Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa
File: 3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa (raw, json)
Hash identifier: NjJcmD+G+kiFwmmP8zS7heQcwBVqq18Sis+HXMvM+ZY=
Subject key identifier: 5A:A6:EA:FE:FC:55:B3:6A:4B:90:62:DD:5A:26:54:C9:27:DB:4B:C5
Certificate issuer: /CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3
Certificate serial: 04596E78C0977F3356613CB083072F1A5781D11D
Authority key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa
Signing time: Fri 20 Dec 2024 07:03:00 +0000
ROA not before: Fri 20 Dec 2024 06:58:00 +0000
ROA not after: Fri 19 Dec 2025 07:03:00 +0000
asID: 138127
IP address blocks: 103.132.230.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:59:6e:78:c0:97:7f:33:56:61:3c:b0:83:07:2f:1a:57:81:d1:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3
Validity
Not Before: Dec 20 06:58:00 2024 GMT
Not After : Dec 19 07:03:00 2025 GMT
Subject: CN=5AA6EAFEFC55B36A4B9062DD5A2654C927DB4BC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5c:cc:ba:c4:87:84:68:84:8f:b2:a4:21:91:
db:d7:1c:6d:f3:1b:75:39:c0:12:ec:4e:dc:2c:ff:
68:e7:59:7f:47:1f:83:0e:4e:7c:46:69:bd:d6:9f:
6c:b3:1b:25:86:37:78:1d:bc:b6:91:0f:12:83:e8:
b9:d1:39:42:7c:bb:02:b7:26:e8:a6:ac:57:47:1b:
a0:dd:b7:34:8f:5b:45:b9:c0:1a:31:d0:95:67:bb:
1e:d5:3b:56:28:a6:fc:70:d5:87:7d:94:b1:f6:a5:
b5:6a:3f:ff:c3:3e:d4:8e:c3:57:2d:81:fb:ad:b3:
d8:e2:4a:36:1f:0b:6d:f9:98:90:36:93:b1:4b:e3:
69:23:1b:37:9d:03:1a:91:2e:f8:30:81:79:0f:25:
c5:8b:cb:31:3f:43:3f:b4:96:6f:4a:74:c3:35:e7:
9e:de:75:ef:82:08:9d:51:87:d0:80:01:72:b7:f0:
7c:1c:96:85:08:5a:43:9f:da:fb:a3:14:27:8d:d8:
18:71:73:e7:99:0a:8e:1b:3e:98:b3:f2:57:1f:91:
fa:e8:35:ad:6b:a8:1f:84:14:fa:a8:53:64:49:df:
2e:49:d3:4a:56:cb:36:be:23:e8:89:a9:f1:3b:9b:
09:e2:ca:00:56:f9:86:34:b5:41:09:31:83:16:fd:
69:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A6:EA:FE:FC:55:B3:6A:4B:90:62:DD:5A:26:54:C9:27:DB:4B:C5
X509v3 Authority Key Identifier:
keyid:3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.132.230.0/23
Signature Algorithm: sha256WithRSAEncryption
43:e8:4a:4d:5c:02:4a:96:49:ab:ef:01:59:17:48:9d:4d:30:
ab:7c:a7:91:9f:2c:9b:0b:fd:19:52:6e:4d:fd:3c:f9:bb:96:
33:da:c2:40:df:5d:5f:36:2c:3d:79:77:28:ed:48:1d:7c:81:
8e:06:35:b8:a4:6d:c5:88:cb:23:72:ed:72:d5:fd:30:79:da:
be:77:a9:ee:dd:71:60:51:d4:27:eb:38:f3:d0:1a:67:61:92:
81:cc:30:2c:7d:05:da:09:6f:ca:4d:8f:5f:4b:39:64:a6:58:
33:5f:18:df:7c:52:1f:05:b1:5a:5c:5a:ee:a7:a7:6c:5d:92:
14:87:24:c4:03:cd:cb:7d:d0:12:3d:9f:ff:e5:0f:ea:6b:48:
cc:60:72:d0:17:47:97:6a:ed:20:8c:21:2d:a6:a9:9e:e6:e4:
95:10:92:bd:ce:aa:dc:d8:f9:38:82:bf:87:c8:04:34:48:10:
42:7c:b3:91:cd:c0:25:3d:68:a7:cc:6b:78:73:5c:84:42:0b:
ab:1e:c8:6b:51:c9:b8:ff:e9:2f:8d:cb:af:73:1a:a4:0a:48:
37:41:c7:a6:8c:a4:c0:90:cd:25:2d:a5:d1:8b:13:49:f8:bd:
28:79:e5:a4:d4:f0:34:cb:b0:cd:05:86:6c:33:19:67:f1:41:
25:b7:0f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:45:51 2025 by rpki-client