Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa
File: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (raw, json)
Hash identifier: ZHzUIRy4nZYVajGdct7Oorl4xz1bGegJThKCS1yBqbI=
Subject key identifier: 66:7D:7B:2E:5B:64:82:81:ED:D3:99:04:48:F3:82:55:45:2A:73:D6
Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596
Certificate serial: 36B4547F2FDA5A48CEC204E63B638FC047E2E60F
Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa
Signing time: Wed 21 Aug 2024 03:02:49 +0000
ROA not before: Wed 21 Aug 2024 02:57:49 +0000
ROA not after: Wed 20 Aug 2025 03:02:49 +0000
asID: 149883
IP address blocks: 103.184.20.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:b4:54:7f:2f:da:5a:48:ce:c2:04:e6:3b:63:8f:c0:47:e2:e6:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596
Validity
Not Before: Aug 21 02:57:49 2024 GMT
Not After : Aug 20 03:02:49 2025 GMT
Subject: CN=667D7B2E5B648281EDD3990448F38255452A73D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:28:0c:e4:18:8e:e2:3c:69:4a:12:c7:57:55:
25:50:62:40:68:c1:e5:1f:25:3f:0d:9a:03:38:28:
9a:a7:be:88:28:61:b1:31:6b:44:07:c7:54:12:70:
86:bb:79:2d:26:60:3e:17:86:5e:ee:81:23:ab:6c:
22:4e:0f:5c:a2:01:3f:ea:54:6a:57:5f:a2:6d:aa:
44:e0:d3:99:0a:3f:d1:fe:23:07:b3:6f:04:75:d1:
5a:75:ab:fa:da:22:d0:74:a7:34:58:ae:6e:26:51:
4c:08:18:58:3d:a5:41:71:70:68:11:45:c5:17:36:
a4:fe:b7:af:5a:2a:3f:b8:1d:5c:f8:5f:98:2a:9d:
4e:cb:8b:2f:2f:ab:c7:18:7e:1d:07:ec:97:22:b5:
97:cc:17:2e:3f:05:bf:6e:29:4d:30:3f:c9:14:43:
fa:1c:bb:52:cc:0f:a5:f9:db:74:22:fb:70:12:48:
0b:de:e6:9a:3a:ad:9f:fb:4f:3a:52:d0:8a:4f:45:
88:c4:ac:33:a0:fc:00:98:22:84:8e:4e:70:d8:3d:
11:fe:d9:32:e3:cc:e3:5a:1a:65:ca:b1:41:fc:63:
09:45:9d:13:24:31:6c:fc:52:b6:75:c4:1e:69:cd:
2b:03:f7:09:aa:38:27:52:cc:d7:d5:71:81:e5:93:
8e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7D:7B:2E:5B:64:82:81:ED:D3:99:04:48:F3:82:55:45:2A:73:D6
X509v3 Authority Key Identifier:
keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.20.0/23
Signature Algorithm: sha256WithRSAEncryption
63:28:1e:1f:65:f1:89:74:73:66:a5:48:5c:ce:9c:74:68:c0:
ce:39:b2:82:b7:3a:fa:4e:e3:9d:4e:32:31:c5:71:64:3e:b8:
b5:83:bc:77:93:25:7c:a1:f4:ca:04:bc:5c:4d:3e:ca:fd:e4:
38:e9:16:18:44:1e:e8:a1:e1:07:34:19:b5:2f:57:3d:65:24:
57:11:84:92:60:58:24:5d:51:35:ca:c1:12:b6:93:24:30:b7:
70:92:34:7b:fe:9a:82:59:bc:32:bc:51:40:3e:12:b8:fa:2a:
9d:99:eb:ce:28:92:4b:4d:a4:c1:a4:61:f6:2f:cd:81:56:3b:
c8:0e:02:30:f9:20:3f:d9:cc:a5:2f:87:15:09:92:4c:71:4d:
bc:1a:ff:47:ee:8d:ae:f2:e6:86:86:3e:b1:66:00:74:41:b6:
83:7e:d1:0a:16:88:7c:0e:46:16:c1:51:24:9a:e5:3e:d1:3d:
89:df:4d:45:e3:c3:b4:31:73:e6:5a:c7:f8:82:5b:28:77:6d:
35:1b:3e:08:b4:3c:b8:de:24:06:e8:33:3f:3c:56:71:53:81:
a8:6e:e5:5e:3f:8a:a4:d8:8a:05:11:84:f4:35:f6:93:f3:b3:
85:50:5a:76:59:e1:43:8d:db:8a:a2:d4:72:44:ad:27:e7:2d:
c8:48:44:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:36:02 2025 by rpki-client