Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa
File: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (raw, json)
Hash identifier: 3BxgBY3dX8feRwsm1hvpch2b234JpMx6XR/YBvSI5jE=
Subject key identifier: 30:DF:59:CC:6F:70:4E:75:F3:DF:F4:89:66:E4:30:95:F1:3A:D3:B8
Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248
Certificate serial: 0FF72230EB35C51F2ADEC9B7B8480F06973D795B
Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa
Signing time: Sat 27 Jul 2024 09:42:01 +0000
ROA not before: Sat 27 Jul 2024 09:37:01 +0000
ROA not after: Sat 26 Jul 2025 09:42:01 +0000
asID: 138886
IP address blocks: 103.73.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:f7:22:30:eb:35:c5:1f:2a:de:c9:b7:b8:48:0f:06:97:3d:79:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248
Validity
Not Before: Jul 27 09:37:01 2024 GMT
Not After : Jul 26 09:42:01 2025 GMT
Subject: CN=30DF59CC6F704E75F3DFF48966E43095F13AD3B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:94:3c:69:82:75:eb:3b:b3:82:32:e6:74:f9:
6d:7c:ad:fe:97:22:15:76:79:35:f8:87:f6:36:f8:
55:ef:a3:f1:f1:f4:1d:c4:b2:98:f7:6d:13:29:65:
13:7a:48:fa:2f:48:ed:ca:d5:00:21:5d:ef:6a:58:
5f:16:91:7a:17:f1:40:6f:10:79:9f:1e:d9:f8:f6:
43:61:7e:29:6a:22:69:a0:24:88:4c:d2:b1:67:74:
1f:31:2d:9e:9d:db:9b:03:e1:bc:f2:79:75:d3:05:
27:e3:c9:97:5e:9a:59:a2:13:da:2f:84:e8:55:40:
8f:e1:5f:02:d5:70:2e:a0:ed:7f:35:dc:4f:de:0b:
0e:b2:63:97:5c:b0:7d:de:c8:a8:28:e7:cf:83:4a:
e2:59:62:28:f9:30:95:0b:d8:10:e3:23:65:8b:bf:
5f:0b:36:f9:c6:1a:59:17:3a:19:9b:c2:b5:c0:10:
fc:4c:94:04:0b:22:64:23:23:94:d0:db:6b:0d:49:
11:a2:2d:84:61:97:78:37:8d:cd:3d:31:16:e5:fa:
5d:fe:5b:c7:45:cb:d2:6f:2f:a6:c8:da:71:12:b4:
51:c5:e7:f9:4e:18:f7:a6:c6:bc:5c:ac:13:4e:59:
c0:27:fb:ac:86:f7:15:83:bb:8d:f3:96:0e:45:f8:
e4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:DF:59:CC:6F:70:4E:75:F3:DF:F4:89:66:E4:30:95:F1:3A:D3:B8
X509v3 Authority Key Identifier:
keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.73.159.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:1f:c8:3f:4b:58:d7:ef:4d:cc:e3:b2:30:9e:b3:fb:08:a5:
4b:74:3b:22:35:fb:91:0d:35:3d:e5:42:2b:21:4f:85:f9:f9:
d1:23:4f:5f:3e:35:93:ce:b7:59:cd:fd:cf:09:a5:4c:73:e5:
85:a7:90:f9:d3:71:60:e2:29:61:7b:4c:a5:24:05:26:94:b5:
51:d2:8b:23:92:2d:e9:c9:b6:08:33:a7:5f:b3:17:d8:ef:4f:
ce:b5:d4:63:bd:dd:59:82:00:27:b5:57:bf:67:1d:0b:fa:1d:
a0:1d:83:bf:36:21:94:a3:e3:13:83:b0:f9:29:9b:6c:e7:e6:
44:59:dc:b5:7c:6b:60:17:ee:be:cd:eb:61:78:79:b7:b0:d9:
34:5a:be:b3:94:8a:2e:ed:38:32:1e:3a:92:71:18:2e:f7:94:
3f:d9:b3:2d:43:60:84:c5:83:41:58:d2:44:0f:40:9f:21:48:
e3:a2:e3:e3:95:be:99:5d:cc:4d:2a:ad:65:56:18:e6:7d:35:
0d:83:6b:81:e2:bf:11:91:1e:bb:cd:e1:a4:2e:cf:68:09:42:
1f:a2:9a:54:3d:34:32:c7:af:97:73:d0:f1:01:cd:b4:b1:07:
25:97:7d:22:93:f7:25:26:ae:72:1d:c4:86:26:27:6d:06:08:
2d:e1:bf:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 16:24:58 2025 by rpki-client