Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e34302e35342e302f32332d3234203d3e203538333932.roa
File: 3130332e34302e35342e302f32332d3234203d3e203538333932.roa (raw, json)
Hash identifier: +gn5K58E6ZIpYG1JbRIaPtWowpbPT7Kl7zJzF2LuH+w=
Subject key identifier: B8:ED:7B:7D:E0:75:90:B5:85:39:21:80:4E:AA:22:B2:B1:3A:6F:CB
Certificate issuer: /CN=AF504C4E6E3831F756E3BE07469483DFED452516
Certificate serial: 3099BEDB3EB314BA0CA4597CC5E7D1EC69EA73B0
Authority key identifier: AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e34302e35342e302f32332d3234203d3e203538333932.roa
Signing time: Mon 01 Jul 2024 01:04:09 +0000
ROA not before: Mon 01 Jul 2024 00:59:09 +0000
ROA not after: Mon 30 Jun 2025 01:04:09 +0000
asID: 58392
IP address blocks: 103.40.54.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:99:be:db:3e:b3:14:ba:0c:a4:59:7c:c5:e7:d1:ec:69:ea:73:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF504C4E6E3831F756E3BE07469483DFED452516
Validity
Not Before: Jul 1 00:59:09 2024 GMT
Not After : Jun 30 01:04:09 2025 GMT
Subject: CN=B8ED7B7DE07590B5853921804EAA22B2B13A6FCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:41:0b:f3:ec:66:aa:ac:43:0c:69:98:c7:64:
24:69:09:b6:e2:d9:d1:b5:31:e7:c1:1f:c9:91:44:
43:f7:62:33:6d:20:07:47:0e:d5:68:0b:5e:f4:2e:
f7:be:e0:01:06:7c:41:76:d4:56:68:6e:61:36:a1:
86:f8:6d:5b:e2:e7:99:72:67:58:dd:c5:fd:24:a8:
0b:07:0b:7f:da:27:fd:c2:9e:04:7f:78:b9:e1:3f:
0e:b6:32:b9:3c:74:30:33:6d:0d:ba:2a:ff:d3:24:
2c:e2:34:7f:22:7a:c7:81:6d:6f:22:46:72:a9:03:
82:85:cd:cf:25:5b:b0:c2:79:30:de:d9:48:89:7c:
f1:aa:b2:8c:eb:f2:e8:4f:83:c0:d9:9c:3e:0c:71:
2e:b9:88:1a:d3:11:ae:5e:7a:1a:90:04:e3:66:e3:
25:73:d9:e6:f6:a2:7d:d7:cb:79:7e:a6:64:17:12:
e2:0e:db:e3:4f:5c:79:48:e6:e2:b6:38:e1:ae:55:
7e:f5:8e:e7:ee:16:03:ef:21:88:9d:4c:91:33:53:
61:d5:d9:87:75:31:4d:e8:ef:26:2e:eb:b2:52:d0:
ed:a0:e6:72:08:ac:6c:b5:5b:c8:21:5f:b0:a3:10:
01:6a:36:a3:cb:1c:3d:bf:4d:5b:95:b6:de:44:35:
4e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:ED:7B:7D:E0:75:90:B5:85:39:21:80:4E:AA:22:B2:B1:3A:6F:CB
X509v3 Authority Key Identifier:
keyid:AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/3130332e34302e35342e302f32332d3234203d3e203538333932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.40.54.0/23
Signature Algorithm: sha256WithRSAEncryption
19:8e:a8:ed:cc:e6:81:55:73:c9:8c:29:f2:1d:51:67:e4:a4:
5f:7d:36:15:7b:21:7f:63:cf:c3:87:86:e4:dc:e8:18:2d:d9:
a9:2d:85:b0:6f:12:c4:ba:d1:61:d5:e9:43:92:de:bb:01:00:
0d:32:a3:b5:00:ba:e3:9c:52:a7:43:e2:25:24:21:0b:4b:41:
75:1c:a6:ab:a6:4a:b1:8b:78:e2:b3:d4:85:3d:a1:5e:6e:f9:
a1:2e:d7:d5:3f:62:87:f7:81:27:be:12:73:47:9f:7b:03:16:
2a:27:06:e5:85:a7:6b:9b:5e:2b:7f:5a:34:b8:21:4a:02:49:
d0:18:18:07:df:6b:f9:dc:bd:1a:39:5d:d0:d3:fb:5e:a3:c6:
94:b0:b5:fd:68:ac:b5:d2:50:8d:e4:42:fd:d9:dc:28:4d:e8:
9e:93:df:06:e6:aa:67:24:f8:46:5d:e8:6e:cf:3c:40:70:1b:
b4:f9:b5:72:e6:38:f6:29:f2:da:a1:74:9d:0d:f4:cc:8c:b5:
25:70:f5:ec:7b:d5:8d:8a:2a:bc:5c:df:8e:5a:bf:28:2b:08:
a2:f1:fc:dc:c9:76:44:22:d3:a9:e4:e0:55:09:d3:35:24:08:
e1:9d:14:ad:bc:2e:a0:df:1f:e5:89:e5:96:52:06:05:4c:59:
36:7c:33:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:20:08 2025 by rpki-client