Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32342d3234203d3e203234353139.roa
File: 3130332e34322e3131382e302f32342d3234203d3e203234353139.roa (raw, json)
Hash identifier: vCgDnA33NAkXtanYsGnqZiMWsel/bsPJTrf5ZDKywHU=
Subject key identifier: 03:8E:7E:03:A8:B6:5A:44:52:0C:4D:D7:96:70:EF:76:16:0A:DA:D8
Certificate issuer: /CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8
Certificate serial: 6E15B3A89DE024FE4E6DF613760F77019B6E0A80
Authority key identifier: 6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32342d3234203d3e203234353139.roa
Signing time: Sun 24 Nov 2024 05:00:01 +0000
ROA not before: Sun 24 Nov 2024 04:55:01 +0000
ROA not after: Sun 23 Nov 2025 05:00:01 +0000
asID: 24519
IP address blocks: 103.42.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:15:b3:a8:9d:e0:24:fe:4e:6d:f6:13:76:0f:77:01:9b:6e:0a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8
Validity
Not Before: Nov 24 04:55:01 2024 GMT
Not After : Nov 23 05:00:01 2025 GMT
Subject: CN=038E7E03A8B65A44520C4DD79670EF76160ADAD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e4:ba:63:3c:0a:67:ed:40:44:c0:74:2e:70:
12:fb:d5:8a:27:22:f6:2c:4b:52:08:89:22:b3:b0:
02:87:8e:3b:0f:b0:df:57:c2:14:f6:43:2c:d2:9f:
cb:43:61:b0:d1:28:66:87:70:9d:0f:6d:30:41:e7:
5c:89:0b:ca:45:61:11:b8:e2:42:67:04:dd:a8:ca:
f8:31:f4:17:4a:07:71:5d:2b:7f:9b:d5:e8:6b:6c:
3b:51:b5:ab:dd:d6:c1:e8:62:39:02:7d:32:b3:32:
0c:24:03:ba:16:cd:74:5b:54:19:6f:a3:c0:e0:46:
bb:9c:e1:df:c4:8a:06:fd:f6:d1:12:d5:82:86:cc:
b3:23:0d:aa:ed:7d:ce:70:de:f6:1a:5e:53:d4:98:
33:b0:1c:95:6f:78:26:28:5a:05:a4:99:e3:33:d4:
5d:e9:94:ce:9a:5a:16:4b:62:4c:7c:f7:0a:3d:d2:
76:b3:d6:54:5c:03:55:7f:54:de:e4:50:6c:34:08:
51:91:17:14:f0:55:02:62:fc:c0:90:52:36:7b:9e:
83:ff:07:fd:27:29:35:f5:b4:5e:a1:48:e8:47:a5:
28:28:17:8b:ea:f9:aa:ed:e8:51:46:cc:b6:55:e9:
b5:c4:6c:90:6f:45:74:16:ca:d8:48:28:81:fd:5c:
b8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8E:7E:03:A8:B6:5A:44:52:0C:4D:D7:96:70:EF:76:16:0A:DA:D8
X509v3 Authority Key Identifier:
keyid:6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131382e302f32342d3234203d3e203234353139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.42.118.0/24
Signature Algorithm: sha256WithRSAEncryption
88:b2:0b:98:7f:2f:be:9a:38:0b:89:a7:8c:d2:0c:f4:22:44:
cd:6c:7f:c4:2e:30:fa:df:f0:e0:19:01:51:a3:48:0e:b7:2e:
27:56:89:f1:7d:da:a3:36:da:4d:9e:47:c9:9c:89:ba:11:2d:
91:36:7b:43:58:bf:6f:ed:7d:f6:65:5f:ad:ce:d3:e6:86:4f:
94:cc:0b:18:c4:5a:d0:37:49:ef:89:4e:98:d0:a6:97:d0:86:
e2:9d:83:d0:a8:37:c6:7d:a5:2a:05:51:5f:ba:e7:58:cb:92:
bb:d0:60:50:45:f8:18:c7:db:e9:45:e5:61:e3:d0:4a:24:56:
7a:e5:c0:52:45:18:2f:8f:8a:e3:85:2c:8a:80:34:47:41:60:
ee:9f:c9:d3:2a:22:a8:38:4b:6a:3f:17:a2:ce:ba:54:49:97:
86:d7:9d:93:4d:d7:d9:c4:ca:c7:70:7a:e2:a2:c2:00:33:b4:
60:19:59:04:f6:bf:ab:a5:45:cf:db:80:d6:29:83:c1:f9:44:
c3:40:8f:5c:9f:59:d2:bb:e8:83:f7:d4:ed:73:80:49:fd:86:
7a:43:28:60:94:e6:78:b3:21:d7:29:a5:53:7f:a2:ce:69:5e:
25:8f:6b:12:91:98:e1:21:92:84:18:37:ab:1d:84:ca:af:4a:
25:b7:48:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:28 2025 by rpki-client