Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa
File: 3130332e37312e32352e302f32342d3234203d3e20313530323333.roa (raw, json)
Hash identifier: 7V+15ddHSP30dhzOt3k9NRabUa1L2vfsDa5xrSuHr2U=
Subject key identifier: 35:D8:A2:57:E1:F6:C8:35:87:ED:E7:8B:2E:B1:4E:79:F1:E0:01:7D
Certificate issuer: /CN=8DA8C02216F0C7D625FEFA7EF659021425920442
Certificate serial: 72103E884BD90EE3E5A457ECEB668C193C811580
Authority key identifier: 8D:A8:C0:22:16:F0:C7:D6:25:FE:FA:7E:F6:59:02:14:25:92:04:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA8C02216F0C7D625FEFA7EF659021425920442.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa
Signing time: Mon 07 Oct 2024 05:01:30 +0000
ROA not before: Mon 07 Oct 2024 04:56:30 +0000
ROA not after: Mon 06 Oct 2025 05:01:30 +0000
asID: 150233
IP address blocks: 103.71.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:10:3e:88:4b:d9:0e:e3:e5:a4:57:ec:eb:66:8c:19:3c:81:15:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8DA8C02216F0C7D625FEFA7EF659021425920442
Validity
Not Before: Oct 7 04:56:30 2024 GMT
Not After : Oct 6 05:01:30 2025 GMT
Subject: CN=35D8A257E1F6C83587EDE78B2EB14E79F1E0017D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:86:5f:dc:ef:dd:20:02:57:77:52:e6:d2:41:
41:02:cb:27:48:b7:b1:35:3f:b8:af:0f:b1:66:cd:
70:2b:7c:79:b5:13:e5:1d:e7:3d:88:34:ed:c0:c7:
94:8b:44:d9:08:e9:65:e4:0c:84:40:e8:3a:a5:27:
18:c1:c8:52:c0:de:1b:87:32:8c:57:b3:2f:22:94:
ac:ae:12:2b:da:d2:b4:3c:f1:ba:64:78:8e:f9:eb:
45:b1:04:b5:15:de:72:68:c5:38:e1:f3:b4:e0:b5:
78:89:21:9b:9a:83:e8:7a:2f:ea:a0:89:a7:e5:af:
5c:bf:07:5a:47:f1:8c:8f:a1:76:38:7f:4d:5c:9f:
59:1a:87:c0:fb:d9:4d:75:83:4a:e1:d4:dc:c1:91:
95:e9:84:a3:55:36:ee:53:5b:d2:c2:36:61:7e:10:
6f:a5:64:74:0d:6f:9f:44:d9:91:ef:bf:ad:31:9e:
10:82:35:b4:a6:1c:a2:ee:04:03:31:28:18:73:c2:
50:04:5f:1f:49:38:48:1a:3e:b3:b2:0b:75:70:76:
64:79:c5:1d:b4:1d:00:5d:e1:17:99:06:8c:cc:5b:
4e:e1:b6:d1:1b:96:16:5e:4e:68:3f:73:ae:df:65:
6a:e3:1c:ab:6c:50:72:96:ca:8d:a3:de:42:9c:0d:
01:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D8:A2:57:E1:F6:C8:35:87:ED:E7:8B:2E:B1:4E:79:F1:E0:01:7D
X509v3 Authority Key Identifier:
keyid:8D:A8:C0:22:16:F0:C7:D6:25:FE:FA:7E:F6:59:02:14:25:92:04:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/8DA8C02216F0C7D625FEFA7EF659021425920442.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA8C02216F0C7D625FEFA7EF659021425920442.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c86cb5d-f07d-426a-8e5e-a77a978dd2ee/0/3130332e37312e32352e302f32342d3234203d3e20313530323333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.71.25.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:e7:ef:6a:42:3a:7b:60:0f:d1:97:0e:dd:7c:36:94:7d:37:
6b:8f:0d:91:1a:11:f2:f7:46:86:a3:f6:94:89:1b:e2:1a:fa:
ea:5e:d5:a5:0e:85:fe:5e:88:d5:78:9e:a7:da:61:08:b4:90:
28:8b:c5:2e:20:0d:e7:73:6d:68:b7:77:08:1e:b6:2a:51:6f:
18:93:f9:a7:c1:f4:89:4f:fc:a1:39:63:e1:6c:26:a9:2a:bc:
5c:90:9f:7e:ea:91:6d:57:5f:a3:fe:b0:19:c8:81:a6:c2:c4:
15:c5:c6:e3:3c:74:ef:59:d1:cd:6f:e7:55:27:ca:29:40:3a:
0c:54:e1:40:a2:39:e4:4b:fc:db:51:3b:b0:ea:ad:81:e5:2c:
da:64:12:a3:e5:c8:31:e4:ec:ed:72:c2:78:2c:52:b8:68:10:
9a:64:27:7b:4e:d4:ed:04:e0:8c:d8:7f:91:5b:6f:03:31:f7:
94:82:db:67:ff:39:cd:a8:5b:cb:9f:47:3b:35:7d:cc:89:8f:
f3:f2:c5:dc:4f:7b:7f:12:3b:64:ea:79:04:9c:a3:82:c6:7e:
97:4e:58:46:10:3b:99:63:32:7e:1b:92:d1:3f:4a:4a:c3:c1:
17:08:e2:95:9c:d3:a1:dc:5c:fa:c8:71:c8:0d:f5:52:e7:24:
be:3f:5e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:58 2025 by rpki-client