Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/3130332e3137382e3135302e302f32332d3233203d3e20313439333234.roa
File: 3130332e3137382e3135302e302f32332d3233203d3e20313439333234.roa (raw, json)
Hash identifier: I/rkytrCsreSN7E1KqGsHJ84dCmK/xNAtlQhg9Bm6h8=
Subject key identifier: 4A:54:3D:93:69:E3:CE:DC:B5:5B:57:1D:C7:26:EB:B3:6E:F9:AB:D2
Certificate issuer: /CN=F1364C8B62D0A8EDFF2EB7CE55698011E828988A
Certificate serial: 47F90F0836FB952F4DEF22FCA4996CDAD8D640DE
Authority key identifier: F1:36:4C:8B:62:D0:A8:ED:FF:2E:B7:CE:55:69:80:11:E8:28:98:8A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/3130332e3137382e3135302e302f32332d3233203d3e20313439333234.roa
Signing time: Wed 09 Oct 2024 08:00:02 +0000
ROA not before: Wed 09 Oct 2024 07:55:02 +0000
ROA not after: Wed 08 Oct 2025 08:00:02 +0000
asID: 149324
IP address blocks: 103.178.150.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:f9:0f:08:36:fb:95:2f:4d:ef:22:fc:a4:99:6c:da:d8:d6:40:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1364C8B62D0A8EDFF2EB7CE55698011E828988A
Validity
Not Before: Oct 9 07:55:02 2024 GMT
Not After : Oct 8 08:00:02 2025 GMT
Subject: CN=4A543D9369E3CEDCB55B571DC726EBB36EF9ABD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d1:99:1b:7e:5c:45:19:30:db:67:97:05:44:
88:f8:e8:cd:c9:04:d5:84:98:20:bb:98:52:74:4e:
bc:e8:0c:1f:f7:87:48:cf:3a:75:9c:c3:eb:0d:e9:
d6:50:bc:ff:c1:0d:d6:80:d4:3a:10:c8:11:7a:22:
8f:d8:19:43:e5:37:96:1a:7e:17:3d:16:95:ff:ec:
2b:a6:e3:70:ba:c9:84:95:39:76:25:1c:f8:db:53:
3a:54:12:8b:f0:f1:5f:b0:48:ed:47:d7:98:b5:4c:
40:df:81:f3:65:b3:a7:6f:f5:ab:16:cd:0a:73:dc:
5f:5c:0f:76:70:a9:74:b3:2f:bc:05:19:8d:5e:f2:
07:33:a6:ad:df:1b:6d:85:09:e3:ca:c8:55:aa:97:
62:cd:ed:3e:27:01:d9:79:0a:22:90:3a:6e:ab:e4:
74:1c:8b:80:da:a5:8a:e5:fa:e3:f6:69:9d:5a:1e:
da:2c:ef:33:a9:0a:f4:3c:a7:95:af:c1:1d:a6:c0:
f6:90:09:54:94:c1:cb:e0:00:f7:b0:8d:a0:7b:09:
ea:99:50:db:d4:20:2e:1a:02:a3:55:42:18:6d:0f:
63:d0:96:89:aa:5b:99:26:46:39:76:b2:cb:d7:fe:
82:09:10:83:9a:09:f5:16:c0:0c:87:44:64:2e:24:
c1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:54:3D:93:69:E3:CE:DC:B5:5B:57:1D:C7:26:EB:B3:6E:F9:AB:D2
X509v3 Authority Key Identifier:
keyid:F1:36:4C:8B:62:D0:A8:ED:FF:2E:B7:CE:55:69:80:11:E8:28:98:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1364C8B62D0A8EDFF2EB7CE55698011E828988A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/465fa98f-1e85-4638-bb9d-287378a4ce87/0/3130332e3137382e3135302e302f32332d3233203d3e20313439333234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.178.150.0/23
Signature Algorithm: sha256WithRSAEncryption
07:1a:fb:9b:c3:78:6d:f4:43:69:5d:cf:17:f9:30:04:8f:50:
7b:56:c5:c2:4b:40:ad:87:71:f0:a1:e1:e4:f5:01:67:e5:f4:
a8:b8:a1:38:c8:2e:81:27:36:0f:56:3e:97:d7:eb:5d:26:70:
a6:5a:92:42:35:97:c1:73:6f:07:2d:17:bc:ae:a8:46:e5:3a:
8f:81:35:61:19:d5:9b:08:b1:ae:c5:49:93:c3:9c:ce:aa:c1:
95:db:4f:78:65:dc:c4:45:b9:49:9a:a3:2a:e2:9e:39:7e:d2:
9e:15:2d:fe:a7:d6:2a:19:63:2c:e1:83:bd:1c:57:14:3a:69:
ca:c6:52:8b:2f:95:c7:cb:7f:83:0c:53:d0:56:44:72:d2:f5:
d4:3c:1e:fd:f8:e5:1c:3c:ff:43:af:8f:db:80:c5:4f:a3:7c:
fd:a8:2c:c3:df:b3:1b:9d:8a:28:c0:f3:e1:7a:76:bb:ac:79:
67:23:72:b2:58:5c:e7:9a:38:6a:a4:e4:9e:5d:80:b7:2b:c8:
5b:fe:b7:e8:08:42:31:53:27:f0:2f:cc:56:b9:28:52:bf:95:
50:82:91:75:c4:ca:54:c1:f4:68:8d:6a:48:c9:55:81:e9:c5:
3a:9a:4b:3c:ba:83:4d:2b:b4:19:19:de:97:66:59:8b:06:50:
65:13:90:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:50:05 2025 by rpki-client