Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131392e302f32342d3234203d3e203234353139.roa
File: 3130332e34322e3131392e302f32342d3234203d3e203234353139.roa (raw, json)
Hash identifier: tlMLEqQhJ1FXYwOLCCvAFRe52QGRRF02EIII3xVkWN0=
Subject key identifier: 17:B9:0E:EB:0C:BB:54:7F:5D:EA:09:34:55:B5:6B:C2:DF:87:23:87
Certificate issuer: /CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8
Certificate serial: 69B3BE47734BA551AD26D60563A152EBA8CF2D02
Authority key identifier: 6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131392e302f32342d3234203d3e203234353139.roa
Signing time: Sun 24 Nov 2024 05:00:01 +0000
ROA not before: Sun 24 Nov 2024 04:55:01 +0000
ROA not after: Sun 23 Nov 2025 05:00:01 +0000
asID: 24519
IP address blocks: 103.42.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:b3:be:47:73:4b:a5:51:ad:26:d6:05:63:a1:52:eb:a8:cf:2d:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8
Validity
Not Before: Nov 24 04:55:01 2024 GMT
Not After : Nov 23 05:00:01 2025 GMT
Subject: CN=17B90EEB0CBB547F5DEA093455B56BC2DF872387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:be:98:be:a4:79:8d:a1:4c:03:91:84:fa:d0:
a5:ee:c4:e1:b8:39:91:ea:07:b9:b7:fa:14:e7:28:
27:b9:9e:3d:fd:a2:02:c4:41:66:08:80:ec:80:4d:
19:df:d9:24:3c:59:fc:c5:2b:60:f9:27:fe:9a:d9:
b0:8c:bf:a3:aa:e7:fe:96:5f:7b:e3:d8:ec:08:51:
85:92:8c:d7:65:79:78:b3:31:9f:cb:81:11:40:d0:
e8:f1:1e:e2:6d:39:92:af:9b:b7:62:a7:fe:bb:36:
ea:75:a3:64:42:ad:0d:f8:6a:7b:22:fd:8e:4c:f5:
5f:12:47:96:b7:55:38:60:47:ef:46:36:2f:d8:59:
fa:0e:19:e1:e1:ac:9c:38:e4:f3:51:1f:14:18:1d:
b1:04:b8:88:a4:eb:c5:36:fe:e0:29:f7:13:e5:69:
ca:1f:02:57:33:6f:b4:99:64:bc:6f:fe:2e:4f:33:
eb:5f:ba:f8:70:b3:0f:6b:b8:9c:7d:9b:d4:4c:ac:
b4:02:54:14:03:0c:87:87:ad:9c:fb:7d:79:56:a5:
87:cf:4f:1e:93:bd:52:4b:05:e1:c5:20:b9:ed:12:
db:02:0b:9c:82:68:3a:4f:9e:57:d2:d2:cc:06:ce:
bf:98:36:d2:06:50:85:f3:f7:34:ec:8e:03:15:43:
e6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B9:0E:EB:0C:BB:54:7F:5D:EA:09:34:55:B5:6B:C2:DF:87:23:87
X509v3 Authority Key Identifier:
keyid:6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131392e302f32342d3234203d3e203234353139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.42.119.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ea:5c:8d:24:58:00:59:9b:e2:4d:3f:47:4c:b2:4d:f4:70:
ab:c9:88:e6:ce:af:ef:75:72:e8:98:ff:fb:e1:79:0e:16:6d:
90:ae:e3:34:f1:d1:3a:8f:c8:f8:5a:a2:11:ed:54:28:34:f0:
3c:81:6e:65:c9:5e:44:de:8a:6a:c8:78:4a:1d:56:1c:8b:d7:
b5:78:8b:ba:23:f8:3a:cb:84:38:bd:ac:f0:75:3b:b2:09:4c:
03:b3:2b:69:71:3b:4f:a1:34:15:ec:44:a7:59:e0:a3:52:f9:
11:d3:fc:79:28:a8:16:d3:63:da:e0:d4:b6:81:66:02:e6:bc:
8d:0f:13:31:8c:05:5a:e8:ba:0f:56:7b:35:5c:14:c3:48:af:
21:e9:35:56:db:e0:c4:b4:bf:34:99:5f:71:80:74:9a:9d:1b:
67:39:6c:95:87:01:37:45:96:48:ad:2a:28:44:e3:c8:4e:8a:
2d:d2:6a:bf:5d:d6:52:b0:b8:29:06:e2:09:77:21:c1:71:91:
fc:64:6f:ef:38:04:26:6b:94:96:9b:f5:64:78:80:ab:05:15:
26:d0:3a:8e:c1:03:c0:62:dd:5f:34:23:aa:b3:97:37:bb:d7:
c1:e2:44:aa:d8:08:af:9b:fb:0a:98:e9:48:a6:64:00:57:54:
f0:ed:7f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:26 2025 by rpki-client