Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134382e302f32342d3234203d3e203538333639.roa
File: 3130332e3132312e3134382e302f32342d3234203d3e203538333639.roa (raw, json)
Hash identifier: qLsMIEaKhWpq1bQAf83UJbdJ8NLzwZWxL7cCtTMq2j8=
Subject key identifier: 1E:22:8F:CE:52:1D:D7:96:7A:3A:61:44:3A:E8:21:B6:1F:1F:64:8A
Certificate issuer: /CN=98F94938EA9072872BE06639F79DC61C000F849C
Certificate serial: 46F2B7E994C9C9769EFBD45FF83B301AD01A772B
Authority key identifier: 98:F9:49:38:EA:90:72:87:2B:E0:66:39:F7:9D:C6:1C:00:0F:84:9C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98F94938EA9072872BE06639F79DC61C000F849C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134382e302f32342d3234203d3e203538333639.roa
Signing time: Mon 01 Jul 2024 01:03:42 +0000
ROA not before: Mon 01 Jul 2024 00:58:42 +0000
ROA not after: Mon 30 Jun 2025 01:03:42 +0000
asID: 58369
IP address blocks: 103.121.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:f2:b7:e9:94:c9:c9:76:9e:fb:d4:5f:f8:3b:30:1a:d0:1a:77:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98F94938EA9072872BE06639F79DC61C000F849C
Validity
Not Before: Jul 1 00:58:42 2024 GMT
Not After : Jun 30 01:03:42 2025 GMT
Subject: CN=1E228FCE521DD7967A3A61443AE821B61F1F648A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:bd:e3:d1:c2:d4:7a:42:2b:45:06:37:fe:43:
79:99:f6:70:ed:5a:ca:cf:c2:a7:57:f0:28:19:1a:
e0:28:18:53:28:54:74:c7:c0:66:da:63:7e:47:44:
93:3f:e0:5a:d9:56:4e:04:c4:a1:09:e0:4b:b5:66:
f7:e1:c1:00:e2:94:97:af:d2:0a:6e:59:e0:c9:bd:
8c:65:2e:6d:f4:b6:7c:35:7b:19:f9:12:2c:f0:a8:
26:13:c2:10:61:6e:ee:44:d2:b9:af:e5:18:31:4a:
6c:67:c3:ec:c2:ee:84:58:34:d7:4b:61:cb:00:45:
a0:70:83:b8:96:4a:b3:0b:08:0f:79:96:11:7e:e4:
24:f5:c5:75:0f:18:01:85:06:2f:ba:f2:5a:da:9f:
86:42:b3:e1:5b:e5:bb:b8:ee:11:7a:39:eb:c1:21:
d1:d8:fe:f3:d6:8f:4e:99:af:f1:2a:b0:7d:0c:2f:
da:04:ca:57:7f:d3:bc:71:23:1d:80:ca:2c:b3:7d:
fc:59:e5:47:da:11:c6:47:c8:4f:a5:49:88:2d:36:
15:42:92:8e:4b:9e:9b:dc:e7:6d:23:83:e7:56:5b:
41:f0:d1:af:11:7d:16:d9:33:3f:7a:c6:29:69:62:
9f:e4:4e:89:87:23:b2:ca:03:9e:15:e7:e4:86:29:
2b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:22:8F:CE:52:1D:D7:96:7A:3A:61:44:3A:E8:21:B6:1F:1F:64:8A
X509v3 Authority Key Identifier:
keyid:98:F9:49:38:EA:90:72:87:2B:E0:66:39:F7:9D:C6:1C:00:0F:84:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/98F94938EA9072872BE06639F79DC61C000F849C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98F94938EA9072872BE06639F79DC61C000F849C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53b146a2-7715-459f-8244-8b32a364663c/0/3130332e3132312e3134382e302f32342d3234203d3e203538333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.121.148.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:d5:db:21:e8:2b:65:de:81:15:30:74:e5:de:04:12:3d:0e:
70:99:f4:7e:08:49:27:05:03:8e:00:b7:04:86:bd:43:af:56:
ac:12:d4:ef:ce:b9:21:1f:85:c3:ec:3b:f8:9b:bf:dc:02:27:
61:c7:65:36:6a:32:34:06:cb:b6:3f:87:15:0b:60:14:82:34:
f9:b7:3c:f0:59:96:ed:73:74:e6:8a:11:fb:0d:eb:b7:42:e8:
2f:30:84:4c:76:f0:db:66:6e:bb:ab:5f:df:c7:18:cb:e7:98:
4f:65:19:ca:59:a5:ec:93:9b:50:29:5c:c0:7d:bb:9b:a6:86:
42:ad:fc:5f:05:39:48:a4:c1:8d:7e:64:26:40:40:a5:87:a2:
35:b6:66:02:46:cb:93:55:81:b7:80:22:10:d5:af:6a:2f:a9:
8f:03:b3:76:66:9a:75:c1:ea:e5:f4:85:7d:f3:02:b7:6a:da:
b3:e5:92:a2:76:2f:78:8c:1f:f7:81:72:82:f9:a8:63:93:4f:
2f:05:7d:8d:7c:32:7c:3d:e0:01:2b:c2:0f:10:80:36:04:53:
b3:1d:00:ad:b3:3c:42:cf:b2:04:c2:0a:e7:3b:60:c7:1e:b7:
84:ba:0e:54:b4:af:0b:fa:ad:b8:45:1c:07:2d:f1:03:f4:b0:
9a:dc:21:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:29 2025 by rpki-client