Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa
File: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (raw, json)
Hash identifier: b4KiMwiJASyBICznuxWYSVpBPiU9qpEIZ1f+n3s+3IM=
Subject key identifier: DC:BC:82:33:C5:ED:F9:E4:03:52:5C:ED:E7:CF:EF:8A:B5:AA:7C:84
Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59
Certificate serial: 1B56BB0F64D4EBA052DFA62491497C71BC14EE62
Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa
Signing time: Wed 02 Oct 2024 06:00:01 +0000
ROA not before: Wed 02 Oct 2024 05:55:01 +0000
ROA not after: Wed 01 Oct 2025 06:00:01 +0000
asID: 141596
IP address blocks: 103.160.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:56:bb:0f:64:d4:eb:a0:52:df:a6:24:91:49:7c:71:bc:14:ee:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59
Validity
Not Before: Oct 2 05:55:01 2024 GMT
Not After : Oct 1 06:00:01 2025 GMT
Subject: CN=DCBC8233C5EDF9E403525CEDE7CFEF8AB5AA7C84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e9:b2:ea:5e:6d:84:b2:3e:0b:d3:30:c7:b0:
37:6b:39:30:a5:9b:5a:b8:3d:16:fd:92:95:f7:d8:
d4:b2:f9:0b:2a:57:0a:48:28:c6:97:c2:aa:e6:f8:
6e:98:94:c3:29:b5:22:b9:ef:a4:1e:90:2b:0c:64:
99:c8:9f:dd:ec:c2:0e:fa:fe:15:bb:2e:45:9c:09:
d0:d8:3e:18:80:ca:92:e5:fa:c6:cb:82:17:50:f5:
1a:36:d1:89:4c:cc:8f:40:ae:2d:b4:d5:03:8d:06:
0e:44:3c:8b:9d:bc:d0:84:fb:fb:4c:7b:98:80:63:
a1:91:14:33:45:5c:06:67:d2:16:28:df:f0:33:a9:
5c:bd:04:f7:3a:6c:18:41:bc:32:54:11:71:e1:fd:
d0:30:05:49:82:b1:8a:59:aa:bc:fc:2a:7d:53:d5:
20:36:ed:39:44:a1:bd:95:e8:9b:9a:28:96:ec:0f:
4b:7d:49:8f:b3:35:de:85:b8:50:73:95:37:16:7d:
63:43:da:25:99:a8:36:20:c9:f6:7d:26:fc:9c:ac:
49:b4:55:88:b1:54:a3:f2:c9:51:d5:fa:35:91:39:
61:5b:23:67:76:8b:c5:85:94:76:72:b5:82:50:62:
64:dd:f0:0b:b7:74:f8:60:1f:5b:20:9e:24:c5:d0:
f0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BC:82:33:C5:ED:F9:E4:03:52:5C:ED:E7:CF:EF:8A:B5:AA:7C:84
X509v3 Authority Key Identifier:
keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.41.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:9c:83:15:6b:19:bd:4a:a6:27:86:08:79:c1:c3:42:68:43:
bb:87:0e:53:55:14:5b:04:d6:7b:d0:f1:26:66:15:cd:8d:68:
14:c4:fb:49:08:01:2c:32:ae:92:b9:24:16:20:0a:6e:a5:07:
c5:b5:10:2a:5c:85:2a:f7:15:4f:17:c4:da:25:66:7a:18:ed:
d3:10:0d:b5:33:e1:f1:ac:26:5c:b2:24:db:70:7f:be:5c:50:
23:ab:03:f5:06:52:24:25:98:e0:a7:0f:8c:0a:f5:dd:c4:9c:
f4:50:bf:e2:7c:8a:23:a0:ba:b6:5e:b2:a9:7d:c8:9e:3f:bd:
dc:58:71:c8:77:07:73:4c:6f:81:c3:ad:59:fe:99:f2:5c:85:
a0:24:76:3d:b2:63:e8:e6:32:e0:96:30:4d:99:62:d3:3a:07:
7b:97:f9:f9:fd:8f:3f:57:a9:eb:bb:6f:f7:ef:53:03:38:42:
a9:dd:1c:b9:02:23:01:fd:49:fd:ab:52:0b:4b:cd:c7:05:74:
fc:38:93:34:1d:3c:9c:64:cb:5f:08:1d:19:37:6f:07:9c:1e:
4e:3e:9c:e1:e0:7b:ea:a6:90:e7:b9:dc:31:fc:c5:f5:9a:6a:
89:5a:b2:c2:50:76:84:58:23:3b:f2:75:e1:60:a5:e8:42:b7:
7a:79:1b:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:48:00 2025 by rpki-client