Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa
File: 3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa (raw, json)
Hash identifier: TPt0MPhRlnRnEy6pwXTYSOfvzf7c+OznSicdCAsldBc=
Subject key identifier: 32:93:5A:AA:77:6B:C5:15:6A:D7:E8:DB:E5:92:08:F1:3E:B1:2C:27
Certificate issuer: /CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33
Certificate serial: 2CC10CAABEB3CB5D800EC01D6A58C6DBAC9DF099
Authority key identifier: 45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa
Signing time: Fri 29 Nov 2024 03:00:00 +0000
ROA not before: Fri 29 Nov 2024 02:55:00 +0000
ROA not after: Fri 28 Nov 2025 03:00:00 +0000
asID: 149913
IP address blocks: 103.191.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:c1:0c:aa:be:b3:cb:5d:80:0e:c0:1d:6a:58:c6:db:ac:9d:f0:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33
Validity
Not Before: Nov 29 02:55:00 2024 GMT
Not After : Nov 28 03:00:00 2025 GMT
Subject: CN=32935AAA776BC5156AD7E8DBE59208F13EB12C27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:85:04:22:5b:71:c4:75:62:2f:82:fc:7e:b0:
81:ac:50:ed:46:05:92:f9:f8:3a:78:d8:93:aa:b5:
47:f3:3c:14:90:3a:38:21:91:85:dc:cd:41:7c:21:
ee:31:00:f0:27:e5:1d:09:fb:aa:d8:f6:b2:88:7a:
54:79:e4:f1:46:f4:82:97:61:65:05:fc:1b:59:0b:
a6:44:a7:22:4d:01:6f:6f:80:e4:f5:c1:1b:89:6f:
14:5f:d4:de:2c:cf:81:50:60:3a:20:f4:1e:8a:61:
5f:f8:cd:2c:81:d2:a2:55:a3:d9:e8:0b:f3:cf:c9:
55:c4:f0:bc:97:8e:7b:e3:dd:11:04:d8:de:36:1b:
81:39:d3:e4:a8:fa:6a:bc:05:ab:08:37:54:17:fb:
c6:f4:a5:48:ca:c8:af:c5:9b:67:16:da:a9:8c:f7:
8a:63:6c:20:b7:cd:71:e6:76:d2:9d:0d:72:f2:6a:
72:87:73:09:49:72:79:25:39:b1:6d:c1:44:cc:a4:
04:aa:1c:00:e0:b3:09:1c:7f:8e:b7:1b:b2:a6:15:
50:60:82:ce:ac:2d:49:7d:9b:4f:b2:cd:38:c0:94:
3b:92:cc:47:21:8e:2d:e2:93:67:7c:37:91:bf:6c:
7f:3f:22:c9:10:01:bb:39:09:07:6f:61:a2:f0:c9:
7b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:93:5A:AA:77:6B:C5:15:6A:D7:E8:DB:E5:92:08:F1:3E:B1:2C:27
X509v3 Authority Key Identifier:
keyid:45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.191.55.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:70:02:c3:e6:6a:e0:5e:b1:fd:41:0b:e4:e8:30:d8:9b:3f:
8c:6f:c6:d6:ae:93:46:f7:2c:e4:57:74:b1:56:ec:be:e4:25:
39:63:71:f5:3d:08:09:45:d1:0a:e4:2e:da:52:13:72:1b:45:
2f:bb:68:65:2b:82:40:0d:0f:27:c2:a4:cf:d9:0f:23:c6:6a:
0e:ff:cc:1a:75:f5:6c:f2:d0:bd:29:cd:56:a9:f4:27:87:e0:
a7:69:ae:a6:7d:90:dd:0f:ea:9c:af:f5:fc:27:ba:75:1b:50:
73:1d:1b:4f:43:e2:c3:ea:a4:43:49:c1:6c:f0:54:53:df:3e:
82:c6:85:fb:2f:87:d5:2e:90:37:ff:ad:10:38:84:21:18:dc:
1d:8f:5e:ef:d5:b4:47:03:fa:e5:5c:a1:b5:9c:be:a2:3c:e3:
c4:a6:b7:e9:fa:f0:91:11:b4:93:b1:a4:2c:a3:1c:f6:8c:da:
f4:4a:25:25:77:47:c9:ba:e0:70:81:c1:a9:fb:e6:56:e4:3c:
38:8b:e6:3c:e0:d8:c6:c4:d8:5e:aa:09:1f:5e:b8:a4:5c:00:
42:2a:10:b2:2e:cc:42:55:2d:62:2a:21:0f:46:78:25:8d:94:
9e:5f:45:df:9f:78:c7:61:d1:3e:1c:a8:db:de:62:f5:71:05:
b2:f0:5c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:28:10 2025 by rpki-client