Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35362e302f32342d3234203d3e203538343734.roa
File: 3130332e32382e35362e302f32342d3234203d3e203538343734.roa (raw, json)
Hash identifier: DeLSQFfELIsCBteEIe9giWzCWLH2CFola9GnxccGEcI=
Subject key identifier: 68:87:F7:D7:9F:4C:40:D9:97:B5:BD:99:5C:1C:62:B5:4D:00:1E:60
Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098
Certificate serial: 73EB5984C4D33B669AA998AD0EDF0245667B46D6
Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35362e302f32342d3234203d3e203538343734.roa
Signing time: Sun 25 Aug 2024 05:00:03 +0000
ROA not before: Sun 25 Aug 2024 04:55:03 +0000
ROA not after: Sun 24 Aug 2025 05:00:03 +0000
asID: 58474
IP address blocks: 103.28.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:eb:59:84:c4:d3:3b:66:9a:a9:98:ad:0e:df:02:45:66:7b:46:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098
Validity
Not Before: Aug 25 04:55:03 2024 GMT
Not After : Aug 24 05:00:03 2025 GMT
Subject: CN=6887F7D79F4C40D997B5BD995C1C62B54D001E60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a6:da:d3:66:3d:9f:a2:b0:19:3e:44:41:bb:
f3:31:b0:1e:2d:28:e5:8e:a7:cc:98:08:2f:e6:db:
3d:18:eb:6c:e3:f3:f7:13:c4:6f:67:48:dc:fa:aa:
c1:d8:5f:2e:b0:ba:ff:1b:56:d9:44:21:02:9d:4b:
89:46:06:c8:71:92:b3:7a:2b:43:bf:12:f4:40:ca:
b2:ce:38:62:c8:c9:db:bb:2c:b1:be:9a:79:bf:72:
2b:a1:7b:5a:e4:97:13:9d:da:dc:4d:aa:f9:4b:f2:
43:3f:d3:99:42:80:c2:63:4c:ee:96:1c:5c:b7:74:
36:84:a9:ec:a0:1e:3c:5b:7d:c8:89:a3:7d:02:87:
f5:73:37:cd:d8:63:12:26:a9:cd:04:d8:1e:eb:28:
65:00:cd:51:bb:fc:d2:8a:61:8d:95:f9:02:c5:07:
66:9f:82:77:b1:d2:77:d2:36:92:37:13:aa:19:4a:
36:f3:3e:f8:cc:0e:02:42:cf:2a:d4:2b:72:97:61:
62:e4:d9:5a:d2:fb:5d:d4:18:2d:9a:ed:17:d1:c6:
0a:3c:b6:59:47:aa:5c:96:10:91:9d:99:03:9d:e6:
82:fa:29:75:81:1d:e8:e8:c6:97:c5:cc:f0:1f:6b:
b9:08:47:62:60:1b:b8:1b:93:24:32:c9:a0:00:0c:
f7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:87:F7:D7:9F:4C:40:D9:97:B5:BD:99:5C:1C:62:B5:4D:00:1E:60
X509v3 Authority Key Identifier:
keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35362e302f32342d3234203d3e203538343734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.28.56.0/24
Signature Algorithm: sha256WithRSAEncryption
34:21:5c:d4:74:b2:67:2c:2f:7a:e4:a3:18:58:9e:44:16:55:
7a:33:99:d6:d2:15:e8:56:e6:37:01:b6:37:70:42:23:05:f4:
ce:07:79:6e:59:0a:ea:48:76:f9:e6:6c:50:53:96:d2:f6:3f:
f6:48:f5:dd:78:55:27:bf:ae:54:a8:70:e3:2a:b3:29:df:66:
56:c7:20:e2:5a:3a:0f:f3:ef:41:14:42:d7:33:87:fe:43:b0:
98:1a:57:91:70:f5:6c:a0:73:33:6d:e3:e1:7d:ae:ca:40:fa:
10:73:f8:c9:4b:3e:e6:aa:59:63:b4:0e:4b:b4:89:1d:79:4f:
1c:ce:f0:76:82:51:d6:1b:13:9d:c7:41:7f:b2:56:ce:f5:36:
bf:5e:d1:c7:0a:16:73:b6:1d:1b:00:55:48:11:16:10:d2:9d:
77:e8:b7:48:72:bd:75:9c:7c:51:f0:1c:f5:68:aa:ff:78:ad:
ab:ad:7b:30:4c:b9:f9:b2:b4:78:96:17:73:00:39:ee:e5:3b:
19:52:8f:9b:69:e4:12:df:1c:5e:0b:0d:2e:01:c7:32:75:74:
74:68:12:e9:0f:8d:3e:88:c2:36:b9:18:c0:19:59:40:2e:fd:
94:7e:a6:69:36:94:62:6f:93:4b:f8:7a:5e:62:e8:94:0c:ed:
5c:8e:2a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 08:10:22 2025 by rpki-client