Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa
File: 3130332e36362e33362e302f32342d3234203d3e20313530323233.roa (raw, json)
Hash identifier: 92CiTC3Van4+3+BldVCHuJ3vdr0S/LlPDMeB7hF5ajE=
Subject key identifier: 21:34:09:2C:E6:79:3C:7A:17:7B:77:D5:5B:F6:61:95:33:66:F4:08
Certificate issuer: /CN=E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771
Certificate serial: 111A5C145D6B880542D8856E492CCDD527AC493E
Authority key identifier: E4:C5:17:8B:DB:BD:EF:7B:7D:D4:1B:AF:58:EB:3D:25:B2:13:27:71
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa
Signing time: Thu 17 Oct 2024 07:00:01 +0000
ROA not before: Thu 17 Oct 2024 06:55:01 +0000
ROA not after: Thu 16 Oct 2025 07:00:01 +0000
asID: 150223
IP address blocks: 103.66.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:1a:5c:14:5d:6b:88:05:42:d8:85:6e:49:2c:cd:d5:27:ac:49:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771
Validity
Not Before: Oct 17 06:55:01 2024 GMT
Not After : Oct 16 07:00:01 2025 GMT
Subject: CN=2134092CE6793C7A177B77D55BF661953366F408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:25:55:de:78:c0:8e:17:a2:f6:7c:f8:8d:b8:
6e:30:49:be:23:4b:86:6a:da:e2:5e:8b:be:2f:fc:
d0:99:f7:04:4b:85:68:b5:36:68:e6:28:d7:82:38:
b3:4c:e4:6c:e1:ca:6d:76:2e:7a:13:85:41:72:af:
aa:09:e9:e4:5e:2f:f2:38:3b:be:b4:79:ac:a4:03:
da:af:df:40:53:47:2d:fc:4e:de:2e:7f:b2:02:1e:
11:a4:8d:b4:de:08:62:ac:ce:bd:33:64:85:27:f9:
61:42:86:09:22:ad:65:aa:be:b0:b5:01:6c:cf:60:
7f:b8:a3:86:e8:d8:b3:d8:a9:63:0e:bc:7b:c2:92:
50:16:7c:b9:b3:35:9c:21:67:db:44:18:d5:95:78:
6a:bd:87:75:29:44:70:1f:80:df:42:11:9d:72:77:
47:92:78:44:79:6f:d7:51:b0:64:6d:37:38:8b:4e:
7f:69:e9:aa:c5:3b:84:09:80:d7:b7:86:f7:4a:8a:
68:9a:c6:8d:28:8b:36:f9:14:54:8b:8e:33:fb:a2:
4f:ae:6a:67:72:69:ec:b8:23:61:0a:51:1a:2e:2d:
75:eb:28:fb:9d:18:38:b2:77:6e:4e:d8:a0:be:1c:
72:8e:fe:00:6d:c2:d5:e3:01:10:e2:2b:2a:52:81:
54:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:34:09:2C:E6:79:3C:7A:17:7B:77:D5:5B:F6:61:95:33:66:F4:08
X509v3 Authority Key Identifier:
keyid:E4:C5:17:8B:DB:BD:EF:7B:7D:D4:1B:AF:58:EB:3D:25:B2:13:27:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C5178BDBBDEF7B7DD41BAF58EB3D25B2132771.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52dbd785-6bca-493b-8a65-3b5277007fed/0/3130332e36362e33362e302f32342d3234203d3e20313530323233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.66.36.0/24
Signature Algorithm: sha256WithRSAEncryption
97:90:5a:d1:21:95:2a:22:08:ce:88:a0:38:89:8c:d9:cc:92:
76:95:cb:8f:a2:e2:6f:eb:d9:6c:71:19:29:41:e6:35:21:e4:
a2:75:f4:7f:99:89:c5:42:4a:bc:98:cb:70:9a:76:a2:77:36:
f9:19:f0:57:e2:0a:24:08:16:3c:8e:84:90:2d:dc:e0:16:f6:
dd:3a:5b:19:8e:98:ee:c4:88:8d:da:3a:8f:8e:24:6c:30:86:
32:15:6f:a8:d1:cb:c1:60:41:2a:e8:b5:e2:31:64:29:05:c1:
8e:ab:c2:3e:93:53:ef:21:46:3b:34:28:dd:76:50:e5:81:9a:
b4:39:b5:a3:b6:9f:6d:c8:62:b8:10:48:2e:6d:93:3d:de:90:
33:1b:91:bd:21:a3:04:d6:50:c1:af:aa:70:7d:8a:35:9f:6c:
41:7e:f7:2c:53:7e:c3:e3:74:fb:33:44:a4:5c:c1:5f:86:81:
d9:16:ab:1f:a8:b1:d2:c7:4a:75:f6:f7:cf:d2:37:38:3d:3c:
8f:c5:54:2d:1a:bc:83:97:f9:e1:20:22:14:66:5e:63:be:ec:
4c:68:7b:61:3a:49:9e:ea:57:d4:40:f2:27:35:13:93:e2:09:
e4:d4:c1:28:d9:74:f7:72:9b:9a:12:39:58:b9:e0:cb:23:bb:
66:22:05:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:48:04 2025 by rpki-client