Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32342d3234203d3e203538333639.roa
File: 3130332e3133362e3137302e302f32342d3234203d3e203538333639.roa (raw, json)
Hash identifier: RSSKQ80qetxdl3Vs6AqHUHNTYF+l0dFEx0uWms41D5o=
Subject key identifier: 1D:06:28:42:1C:19:DD:21:B7:CD:88:FA:80:8D:7C:9D:99:E1:A1:A3
Certificate issuer: /CN=47C87696529FAF404AF0E8681AAFA8F224187D59
Certificate serial: 1D8A3A60ED9F5AF73A5D4215228F3243F2E1BFE8
Authority key identifier: 47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32342d3234203d3e203538333639.roa
Signing time: Sun 04 Aug 2024 08:01:10 +0000
ROA not before: Sun 04 Aug 2024 07:56:10 +0000
ROA not after: Sun 03 Aug 2025 08:01:10 +0000
asID: 58369
IP address blocks: 103.136.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:8a:3a:60:ed:9f:5a:f7:3a:5d:42:15:22:8f:32:43:f2:e1:bf:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47C87696529FAF404AF0E8681AAFA8F224187D59
Validity
Not Before: Aug 4 07:56:10 2024 GMT
Not After : Aug 3 08:01:10 2025 GMT
Subject: CN=1D0628421C19DD21B7CD88FA808D7C9D99E1A1A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4b:73:71:2d:5b:69:9e:18:60:44:78:9d:46:
3e:d5:3e:b7:f6:12:d5:fd:c2:37:05:60:df:e2:91:
3d:f3:fc:d9:d1:92:47:9f:14:03:4e:4a:19:e7:b6:
f1:cf:14:95:da:dc:59:26:ea:c1:a5:ab:28:e3:84:
6e:ea:24:a5:12:ac:c1:cc:13:b2:b7:51:fd:67:74:
c7:53:2f:a8:f7:27:e4:5a:9f:61:4f:d4:a4:80:89:
00:1d:44:c5:94:f8:26:54:43:90:a6:e6:37:40:a2:
79:9f:8d:b1:0a:5b:b0:e6:c0:fd:0f:a7:a3:98:06:
d9:70:f9:58:a7:af:89:d3:f0:33:12:05:ae:a3:32:
b0:e4:57:d5:c3:78:e8:94:df:a0:a6:b4:fc:20:99:
80:9f:2c:08:e1:7d:37:a0:02:68:6b:a5:25:cc:b3:
6d:cd:b1:6e:7f:38:46:64:a9:a6:d4:f2:ee:10:49:
59:4e:f6:53:92:a5:a7:ce:02:4b:16:a9:c3:97:41:
12:e2:55:4d:74:c5:b4:2c:92:1f:69:d8:d9:f5:06:
bf:90:e7:b5:ca:45:df:16:0f:24:88:b2:7a:8e:8d:
8d:9b:90:78:46:46:8f:44:5f:95:57:0c:f2:2c:c4:
7b:ff:d4:36:a5:7c:58:21:89:03:8f:a5:32:ae:46:
f8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:06:28:42:1C:19:DD:21:B7:CD:88:FA:80:8D:7C:9D:99:E1:A1:A3
X509v3 Authority Key Identifier:
keyid:47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32342d3234203d3e203538333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.136.170.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:8d:a8:58:e3:cf:03:7f:bf:75:22:16:1a:1b:fd:41:25:66:
f6:21:6d:cf:b0:65:03:8c:bb:70:6f:0c:22:be:2e:43:7c:b1:
2c:42:5a:f0:7e:17:7d:11:2b:6f:97:2b:88:25:9d:be:82:8e:
55:c5:75:3d:40:c7:de:2c:3e:c0:19:6e:2e:a5:1c:54:c6:4c:
68:77:60:e4:eb:72:93:cc:4a:cf:20:fd:e4:d5:c1:80:c5:8e:
dc:19:50:ca:c9:68:5f:07:27:6b:ef:52:d4:a4:b8:98:8a:22:
5c:ca:22:4a:ab:e3:d4:3c:0e:3c:d5:9f:87:e4:fe:69:2e:30:
e9:31:d8:e6:80:62:8a:e1:c3:64:99:07:3a:fa:56:03:26:b8:
8d:d9:cd:70:2c:b3:8d:18:1f:da:b0:2d:dd:fe:d6:7e:92:51:
6d:46:bc:62:cc:b9:24:c9:d1:31:8b:10:49:b5:ac:dc:49:7b:
c0:28:9c:2f:97:2b:86:3c:11:78:31:49:f7:a1:07:13:02:b1:
00:1b:01:c5:47:1e:07:03:d0:b9:ac:98:9b:2b:58:c1:b0:f5:
37:e7:93:79:90:6e:bd:bc:73:32:c3:b2:59:5d:aa:a7:f9:1a:
cd:83:4e:cc:cc:3c:af:6f:01:89:b6:64:69:b7:35:58:b5:a5:
b4:73:95:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:52:40 2025 by rpki-client