Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3130332e32352e3139322e302f32322d3234203d3e20313332363532.roa
File: 3130332e32352e3139322e302f32322d3234203d3e20313332363532.roa (raw, json)
Hash identifier: uishawwbIWA59fc6E2EnmmHu56G13qCCnCUtoDK7S+I=
Subject key identifier: F2:32:52:4D:CB:2A:7F:7C:8D:BC:11:79:34:1F:20:91:4E:E5:1D:26
Certificate issuer: /CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF
Certificate serial: 2214150D4677B13F9245E969BBDF38D26FF7EA3C
Authority key identifier: 2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3130332e32352e3139322e302f32322d3234203d3e20313332363532.roa
Signing time: Tue 20 Aug 2024 07:00:02 +0000
ROA not before: Tue 20 Aug 2024 06:55:02 +0000
ROA not after: Tue 19 Aug 2025 07:00:02 +0000
asID: 132652
IP address blocks: 103.25.192.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:14:15:0d:46:77:b1:3f:92:45:e9:69:bb:df:38:d2:6f:f7:ea:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E19B97405D498D3B067A9A1009CDC1E02FB11CF
Validity
Not Before: Aug 20 06:55:02 2024 GMT
Not After : Aug 19 07:00:02 2025 GMT
Subject: CN=F232524DCB2A7F7C8DBC1179341F20914EE51D26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:86:34:0a:c9:cf:55:84:70:e6:0d:af:36:21:
8d:fc:f9:4b:49:44:8d:98:0a:8c:d0:c0:d3:84:3f:
44:15:78:da:4c:e0:95:5a:23:05:34:b1:3e:1e:c2:
0b:4a:bf:a7:a3:57:f6:d1:b7:e2:42:d5:ab:a1:53:
47:0a:a0:2b:66:ca:14:8d:91:ac:fb:a5:72:56:66:
7c:b0:88:cc:91:48:1f:69:18:47:8b:56:02:f5:9c:
fe:46:0b:3b:67:75:8c:00:a7:98:3d:91:98:9d:6c:
9c:d7:84:07:8d:63:c9:86:4c:87:79:41:76:1f:b0:
de:7c:49:8d:5e:2a:9a:52:04:cf:78:bb:08:46:94:
61:d8:4c:1d:23:da:c9:27:b6:d7:81:72:37:dd:44:
b5:05:03:94:f5:97:05:bb:91:2f:2c:d3:72:a8:b3:
8b:18:09:15:9b:49:3c:21:6c:e2:7c:56:48:b8:5e:
0e:cb:0b:3a:8b:95:75:43:a8:1a:75:e9:91:12:bc:
c7:cc:2b:14:40:b5:5a:b6:54:68:d3:b7:c7:e2:a1:
99:ee:98:de:99:14:2d:6e:bc:71:8f:5e:7f:a3:d9:
16:77:8b:61:a7:69:03:6b:19:c4:07:e7:16:50:76:
59:f4:8b:ab:d7:81:8f:ab:d2:ff:1d:c2:3c:9a:c0:
01:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:32:52:4D:CB:2A:7F:7C:8D:BC:11:79:34:1F:20:91:4E:E5:1D:26
X509v3 Authority Key Identifier:
keyid:2E:19:B9:74:05:D4:98:D3:B0:67:A9:A1:00:9C:DC:1E:02:FB:11:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E19B97405D498D3B067A9A1009CDC1E02FB11CF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b632a2c-406e-45d7-a028-260474c77038/0/3130332e32352e3139322e302f32322d3234203d3e20313332363532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.25.192.0/22
Signature Algorithm: sha256WithRSAEncryption
31:be:99:fd:e3:07:f7:f5:d5:fc:88:66:0f:af:74:d4:05:21:
f9:68:c5:e5:ed:27:8c:da:61:13:7e:93:89:af:9d:1e:02:28:
62:37:89:50:fb:84:07:33:ef:01:30:c3:ed:55:98:32:e8:c1:
e2:8b:c0:ec:a6:30:3a:8d:e6:c4:d7:a7:29:09:12:f8:ab:2f:
5e:e7:58:db:c2:6c:fb:b2:01:6d:95:99:af:4e:cd:bf:45:70:
1a:a7:b9:e6:0f:56:2f:ea:5a:f2:fe:60:d0:45:e5:c0:69:dc:
c1:21:4a:03:6e:f2:aa:7f:32:31:60:aa:dc:88:f1:c5:79:98:
28:f5:5c:54:29:01:ae:71:51:72:ac:13:1e:c9:53:11:8f:d3:
8b:bd:17:4b:8d:40:9c:e7:d2:00:f2:a7:c4:3c:f1:72:d1:fc:
2a:74:9d:e9:1f:96:cb:f8:75:a3:0b:3f:e8:5e:bc:b7:5f:0f:
ed:0a:37:fb:59:8a:a2:26:18:e0:73:6d:a4:ac:49:b0:da:5c:
bc:6f:30:33:6c:c1:f7:2d:2a:be:22:0e:a2:8d:7f:f5:47:37:
88:8e:8f:79:61:51:a6:3b:16:06:5c:96:28:ef:40:f1:cd:0c:
99:e2:25:ec:81:9f:86:a5:94:44:c1:30:42:b6:49:91:80:2d:
55:8b:1c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:17:04 2025 by rpki-client