Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35372e302f32342d3234203d3e203538343734.roa
File: 3130332e32382e35372e302f32342d3234203d3e203538343734.roa (raw, json)
Hash identifier: 4gGLGsruUsTli5S71gqgaVjZ1FJbCfgz4Cb6M2Xf9S8=
Subject key identifier: 8A:E6:C8:52:19:30:15:72:72:26:75:42:1E:7A:23:C9:DA:0C:9E:49
Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098
Certificate serial: 7E1E16E1070FB050FB92A053CE9942FE3A4550F3
Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35372e302f32342d3234203d3e203538343734.roa
Signing time: Sun 25 Aug 2024 05:00:03 +0000
ROA not before: Sun 25 Aug 2024 04:55:03 +0000
ROA not after: Sun 24 Aug 2025 05:00:03 +0000
asID: 58474
IP address blocks: 103.28.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:1e:16:e1:07:0f:b0:50:fb:92:a0:53:ce:99:42:fe:3a:45:50:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098
Validity
Not Before: Aug 25 04:55:03 2024 GMT
Not After : Aug 24 05:00:03 2025 GMT
Subject: CN=8AE6C85219301572722675421E7A23C9DA0C9E49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:df:cf:3d:17:b9:13:b1:8c:b9:b1:ec:64:cb:
18:1c:67:ab:9f:32:70:a9:6d:9b:cf:99:60:56:fa:
ca:9e:8f:cb:d7:f1:49:c8:b0:2f:42:9b:6b:54:13:
26:64:f4:ea:6f:d6:14:05:23:12:f1:dd:56:7d:57:
9a:db:bd:bf:3f:92:cf:c9:d0:72:23:27:ae:25:3e:
ed:7a:3f:60:0b:a8:c2:fa:18:00:6a:dc:4f:f1:77:
d7:26:f3:e7:08:f7:b5:95:da:db:1f:bc:43:d4:5e:
7b:38:98:a5:cd:35:23:bc:2c:b9:30:0e:00:d3:e9:
47:64:4d:65:6b:6f:6c:26:86:c5:71:4c:d3:ff:a3:
eb:5b:67:66:fa:2d:39:8f:08:bc:36:96:0c:1a:c4:
b6:3e:11:64:4d:8b:30:88:7a:81:f2:6f:42:a0:54:
bd:e5:f8:54:c9:b9:e2:40:20:34:a0:2c:9e:3e:9f:
a0:1a:18:65:26:14:c6:a2:95:a0:85:5f:e0:01:40:
f1:03:ef:9c:96:87:72:12:b4:9c:b1:36:ad:f1:06:
2e:a0:d4:17:2a:6d:1b:2b:66:01:6c:95:cf:64:6a:
cf:a7:0d:f8:db:a3:96:d0:5f:f1:68:b3:15:61:ad:
e0:a1:33:4a:80:63:ff:ec:ac:52:cb:eb:f9:ce:24:
22:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E6:C8:52:19:30:15:72:72:26:75:42:1E:7A:23:C9:DA:0C:9E:49
X509v3 Authority Key Identifier:
keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/3130332e32382e35372e302f32342d3234203d3e203538343734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.28.57.0/24
Signature Algorithm: sha256WithRSAEncryption
80:0e:57:04:79:b8:3c:14:11:b3:9d:4a:9d:a7:3a:e8:b7:9f:
33:e4:43:55:4e:bd:d6:2e:80:d2:1f:9f:34:a2:bb:06:1d:fb:
73:c8:24:d5:2e:df:57:8c:f6:4f:57:cb:9f:40:62:02:c9:92:
19:ee:30:d3:80:12:76:27:bf:34:9c:73:f6:88:a2:3d:a4:ab:
b4:88:14:45:a0:2c:77:06:47:e8:51:0f:d4:d1:96:f9:f6:1c:
87:c4:8b:7a:b6:5f:eb:a5:81:78:b6:ff:69:f2:6d:96:7d:f8:
a4:4c:0a:cc:58:69:a0:4e:7d:9a:ec:f1:a6:32:55:e7:c8:4b:
ca:d3:23:0a:30:43:54:b5:fe:22:e1:7b:68:f6:38:aa:8d:8e:
bc:04:8f:25:42:c2:cd:3c:62:da:61:db:f1:55:3c:36:1e:5c:
4e:f5:7d:b8:4d:f2:aa:ce:6b:4d:92:7a:50:67:31:29:f6:8a:
75:8a:93:90:84:21:e4:17:07:47:e1:ad:23:7b:90:4a:7a:00:
8c:08:5c:a7:57:0b:7c:f1:84:1f:21:1e:a1:9a:fe:e3:14:92:
82:0d:80:b5:a2:eb:3b:76:eb:ee:11:28:8e:77:86:2e:7f:a2:
26:db:40:1d:51:dc:4c:b0:0b:39:1d:e3:59:81:9a:21:48:6d:
75:f4:51:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:02:26 2025 by rpki-client