:5c:15:68:fe:d6:6d:ec:68:20:04:c5:
15:bb:5d:de:23:0f:28:f3:e7:43:3e:6d:ea:bd:ef:
f6:91:3a:8f:3b:85:9d:f0:8e:eb:49:48:a2:70:27:
ea:5c:f1:f6:ad:2e:1d:c0:62:8b:eb:cf:85:9e:ce:
cd:52:9b:42:5d:dd:4f:4b:98:a0:d8:c8:b9:35:fe:
0c:f0:e5:ec:56:54:ff:f1:52:66:d2:43:60:74:6b:
30:63:35:a5:13:bc:24:5e:b9:9d:73:43:b2:d6:93:
01:3c:2e:69:ea:c4:e7:97:ce:4d:99:c9:ee:93:d5:
49:3b:20:e0:af:1e:2e:41:ef:7c:c6:b8:42:c7:1f:
70:f8:60:85:d8:35:28:8d:8a:88:be:aa:c6:fc:3a:
83:e9:99:52:e1:90:04:f4:5d:0c:52:9c:c2:84:ef:
3b:30:ea:fa:b8:1d:f6:58:61:35:d7:60:04:dd:a4:
3d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CB:E9:9C:50:A5:8C:A8:06:C6:F5:BF:E0:8E:C1:9E:B0:49:B5:74
X509v3 Authority Key Identifier:
keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/3130332e33312e3133322e302f32322d3232203d3e20313331373439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.31.132.0/22
Signature Algorithm: sha256WithRSAEncryption
54:fa:bd:19:55:81:23:fc:3f:f0:4a:b3:fb:26:5e:63:bc:89:
d1:2f:59:28:53:af:58:3d:f2:06:9e:d7:f5:bd:03:7e:11:b0:
57:3b:51:19:f4:25:a9:ae:30:11:56:ab:98:24:75:65:f4:e4:
46:bf:df:c3:8f:5b:ca:d9:02:20:32:f8:21:d6:fd:3b:14:57:
52:78:c6:12:c7:cd:c2:27:ae:1f:96:26:30:92:68:99:d1:b9:
aa:8f:fa:46:28:34:c1:f0:4b:db:a2:cf:e5:ef:61:72:24:33:
79:57:6f:76:5c:ea:fe:e6:10:8e:d1:f6:0d:91:32:7f:62:13:
a4:d6:e6:bc:53:d7:04:1a:82:fa:fc:cf:06:d0:ee:74:ae:9a:
04:75:55:a4:8b:1b:f1:07:30:c1:93:c6:2a:cd:a1:ef:08:0f:
42:d6:36:d3:06:10:9b:86:73:92:dc:32:fa:29:77:09:12:b4:
bd:68:ee:36:14:d2:89:2d:ac:b3:b5:55:0e:b3:38:d0:85:ab:
c3:2f:c2:d3:93:83:34:77:c7:e3:ab:51:71:d9:6d:1a:d1:e9:
84:3b:6d:84:c3:ba:46:aa:4e:8d:4a:06:47:21:ea:a6:20:f5:
39:ed:36:08:84:9a:c0:98:d5:60:22:cf:0d:7a:6c:1d:56:26:
11:a7:64:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:02:26 2025 by rpki-client