Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa
File: 3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa (raw, json)
Hash identifier: hsPXQKay+qedGG/jMzXptueav18vcMllJ1dIk7iOf1k=
Subject key identifier: 23:02:CF:C8:33:88:C2:67:37:6B:EC:92:1A:2B:82:CF:C5:C9:76:00
Certificate issuer: /CN=D296B71263A794DB76A99329A0A6CD91F03F997C
Certificate serial: 6BAEF504C122B6DC607856BBFFAF0FE33AEA94A4
Authority key identifier: D2:96:B7:12:63:A7:94:DB:76:A9:93:29:A0:A6:CD:91:F0:3F:99:7C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa
Signing time: Mon 01 Jul 2024 01:03:33 +0000
ROA not before: Mon 01 Jul 2024 00:58:33 +0000
ROA not after: Mon 30 Jun 2025 01:03:33 +0000
asID: 18351
IP address blocks: 103.231.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:ae:f5:04:c1:22:b6:dc:60:78:56:bb:ff:af:0f:e3:3a:ea:94:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D296B71263A794DB76A99329A0A6CD91F03F997C
Validity
Not Before: Jul 1 00:58:33 2024 GMT
Not After : Jun 30 01:03:33 2025 GMT
Subject: CN=2302CFC83388C267376BEC921A2B82CFC5C97600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1a:48:48:c3:8b:d0:4c:94:70:f9:3e:7a:1f:
e4:02:48:ac:94:2c:f8:d2:8c:74:ff:dd:c4:00:6a:
bd:06:86:65:e7:5c:e7:f1:62:9a:da:1f:b9:95:37:
07:b5:22:30:04:34:b9:9f:c6:b3:56:bb:20:eb:88:
34:eb:a6:b2:be:65:70:06:97:14:44:16:4a:b6:fa:
13:2b:2a:3d:f0:e6:49:7b:4d:74:20:ed:15:6b:19:
f5:c8:57:d2:7b:cc:c8:93:c5:57:e6:67:f7:78:13:
bc:d2:0a:46:16:ca:ab:66:c3:c3:8c:69:45:e8:81:
c9:7f:4d:68:b3:4d:5a:17:b7:77:5b:79:e6:a5:d5:
87:30:ac:83:5a:e1:75:63:a7:bb:67:8e:e3:6b:a6:
0e:63:0c:26:3f:ff:77:c6:5c:a8:63:21:8d:7f:69:
ac:5b:72:7a:92:95:a5:a1:07:56:0d:e5:07:b5:7b:
50:c0:0b:1f:71:aa:b4:02:be:39:eb:31:4c:35:e9:
97:34:0b:fa:e6:bf:86:fb:d9:6b:28:e3:0b:a1:0e:
41:ff:60:54:92:29:ac:b5:94:38:45:ff:ed:a0:9c:
bb:45:b0:be:ed:8e:18:c9:9c:e2:f0:7d:c8:4b:8a:
a8:c2:54:4b:df:95:e9:7d:e0:60:76:ad:ad:8b:7c:
fc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:02:CF:C8:33:88:C2:67:37:6B:EC:92:1A:2B:82:CF:C5:C9:76:00
X509v3 Authority Key Identifier:
keyid:D2:96:B7:12:63:A7:94:DB:76:A9:93:29:A0:A6:CD:91:F0:3F:99:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/D296B71263A794DB76A99329A0A6CD91F03F997C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D296B71263A794DB76A99329A0A6CD91F03F997C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53f75e98-14ef-4457-94f3-e5b73a922fc5/0/3130332e3233312e3130382e302f32322d3234203d3e203138333531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.231.108.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:73:65:48:bb:29:3f:f8:4b:4b:ff:13:95:7e:be:99:11:c9:
e8:69:f1:19:ce:01:dc:ab:27:12:28:82:6d:81:fa:89:0d:7d:
d8:d1:21:ca:3e:f5:3b:3f:5a:1c:98:6a:1c:24:f1:2f:54:2d:
34:c0:fe:92:65:13:8b:36:d3:81:ea:cd:45:19:9b:ee:c5:13:
56:4e:ac:15:bc:1c:6e:32:ca:83:53:86:7a:48:d3:b6:e6:47:
0c:0d:2e:2a:c3:f3:20:fd:a4:ed:b1:80:62:b5:82:33:d1:50:
54:c6:c6:ae:2e:88:a1:fb:18:26:04:49:de:45:f5:3c:29:e6:
78:4b:7a:33:4f:cd:48:df:93:bd:85:11:28:c1:fa:c5:5a:92:
35:14:f7:88:6a:62:87:44:9e:c4:23:bc:51:d7:7d:79:86:d3:
a4:4f:12:56:e0:72:1d:61:c0:83:4f:82:bd:20:08:5f:60:de:
ae:67:14:65:a2:be:4a:84:e6:99:8f:f3:0a:43:b6:f3:08:f3:
7a:6f:42:c6:82:42:18:e1:c9:b3:e6:36:af:6a:f6:af:c5:3f:
7a:f1:08:00:0b:35:43:e4:4b:bc:37:13:ee:6d:8c:41:51:84:
34:38:62:4d:1c:b0:3d:68:e3:47:fc:c6:60:f0:a0:c7:f7:bf:
08:c8:dd:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:45:50 2025 by rpki-client