Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32342d3234203d3e20313339393839.roa
File: 3130332e3134382e37362e302f32342d3234203d3e20313339393839.roa (raw, json)
Hash identifier: FajHoBMw9AffvLL7aPy+XxeSPMHuRGpEhAp57EEf9lo=
Subject key identifier: FB:31:6C:47:CB:BD:37:6C:EE:9E:2F:4C:A4:6B:B0:11:FF:F9:B3:EC
Certificate issuer: /CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0
Certificate serial: 09A7B71BC48F18B9F7B80ABF730E160F7F955A
Authority key identifier: 5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32342d3234203d3e20313339393839.roa
Signing time: Mon 01 Jul 2024 01:04:00 +0000
ROA not before: Mon 01 Jul 2024 00:59:00 +0000
ROA not after: Mon 30 Jun 2025 01:04:00 +0000
asID: 139989
IP address blocks: 103.148.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:a7:b7:1b:c4:8f:18:b9:f7:b8:0a:bf:73:0e:16:0f:7f:95:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5A0CBE2DBCF9883569F8C24BFB9E595442D835D0
Validity
Not Before: Jul 1 00:59:00 2024 GMT
Not After : Jun 30 01:04:00 2025 GMT
Subject: CN=FB316C47CBBD376CEE9E2F4CA46BB011FFF9B3EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:04:48:a5:a1:cb:78:38:cd:ee:92:7c:1e:
97:d7:5f:b8:ba:c4:1c:1c:b9:e4:fc:e6:98:29:0a:
22:47:35:e1:7a:71:dc:69:e2:00:d8:c4:54:9a:5b:
1b:0e:54:5b:4a:40:ab:0c:ee:4a:50:31:d5:dd:ae:
be:71:e3:ee:ad:da:ce:f1:f0:8f:a0:d4:d0:e0:84:
9b:24:f7:4d:f4:de:6b:b9:2b:32:e7:ac:c8:60:8d:
a3:f8:28:2f:81:34:0b:82:63:4e:78:07:f9:2f:08:
67:ca:32:73:2b:6a:3f:a9:9b:4f:88:a9:5c:48:00:
39:c9:94:85:8b:b0:4f:db:d4:4a:20:36:d7:02:90:
2b:1c:ec:19:bc:10:54:85:bc:83:fb:7f:7e:5b:69:
bb:1e:17:af:94:97:e8:31:44:91:b3:ed:99:2c:b3:
7d:29:b2:48:7f:8f:6a:aa:92:71:63:ac:4b:f3:aa:
b3:ab:d4:5a:4f:2c:05:7b:f2:fb:ab:eb:ae:4a:e4:
c4:cb:63:34:63:b0:30:82:40:29:77:64:62:1a:b5:
97:55:f5:22:f7:33:60:b2:31:c7:e7:4e:53:ba:08:
4d:34:d5:48:e0:e8:b0:5c:4a:5a:3b:41:b1:4d:bb:
c9:6b:25:ea:a0:af:9f:46:79:2f:5d:54:ed:1e:3a:
c0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:31:6C:47:CB:BD:37:6C:EE:9E:2F:4C:A4:6B:B0:11:FF:F9:B3:EC
X509v3 Authority Key Identifier:
keyid:5A:0C:BE:2D:BC:F9:88:35:69:F8:C2:4B:FB:9E:59:54:42:D8:35:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5A0CBE2DBCF9883569F8C24BFB9E595442D835D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4031746e-b0f6-4827-8c4e-b8192decc39a/0/3130332e3134382e37362e302f32342d3234203d3e20313339393839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.76.0/24
Signature Algorithm: sha256WithRSAEncryption
49:9e:fa:ad:56:e9:da:24:0f:e2:99:61:00:d0:cf:b3:b7:d9:
37:27:41:19:44:0f:3a:71:22:ac:43:5c:00:94:01:5c:1c:69:
71:69:62:ac:ce:9c:40:a3:e1:48:c6:05:b3:39:6f:fc:b3:8c:
72:4d:df:fb:61:2c:07:34:b1:19:d1:38:a6:30:30:52:73:71:
d5:bf:ea:e5:e0:2c:bd:cd:8a:25:6c:51:bd:8a:e4:49:76:6c:
dd:e0:84:6e:4a:51:df:fd:ad:58:cf:72:13:f3:58:35:e2:16:
01:05:15:b3:9e:83:1c:e8:1f:3e:a4:47:fa:88:b0:6a:6d:2f:
14:9f:cf:c5:e8:21:d5:1f:b4:09:8f:a9:b0:cd:cc:d7:4b:f6:
b7:c6:ac:7f:25:ea:be:b6:dc:a1:67:e0:8a:2c:28:2b:a3:96:
b7:53:d9:8d:80:a2:3f:e4:02:31:ac:05:9b:bb:17:1f:37:8e:
20:40:c8:8f:f9:78:b5:94:04:a2:c3:3d:9e:d1:2f:d4:ac:ba:
28:6d:42:52:5a:60:50:00:96:d8:89:2b:ef:a3:79:01:01:02:
27:b2:8a:fa:7c:92:49:0d:9f:f3:a1:5d:a8:11:75:51:d3:1a:
8b:25:91:16:a6:cd:36:df:7e:c3:02:5c:fd:2c:d1:ad:eb:e3:
9a:d1:e0:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:18:30 2025 by rpki-client