Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa
File: 3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa (raw, json)
Hash identifier: FuTP+olekR94POOQRMWB2DM9MZrHgp1r/imUNhheQk0=
Subject key identifier: 0E:AD:86:84:25:F0:E1:E4:70:10:A7:F1:03:6F:B8:04:BE:AA:A8:4B
Certificate issuer: /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014
Certificate serial: 45C6D1B6DCFA72ADC7100A831F964C3DDA063E1A
Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa
Signing time: Tue 08 Oct 2024 06:00:01 +0000
ROA not before: Tue 08 Oct 2024 05:55:01 +0000
ROA not after: Tue 07 Oct 2025 06:00:01 +0000
asID: 134644
IP address blocks: 103.207.236.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:c6:d1:b6:dc:fa:72:ad:c7:10:0a:83:1f:96:4c:3d:da:06:3e:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014
Validity
Not Before: Oct 8 05:55:01 2024 GMT
Not After : Oct 7 06:00:01 2025 GMT
Subject: CN=0EAD868425F0E1E47010A7F1036FB804BEAAA84B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a7:1a:95:2a:b0:a1:ff:f6:3c:b7:d1:cb:35:
0b:91:aa:a2:fe:9a:20:5b:9a:a7:70:1b:11:71:07:
d7:6d:80:ea:fb:15:17:1f:de:93:5b:d1:c7:01:48:
2b:6d:c9:b9:5e:b9:0f:84:bd:f3:ff:e6:83:30:da:
3d:13:33:ef:3c:8a:52:43:6e:cc:b7:f4:55:ed:90:
fa:a7:c5:49:88:b4:3a:d1:05:7f:88:34:90:9a:f5:
d6:80:f4:56:27:7f:4b:07:ed:b7:f1:d4:8a:8b:d8:
d8:6e:b6:f3:11:9b:95:db:63:87:fd:e2:9a:1f:b2:
06:1a:72:8f:93:08:9f:e3:b9:31:90:40:0e:69:be:
00:c8:f8:cb:a5:c2:44:00:f5:ac:6c:9a:c3:d9:54:
b5:63:ab:89:b6:2b:f7:af:15:b9:da:c0:a6:ba:78:
7d:a5:e9:6d:f1:4f:9e:24:0e:1c:c8:27:55:fd:3e:
0d:dd:a8:ff:36:00:5e:19:68:ca:84:9f:03:f3:45:
25:ee:7c:5d:b7:44:e7:77:c4:04:82:94:31:9c:46:
1d:ad:1f:a1:0f:83:85:d0:15:61:b6:50:e5:0b:2f:
9b:ba:cc:4f:aa:82:3c:de:a7:8e:a0:bb:81:02:5a:
bd:80:5b:14:26:f6:f5:91:22:e1:25:2a:ae:3e:2f:
28:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AD:86:84:25:F0:E1:E4:70:10:A7:F1:03:6F:B8:04:BE:AA:A8:4B
X509v3 Authority Key Identifier:
keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233362e302f32332d3234203d3e20313334363434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.207.236.0/23
Signature Algorithm: sha256WithRSAEncryption
93:4e:e0:f2:47:e9:b8:be:41:3e:9c:6b:17:ff:7f:28:95:26:
69:90:0c:86:a3:a6:81:0a:77:5b:d8:a0:b1:be:bb:4f:96:f6:
13:ee:d9:ca:27:10:da:48:70:9a:e9:2d:fc:79:8a:b2:22:ef:
4e:dc:b2:17:66:fd:e1:69:d5:00:f2:1a:2f:0e:93:e8:28:84:
84:21:9f:8e:99:dc:2e:89:a8:e8:8e:38:a1:8d:e4:01:cf:4a:
fa:32:bc:41:ec:9e:a2:8f:a5:84:a8:2a:d6:b9:6a:fd:07:f5:
9f:3d:c3:d6:97:2e:ca:5a:92:a5:5d:fe:27:86:a1:a4:28:37:
67:eb:2a:ea:4b:04:5c:24:4d:da:d5:9f:08:50:9f:65:cd:be:
06:4a:6b:59:60:9a:9d:4d:f5:cd:56:3e:8f:b7:b2:b3:67:1a:
a4:f1:a8:cf:98:f8:74:cb:ca:85:51:3c:12:61:67:b4:41:5a:
fa:99:22:93:89:c5:ef:f9:94:b4:88:d8:14:1a:8a:7a:ee:38:
5e:24:cb:a6:09:a9:84:8f:e9:04:90:a0:fa:ee:af:0d:55:8b:
0c:70:a5:d8:d4:f9:e7:9b:7d:53:19:d7:5b:95:a0:68:dc:46:
ab:3b:6e:64:9e:77:a8:19:01:c8:20:50:f3:be:3a:51:69:be:
e2:31:8f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:48 2025 by rpki-client