Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134382e302f32332d3233203d3e203538333639.roa
File: 3130332e3132312e3134382e302f32332d3233203d3e203538333639.roa (raw, json)
Hash identifier: +ncF+8DsxAehnxNLvv1l20gTEn/1YKWEnl6rFJLIApA=
Subject key identifier: 96:D4:4D:D5:E3:0F:3F:E9:E8:45:9A:84:77:26:B9:36:44:06:9D:BE
Certificate issuer: /CN=98F94938EA9072872BE06639F79DC61C000F849C
Certificate serial: 4C99799E9C048817C4243ACF00B35FEE052C9310
Authority key identifier: 98:F9:49:38:EA:90:72:87:2B:E0:66:39:F7:9D:C6:1C:00:0F:84:9C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98F94938EA9072872BE06639F79DC61C000F849C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134382e302f32332d3233203d3e203538333639.roa
Signing time: Mon 01 Jul 2024 01:03:42 +0000
ROA not before: Mon 01 Jul 2024 00:58:42 +0000
ROA not after: Mon 30 Jun 2025 01:03:42 +0000
asID: 58369
IP address blocks: 103.121.148.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:99:79:9e:9c:04:88:17:c4:24:3a:cf:00:b3:5f:ee:05:2c:93:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98F94938EA9072872BE06639F79DC61C000F849C
Validity
Not Before: Jul 1 00:58:42 2024 GMT
Not After : Jun 30 01:03:42 2025 GMT
Subject: CN=96D44DD5E30F3FE9E8459A847726B93644069DBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3c:e9:c5:77:3f:c6:c4:55:b7:dd:20:07:8c:
27:69:a5:9e:32:40:e0:c5:d9:f9:97:66:62:58:3e:
21:3e:99:a3:58:83:df:2b:3d:0c:5b:9b:84:13:8a:
34:65:92:a9:1d:83:f1:9f:ee:92:80:fb:6b:d9:53:
11:61:01:50:90:51:fb:2e:45:ff:99:3a:a7:cd:84:
1f:b8:13:88:a3:03:0b:35:13:02:1c:d3:b5:3b:54:
25:a9:91:ee:4e:5e:3a:00:35:39:fb:60:17:2d:c3:
b0:dc:8d:2a:56:21:95:df:60:d0:fe:4e:d1:74:32:
e6:09:c8:4b:38:3a:ab:3e:5b:43:be:12:53:2f:90:
1d:09:ef:a6:0d:7f:84:6a:79:a1:5e:1b:1e:70:7e:
6d:5c:91:4d:c7:7a:57:f9:c9:96:f9:d8:69:8c:87:
47:c5:e1:0e:8e:48:38:d5:1b:aa:fd:d4:20:80:b4:
50:a1:0a:06:2d:2e:9e:1c:eb:ae:06:c5:32:21:ea:
5c:9b:11:e4:bf:7a:e0:05:27:f9:18:64:8a:0d:20:
be:87:b4:33:08:42:02:3c:70:53:5e:1d:33:27:a3:
32:37:1c:bd:06:f5:c2:1f:b0:9b:80:e5:bc:dc:cb:
1d:d4:47:33:33:78:14:56:90:df:a3:6c:8e:7c:35:
0b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D4:4D:D5:E3:0F:3F:E9:E8:45:9A:84:77:26:B9:36:44:06:9D:BE
X509v3 Authority Key Identifier:
keyid:98:F9:49:38:EA:90:72:87:2B:E0:66:39:F7:9D:C6:1C:00:0F:84:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/98F94938EA9072872BE06639F79DC61C000F849C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98F94938EA9072872BE06639F79DC61C000F849C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134382e302f32332d3233203d3e203538333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.121.148.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:7b:07:71:57:09:cb:7c:66:60:7f:2b:86:50:35:96:b9:60:
d4:ad:de:3b:54:8f:c9:2e:ab:84:54:c0:64:fa:82:e2:52:df:
41:4f:bc:ae:88:c1:ae:ad:50:e1:1e:38:21:c7:66:ab:7a:06:
fc:2b:20:38:da:52:f8:0b:9d:cf:a1:75:ec:f4:11:6f:8b:1e:
25:17:e2:58:53:b9:3b:b9:eb:13:d8:cb:a5:0e:a9:c2:28:75:
ad:97:10:e2:8a:b8:12:3a:71:2d:02:a0:ac:bc:ae:49:5b:4a:
af:e4:32:e4:52:ab:00:72:63:76:74:5d:be:5c:f1:3e:02:ea:
cb:81:22:25:36:89:c3:2e:a0:d9:0a:57:ce:70:3c:ba:ed:93:
fc:33:bc:47:e2:4a:fe:78:5b:81:05:53:61:da:9c:f5:c6:4c:
fe:df:f9:98:41:d3:7b:37:be:01:09:48:0b:0d:22:6c:5b:ce:
81:cb:e3:12:56:6a:7e:61:e2:1e:b4:80:28:71:c9:da:44:df:
6f:59:64:8d:7c:01:2c:f7:84:59:76:32:28:98:b0:7a:20:38:
bb:33:c4:c2:b6:7a:54:68:96:64:35:18:24:02:9e:0e:5d:93:
c4:52:c4:ed:a9:b3:0d:7a:9e:c8:a9:a0:0f:11:25:f9:4b:cc:
09:87:2c:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:52:59 2025 by rpki-client