Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa
File: 3130332e32332e3233322e302f32342d3234203d3e203538343735.roa (raw, json)
Hash identifier: U43WoSNbXdcBa1UWb8d2YU9Hoj0ZL679eSTM/whmqA4=
Subject key identifier: CC:1B:E0:A2:AD:65:62:28:0E:5C:93:74:DB:58:23:5C:B5:CE:15:D3
Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98
Certificate serial: 0DA24FC11E2FEECD47C0ABA51D2C03B91A9F93F9
Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa
Signing time: Mon 01 Jul 2024 01:06:02 +0000
ROA not before: Mon 01 Jul 2024 01:01:02 +0000
ROA not after: Mon 30 Jun 2025 01:06:02 +0000
asID: 58475
IP address blocks: 103.23.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:a2:4f:c1:1e:2f:ee:cd:47:c0:ab:a5:1d:2c:03:b9:1a:9f:93:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98
Validity
Not Before: Jul 1 01:01:02 2024 GMT
Not After : Jun 30 01:06:02 2025 GMT
Subject: CN=CC1BE0A2AD6562280E5C9374DB58235CB5CE15D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3c:70:04:a5:a8:d7:8d:4b:da:50:1e:5c:2c:
ae:09:e5:fb:e0:c3:30:fb:1c:bc:2d:aa:87:7f:b2:
2a:98:b5:87:d3:6d:27:91:10:3b:4e:87:e8:70:66:
da:a2:84:d0:1d:46:41:0d:8a:9a:2b:72:7c:17:02:
5d:84:6b:71:cf:eb:75:3e:77:ee:5a:42:66:82:e9:
24:6d:29:2e:df:83:c2:48:f6:9a:5a:f9:38:41:90:
99:4e:06:9f:0f:0a:a5:c1:78:59:a5:61:c5:54:dd:
5d:f0:9e:67:eb:fe:80:de:4b:ae:43:4d:d0:c6:2d:
3e:78:86:4a:b8:89:67:a9:97:25:63:70:26:5d:87:
8a:7d:9e:94:ee:cd:99:b0:c3:a7:2a:3c:96:81:70:
5e:76:fb:52:ab:2c:5c:d5:cb:57:39:1f:66:f3:af:
3e:25:38:dc:ca:20:8d:be:94:93:32:c8:ca:ff:57:
e6:70:46:d2:5a:44:34:f0:33:99:b2:28:43:dc:98:
21:7c:ae:83:29:79:cc:e4:d7:37:f4:91:44:27:bf:
ce:b0:d0:4a:85:49:75:0f:5f:58:e2:a7:00:c9:98:
c9:0d:e7:13:5a:9d:3c:57:a3:52:c8:4e:9e:94:c2:
80:e5:50:07:e9:9f:38:8e:13:f1:17:72:1f:3f:46:
ac:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:1B:E0:A2:AD:65:62:28:0E:5C:93:74:DB:58:23:5C:B5:CE:15:D3
X509v3 Authority Key Identifier:
keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/3130332e32332e3233322e302f32342d3234203d3e203538343735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.23.232.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f5:2d:42:20:1a:28:2a:d4:59:8f:94:87:c6:21:66:49:60:
9c:56:e4:7b:2f:6c:89:37:de:43:45:f5:9f:d5:2d:a2:59:99:
40:dc:d5:05:cd:56:88:cd:eb:db:da:07:e1:e8:3a:e3:f5:29:
cc:4d:eb:ee:b2:a2:f4:8b:f3:f4:6d:80:d8:61:25:57:ee:df:
0d:92:80:41:3d:40:2d:14:bf:24:93:0b:cd:91:44:f2:7a:e6:
10:b1:47:7d:9d:79:ac:77:18:b3:fb:8e:29:2f:7a:fc:67:a6:
4b:85:16:f8:a7:6e:11:17:82:17:f1:7b:b5:47:df:84:85:31:
26:33:02:f9:8c:1f:39:16:0a:ca:56:f6:1c:fd:a5:44:5b:72:
32:8a:e5:2a:33:cb:fa:a7:ae:85:cb:ad:09:b4:9a:26:7f:3c:
96:e5:6a:88:3e:25:83:9b:a6:cf:05:90:49:24:3e:b6:60:e1:
23:f7:9e:00:06:a1:12:0b:7e:f7:10:74:a3:8e:75:e9:16:9d:
84:b2:5a:c4:78:28:d3:2a:62:4b:80:95:51:0d:b6:cc:fa:25:
39:c2:22:78:02:4e:14:1d:0f:2d:28:16:2a:1e:15:20:f7:31:
62:b0:9a:8c:79:dc:2d:18:31:00:5c:c2:3e:48:ef:88:09:78:
63:0a:ef:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:48 2025 by rpki-client