Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa
File: 3130332e34322e3131382e302f32332d3233203d3e203234353139.roa (raw, json)
Hash identifier: HHqxnvo/jJQgCNZXpj544snDh99Z+fGyg/N/7YitJ5U=
Subject key identifier: B3:BD:F5:97:69:0F:21:52:4D:95:87:20:AB:AA:C9:53:09:DD:29:0E
Certificate issuer: /CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8
Certificate serial: 30C6E43CA39F08CBE002EAC14B4750F2E68E289B
Authority key identifier: 6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa
Signing time: Sun 24 Nov 2024 05:00:01 +0000
ROA not before: Sun 24 Nov 2024 04:55:01 +0000
ROA not after: Sun 23 Nov 2025 05:00:01 +0000
asID: 24519
IP address blocks: 103.42.118.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:c6:e4:3c:a3:9f:08:cb:e0:02:ea:c1:4b:47:50:f2:e6:8e:28:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8
Validity
Not Before: Nov 24 04:55:01 2024 GMT
Not After : Nov 23 05:00:01 2025 GMT
Subject: CN=B3BDF597690F21524D958720ABAAC95309DD290E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a2:57:94:93:80:5a:a2:28:95:22:51:34:c5:
c0:1b:a9:ce:52:6a:fe:6a:25:e2:8d:68:5f:d1:e2:
4e:59:a5:9b:a7:fe:95:c1:07:93:9b:ae:1d:4e:f7:
08:0c:4b:c7:0d:47:c7:46:e3:02:5a:d4:63:70:d8:
4f:76:f2:fd:1b:bc:c7:84:e0:7a:b8:b5:57:43:3d:
aa:dd:73:61:fd:4f:cf:8a:0e:58:80:63:ad:c2:f9:
54:e7:d6:33:da:98:ff:7f:95:18:ac:f8:9a:8b:c1:
8f:13:77:3a:b4:00:2e:b2:89:ab:52:44:4d:88:dc:
e5:be:ff:e6:06:15:96:62:40:ea:af:10:ff:49:ca:
cf:45:73:e3:79:bc:fa:66:ab:39:34:e5:52:5f:92:
d8:46:83:6b:30:6d:7f:9c:26:9a:1f:09:8c:5a:65:
6f:5b:66:0b:1c:5e:f4:30:3c:ad:4c:03:dc:fa:3f:
32:e5:05:ee:df:8e:99:08:f3:cc:97:b4:7f:b3:06:
bc:2b:25:64:f0:ba:cd:d8:ad:ca:03:29:f4:46:e3:
65:4b:3c:fc:09:ce:3a:9a:68:dc:b7:37:d8:06:2d:
3d:ac:0d:47:f6:e1:5f:a0:ca:cf:bd:7e:cf:cb:01:
a9:01:3d:64:05:29:13:05:63:1f:d6:2d:11:75:f7:
e0:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BD:F5:97:69:0F:21:52:4D:95:87:20:AB:AA:C9:53:09:DD:29:0E
X509v3 Authority Key Identifier:
keyid:6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32332d3233203d3e203234353139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.42.118.0/23
Signature Algorithm: sha256WithRSAEncryption
53:18:e8:52:f7:11:a9:b2:b0:21:b6:6b:17:93:10:de:59:6e:
98:36:c4:6c:d5:08:2b:4a:f7:a8:e2:9c:18:57:8e:43:04:4f:
9f:cd:33:62:fc:5c:df:8f:35:04:8d:e0:25:72:b0:82:2f:d9:
2e:7d:a8:77:aa:a2:86:a8:5c:f0:15:f4:20:10:cf:e6:31:93:
8b:fd:bf:f8:d1:4d:8e:ec:f4:36:2b:ce:d7:c9:7c:a4:4d:41:
49:3e:1d:21:c6:6b:4b:0e:3e:2e:a6:76:a1:47:7c:24:5d:23:
26:5f:32:7d:5c:c6:7f:65:ca:5e:9f:f7:4b:d9:2f:46:9a:a6:
30:81:34:66:89:55:b9:de:91:2d:84:f6:ce:3a:33:dd:95:e4:
9d:46:b5:f7:5b:1e:c5:40:e6:f7:f8:f6:e7:20:33:b2:bd:53:
44:a7:35:f0:1b:6d:c7:8e:34:ef:4a:95:4c:49:30:ee:d1:f6:
7e:47:a2:6a:c3:53:d4:0c:0a:ee:c5:3c:df:5c:2a:3c:1d:d0:
cc:52:46:9a:dc:02:3f:fd:1e:3d:37:dd:93:2d:ec:e5:3d:cc:
8e:af:6b:c9:86:4d:67:74:d0:41:ff:27:5f:0a:c2:e0:29:2a:
21:f3:bb:95:89:58:61:bd:60:d3:d4:b7:df:54:e0:75:7c:24:
44:1a:ad:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:52:51 2025 by rpki-client