Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa
File: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (raw, json)
Hash identifier: ZcflU18QHaOG0H5AVVuZs+fe6ZIRvg4OT/QSDZzqWpk=
Subject key identifier: FA:55:92:F1:68:F0:23:88:A4:C0:A0:2F:10:67:14:DD:8C:0B:EB:C5
Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1
Certificate serial: 61917C1385D4C1811E6AF51B117F9540A5136F98
Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa
Signing time: Sat 07 Sep 2024 15:00:01 +0000
ROA not before: Sat 07 Sep 2024 14:55:01 +0000
ROA not after: Sat 06 Sep 2025 15:00:01 +0000
asID: 147128
IP address blocks: 103.176.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:91:7c:13:85:d4:c1:81:1e:6a:f5:1b:11:7f:95:40:a5:13:6f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1
Validity
Not Before: Sep 7 14:55:01 2024 GMT
Not After : Sep 6 15:00:01 2025 GMT
Subject: CN=FA5592F168F02388A4C0A02F106714DD8C0BEBC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a7:d0:c8:b3:4d:13:dc:59:21:20:24:6a:84:
13:07:05:b7:14:8b:d3:ba:f3:cb:8a:e4:68:67:87:
72:d4:db:fe:5a:46:91:76:db:ca:ba:db:8a:d2:8f:
56:b6:c6:e3:32:bc:71:ac:61:c3:3c:2b:bc:47:62:
a4:3a:98:bc:04:58:d9:d3:88:6d:9c:b4:c2:ce:c3:
ec:36:17:cf:78:fd:1b:3f:89:a8:3b:2b:8e:55:e6:
e3:60:d0:51:6c:1f:59:ad:32:e1:83:57:dd:32:35:
38:72:cd:b1:60:ff:ff:2a:3f:8c:0c:ef:5a:03:1a:
fc:4e:cf:25:31:09:68:c4:a7:8e:19:a1:e0:ba:58:
ce:59:f8:a0:95:d5:dc:96:58:2a:c0:38:e3:e3:e6:
ad:00:2e:2a:08:1f:52:bf:c2:3d:05:4b:cd:63:3a:
6e:9b:37:7e:18:c8:9b:ce:85:1c:da:42:24:89:b2:
96:8d:8f:19:d5:20:98:72:1c:d0:4a:21:bc:eb:e9:
c6:66:1d:c9:a8:09:7f:59:3d:6b:53:c8:f7:9c:93:
76:d2:db:bf:8e:c7:8b:d1:55:1d:0d:9a:6c:d0:7c:
b4:a5:aa:0d:e7:4e:33:dc:bc:a5:7b:48:42:19:9d:
d1:37:13:98:66:33:cd:1f:08:05:cc:79:4e:d7:7a:
12:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:55:92:F1:68:F0:23:88:A4:C0:A0:2F:10:67:14:DD:8C:0B:EB:C5
X509v3 Authority Key Identifier:
keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.176.44.0/24
Signature Algorithm: sha256WithRSAEncryption
97:90:c1:d5:f6:8c:8b:17:b7:4f:92:2c:dc:d1:46:1e:36:0a:
e1:d7:a5:ad:95:f7:61:47:5f:1b:15:2f:8b:a4:2c:8c:5e:93:
ad:55:35:87:e2:d7:cd:78:6c:66:88:77:4e:bf:e6:b4:75:69:
b4:f3:20:e3:f2:4b:84:85:57:00:7b:f7:ec:ca:6f:ea:3b:9a:
04:10:84:16:ac:31:f7:fe:ec:85:6c:6a:13:2b:a5:7b:fb:17:
f7:25:73:65:5b:9a:49:dd:51:5d:a7:28:9a:c9:c2:a3:82:24:
d7:20:01:e5:cc:71:9a:4f:5b:29:67:3b:82:4d:a4:bd:64:e0:
a9:fc:87:6d:9f:5c:d0:c6:43:e7:43:3b:39:cb:e0:10:29:1d:
e4:0b:76:93:4a:73:18:ad:a9:0a:64:09:de:82:a6:c9:97:90:
26:65:50:f3:13:ca:dc:92:84:bc:8d:56:2e:05:8d:b6:6e:ef:
62:aa:38:72:82:a1:fc:40:2d:ee:8e:4e:fb:c9:80:fb:d3:a9:
99:ea:89:5c:9b:8b:7c:e5:48:05:be:c5:75:2b:1d:5a:66:b7:
9e:bb:f0:d1:44:b1:5f:c9:bc:1b:c2:e2:8e:fd:0b:e3:42:a8:
24:39:d7:59:3d:a2:2d:f3:fd:8f:a6:26:c6:e7:8d:14:0b:1d:
03:c9:62:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:40 2025 by rpki-client