Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa
File: 3130332e32302e38342e302f32342d3234203d3e20313530323337.roa (raw, json)
Hash identifier: 1cGJCBtgT1/NMznXhjOAyubxZil1/dRuPKJqMQpqjDY=
Subject key identifier: F5:C7:15:E2:07:C1:7B:B7:83:4C:C1:A8:45:C1:6D:8E:B0:78:D3:99
Certificate issuer: /CN=BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0
Certificate serial: 51C47677BD866320BB9D49E3307BE2FD14CF0F0A
Authority key identifier: BD:0C:A7:BB:7E:E1:45:97:A1:71:F1:B1:E3:E3:12:7A:79:DF:FF:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa
Signing time: Thu 28 Nov 2024 19:00:00 +0000
ROA not before: Thu 28 Nov 2024 18:55:00 +0000
ROA not after: Thu 27 Nov 2025 19:00:00 +0000
asID: 150237
IP address blocks: 103.20.84.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:c4:76:77:bd:86:63:20:bb:9d:49:e3:30:7b:e2:fd:14:cf:0f:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0
Validity
Not Before: Nov 28 18:55:00 2024 GMT
Not After : Nov 27 19:00:00 2025 GMT
Subject: CN=F5C715E207C17BB7834CC1A845C16D8EB078D399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c7:b5:3f:69:31:61:21:9d:1b:d0:f0:78:f7:
87:25:7a:61:0f:ad:d7:95:84:ff:7f:e1:b8:33:bc:
9d:22:8e:5a:ed:9d:e9:d1:e0:39:87:21:a2:4a:14:
33:3e:cf:ef:6a:d9:2d:46:e9:29:73:a2:40:63:58:
fc:3a:0b:c2:d5:86:6a:42:d4:40:5e:1d:e2:b3:07:
97:91:ef:b0:9f:38:dd:e0:15:64:0b:f2:87:32:b1:
4d:51:59:31:97:3a:40:4e:09:4a:23:ab:47:32:e9:
d4:8f:aa:35:8d:b2:76:91:30:c7:a1:00:9c:c2:50:
c1:cf:3a:b4:cc:16:9d:0d:c9:c2:cc:4e:6c:ab:66:
90:65:70:12:8d:1f:3d:01:2b:4e:fa:d0:9e:28:b7:
71:1d:a6:36:26:b4:39:26:6f:bc:5c:2e:60:2c:6f:
5e:a0:75:63:b2:b8:7e:2e:32:de:b0:c4:5b:d6:44:
ec:23:a3:be:d8:51:09:b0:91:4f:14:59:6e:96:9c:
76:6d:5b:f1:f9:f8:1b:2f:77:97:4a:4b:a5:ce:1a:
61:82:f4:65:be:aa:82:c9:0c:ea:21:0a:ef:93:f3:
df:49:58:62:b0:4b:45:0c:38:1d:d6:cc:07:72:27:
6c:6d:6e:d4:8b:5c:56:e9:22:e7:88:8b:30:d3:be:
52:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C7:15:E2:07:C1:7B:B7:83:4C:C1:A8:45:C1:6D:8E:B0:78:D3:99
X509v3 Authority Key Identifier:
keyid:BD:0C:A7:BB:7E:E1:45:97:A1:71:F1:B1:E3:E3:12:7A:79:DF:FF:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.20.84.0/24
Signature Algorithm: sha256WithRSAEncryption
63:5c:79:cb:56:2b:d5:69:49:d0:ce:6e:97:70:e0:cb:6f:44:
59:4a:c8:ff:ed:4c:45:0b:84:27:21:bb:c8:01:d2:78:25:7e:
be:6c:12:55:51:18:b2:88:b7:de:2c:07:b5:a6:87:16:15:1b:
81:84:62:62:09:a6:e9:8c:22:2c:9d:dd:cd:e1:15:60:ef:86:
64:ab:ea:3d:3b:03:be:2d:47:5a:30:a8:37:2c:c3:df:67:55:
d9:16:80:5e:ec:80:42:91:69:05:fd:de:04:b1:cc:07:5f:99:
0e:4c:f7:22:eb:84:99:af:45:fc:d3:73:a4:e1:84:d7:b0:bf:
01:5b:06:22:dc:e8:52:50:6d:8f:6f:09:03:57:28:63:01:c8:
c8:06:fe:13:b8:92:ac:2c:f7:d8:67:da:a2:5a:05:d0:f4:e3:
63:cf:55:4f:66:73:7f:c4:64:a4:90:a7:a2:82:b0:33:9c:1f:
59:2b:ba:a4:74:d5:4a:58:e1:2b:18:bb:00:0f:47:42:eb:29:
b5:b2:4d:ea:0c:84:a7:9b:b4:b1:22:a1:d2:b8:e1:9b:3c:78:
b6:0f:01:83:4f:bc:dd:73:25:54:75:a2:d6:49:e0:9e:16:55:
8c:90:99:bd:22:4e:96:dd:db:f6:13:36:0a:02:1e:ae:d0:bd:
3e:ce:f0:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:38:26 2025 by rpki-client