Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa
File: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (raw, json)
Hash identifier: u8Au9LMYXcHGihCwMXA0rXB8fgKyjCiixCQrB4ejbv0=
Subject key identifier: D7:7D:2D:A1:8D:6C:0F:AB:DD:4D:60:2F:0E:4D:85:7D:2E:51:D4:6B
Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C
Certificate serial: 217572D2564587787C5D5A8D17F1A8BF0A792B01
Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa
Signing time: Tue 20 Aug 2024 06:00:05 +0000
ROA not before: Tue 20 Aug 2024 05:55:05 +0000
ROA not after: Tue 19 Aug 2025 06:00:05 +0000
asID: 136052
IP address blocks: 103.28.52.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:75:72:d2:56:45:87:78:7c:5d:5a:8d:17:f1:a8:bf:0a:79:2b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C
Validity
Not Before: Aug 20 05:55:05 2024 GMT
Not After : Aug 19 06:00:05 2025 GMT
Subject: CN=D77D2DA18D6C0FABDD4D602F0E4D857D2E51D46B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3e:21:d6:34:8f:7f:d2:16:45:81:8a:1a:9e:
46:5c:bf:82:1c:40:d7:86:4d:53:02:93:6b:52:17:
fd:59:80:5c:60:fa:cd:c6:5b:87:a2:3e:69:b3:c6:
72:92:7c:98:b1:cc:7c:1b:0c:85:e6:a3:a1:e5:8e:
df:55:95:8e:57:93:7d:04:0e:95:35:ae:d9:22:a5:
dc:64:40:eb:42:c3:92:67:b5:53:d3:a3:ba:77:d7:
27:57:1e:79:94:dd:70:85:5b:8f:7f:dc:14:bc:57:
5d:ab:1a:04:91:52:32:ca:cb:ea:80:ff:c5:ff:6a:
76:33:ce:29:d9:5f:7f:25:e5:93:25:9e:0b:32:5b:
8e:d2:ef:39:2b:fb:7d:d7:96:a6:d8:7c:5b:a8:61:
c5:ca:2c:f9:73:17:7a:cc:5c:84:cd:b6:c8:c1:38:
24:ad:61:93:ae:04:5d:e7:64:50:70:3c:f1:79:3c:
25:48:12:2c:bd:ec:f5:ae:8f:09:89:42:31:d1:9f:
21:dc:59:85:7e:66:72:e4:b9:aa:76:a3:5b:e0:0f:
35:ec:06:0b:e7:c2:02:0a:0b:b6:16:e6:20:05:6e:
f6:1e:71:08:9f:bd:4c:f3:ab:81:0f:6c:d4:19:5f:
2c:7b:2f:c8:0c:a0:40:29:2c:1f:15:f5:a1:11:1f:
c1:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7D:2D:A1:8D:6C:0F:AB:DD:4D:60:2F:0E:4D:85:7D:2E:51:D4:6B
X509v3 Authority Key Identifier:
keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/3130332e32382e35322e302f32332d3234203d3e20313336303532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.28.52.0/23
Signature Algorithm: sha256WithRSAEncryption
55:88:ec:79:19:e2:45:92:8b:54:db:78:f1:60:d1:97:f5:87:
2a:e1:46:5a:d7:b2:09:7f:df:3a:77:d7:70:dc:da:9a:c0:ef:
b0:7e:91:db:25:ea:1c:a0:d2:cc:7c:55:36:e5:bc:97:fb:32:
75:c9:4c:cb:58:a7:11:b2:38:2b:a2:b7:21:67:7b:ed:08:da:
18:35:49:8e:5a:c1:87:f7:c5:aa:5f:5c:c7:eb:94:0f:12:3c:
b1:63:22:7c:2d:23:1c:39:03:a4:4e:a7:db:27:df:d8:7c:fd:
ad:3d:69:bf:b3:84:72:82:f1:a1:69:ce:8c:4c:08:0d:64:14:
14:4d:68:df:a5:ac:3c:1c:78:dc:23:80:35:31:42:c8:bf:ac:
e0:4f:e9:bd:37:82:27:cb:34:1f:4c:dd:16:60:29:98:e1:d3:
23:75:df:e5:aa:06:ed:36:58:7d:9b:d3:04:ec:33:bc:97:b9:
7e:48:3b:f8:49:5c:8e:95:40:8a:67:44:fe:60:af:12:73:db:
89:08:d8:fe:dc:7b:db:7c:cd:20:4e:77:1a:22:c2:4e:5f:54:
3f:8d:3e:98:6f:af:db:d4:64:c3:20:6c:9a:dd:1f:db:2f:5b:
49:99:09:f6:c8:2f:51:75:fd:00:9a:79:97:40:99:10:42:bc:
22:d6:f2:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:09:16 2025 by rpki-client