Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131362e302f32342d3234203d3e20313337333738.roa
File: 3130332e3131392e3131362e302f32342d3234203d3e20313337333738.roa (raw, json)
Hash identifier: GyQ3rTA4havMS5lidJTX5ZhWoHPWWQvhSKW+0x1lFv4=
Subject key identifier: E3:44:00:C2:25:82:0A:16:AD:A0:B1:80:34:96:D8:6D:39:CD:36:F3
Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F
Certificate serial: 2ECF8C59795796E1933601C8DE5986A5FD9EEEBC
Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131362e302f32342d3234203d3e20313337333738.roa
Signing time: Mon 01 Jul 2024 01:03:26 +0000
ROA not before: Mon 01 Jul 2024 00:58:26 +0000
ROA not after: Mon 30 Jun 2025 01:03:26 +0000
asID: 137378
IP address blocks: 103.119.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:cf:8c:59:79:57:96:e1:93:36:01:c8:de:59:86:a5:fd:9e:ee:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F
Validity
Not Before: Jul 1 00:58:26 2024 GMT
Not After : Jun 30 01:03:26 2025 GMT
Subject: CN=E34400C225820A16ADA0B1803496D86D39CD36F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:91:d8:bf:a9:53:81:8a:ec:bb:7a:57:88:bf:
13:03:39:c1:ea:38:bd:99:85:0e:f6:a4:33:ac:74:
42:2f:38:fd:ac:73:c8:1c:7c:56:d0:40:07:95:3c:
66:10:6b:dd:5e:8b:91:2c:b3:1c:d8:ca:30:1b:e7:
29:b5:ea:33:e4:3c:15:6b:f6:2f:5e:ce:dd:ff:31:
ee:b3:5c:ba:c7:6b:83:6e:72:1a:89:aa:43:ee:1b:
17:3f:4c:eb:f8:5f:96:6c:37:7a:81:03:98:59:e8:
cb:86:fc:c8:ba:de:4b:04:d2:8b:f9:21:3b:a5:df:
c0:5d:1b:7d:50:1b:b9:5f:3a:f5:f7:a5:76:b5:bc:
76:8e:54:1c:54:6e:0c:b1:02:e7:05:d9:e4:a1:2e:
d4:89:0c:f2:16:48:af:9d:59:9a:16:06:5a:b9:4d:
98:96:38:a0:a6:e1:a1:9b:ee:58:68:79:39:96:1f:
ed:7f:68:a3:9d:16:9c:ca:54:c4:95:99:c4:42:41:
8c:ca:3a:df:5e:94:e7:53:c7:da:ea:1c:77:11:17:
95:5c:11:0a:97:56:58:71:bb:19:ff:c8:7e:07:7c:
fc:d8:ac:16:6a:5d:25:d0:a4:ec:21:cb:d5:11:62:
a5:62:5c:c7:65:b2:55:6b:e6:74:a5:e4:01:ff:5c:
f6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:44:00:C2:25:82:0A:16:AD:A0:B1:80:34:96:D8:6D:39:CD:36:F3
X509v3 Authority Key Identifier:
keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131362e302f32342d3234203d3e20313337333738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.116.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:fe:2f:2c:a2:f2:eb:f2:61:56:f3:3d:ba:fc:85:fd:c9:87:
e8:3c:b0:33:cf:91:48:f5:0e:ee:98:ed:91:cd:e2:ea:72:48:
31:11:55:7c:fb:13:2e:4f:ce:67:54:18:d6:a1:68:ac:ec:46:
fb:57:9c:74:43:4a:98:cd:d7:83:1b:d7:e2:ca:ad:ec:d2:29:
03:bf:a4:80:87:2f:31:a1:6b:78:4b:b5:a3:69:9a:76:e8:47:
6c:cc:40:59:ba:d5:ce:19:e9:e2:fb:07:c0:cd:41:dd:e8:10:
3d:bd:f0:c2:2f:48:e3:c7:e4:35:27:ff:5c:f9:0d:1c:15:21:
d7:d8:06:a3:55:0a:f7:9e:87:f5:b3:38:ef:d4:8c:a4:f2:d9:
48:9a:b3:e2:fc:96:ab:32:02:2e:41:03:22:c5:27:77:b3:36:
72:75:f0:8c:2d:29:3f:8f:77:c1:f4:19:fc:d5:2c:99:b9:15:
4d:ed:60:b5:c1:cb:ba:c2:c0:6e:77:10:3f:c1:84:95:c4:da:
1e:e8:bf:4c:d9:b4:93:8b:2e:9e:9a:db:23:28:72:d1:aa:86:
09:c2:e3:79:d3:81:80:5d:e2:9a:73:0d:15:10:cc:50:eb:b0:
85:c6:35:33:bc:13:03:ea:56:47:92:e4:5f:91:90:4a:01:be:
c3:b0:1d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:08 2025 by rpki-client