Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32342d3234203d3e203436303233.roa
File: 3130332e3234352e31382e302f32342d3234203d3e203436303233.roa (raw, json)
Hash identifier: AShL+HPisPSiiNmtbZE+edgEgIJDv3kNOSZOwH9eeKo=
Subject key identifier: 53:60:0A:1B:B5:14:2E:0D:16:66:F3:08:F3:A6:B3:98:22:D4:34:14
Certificate issuer: /CN=6D2120D281865021E16D49A2451DC53A851B5BBD
Certificate serial: 197F846503EE8A771979E1C2C11F6001AB407D47
Authority key identifier: 6D:21:20:D2:81:86:50:21:E1:6D:49:A2:45:1D:C5:3A:85:1B:5B:BD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D2120D281865021E16D49A2451DC53A851B5BBD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32342d3234203d3e203436303233.roa
Signing time: Wed 13 Nov 2024 09:54:34 +0000
ROA not before: Wed 13 Nov 2024 09:49:34 +0000
ROA not after: Wed 12 Nov 2025 09:54:34 +0000
asID: 46023
IP address blocks: 103.245.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:7f:84:65:03:ee:8a:77:19:79:e1:c2:c1:1f:60:01:ab:40:7d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D2120D281865021E16D49A2451DC53A851B5BBD
Validity
Not Before: Nov 13 09:49:34 2024 GMT
Not After : Nov 12 09:54:34 2025 GMT
Subject: CN=53600A1BB5142E0D1666F308F3A6B39822D43414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:07:dd:99:d6:0e:c9:88:43:e9:64:83:cd:2b:
c4:dd:58:01:a6:2a:0b:9a:1a:c9:83:a2:ad:3d:94:
d7:7a:25:a5:17:e7:f0:d0:91:be:38:fc:61:5b:cb:
ec:e6:f5:13:af:64:83:53:3b:a7:e5:5d:7e:13:0d:
df:dd:b3:55:a5:a2:63:cb:fa:6c:07:55:32:88:1b:
4b:0a:56:e8:4b:3b:f1:21:b7:30:f1:86:15:60:7e:
82:94:8e:d2:00:31:e8:7d:20:24:4e:02:59:b8:e5:
00:9d:3a:ff:b8:57:89:f5:9f:80:99:5b:e2:51:de:
da:b2:5a:9a:d9:e0:8f:e9:74:57:04:b6:c5:e1:82:
82:5a:5f:89:63:54:a8:dc:f2:f9:cc:e0:47:d1:d9:
15:5a:49:5f:3e:2d:1d:74:89:d2:f5:d7:07:29:bd:
37:25:d6:4c:d6:fb:b1:ac:e3:cd:3f:c8:2c:c2:b9:
3b:90:c7:9b:c6:3a:cc:14:e6:65:0d:38:49:c2:cf:
cb:77:26:b4:c5:68:5d:98:36:b1:68:5a:45:9b:90:
d6:21:c2:f7:25:7d:f9:91:61:d7:84:36:99:15:21:
88:90:98:e7:ee:eb:d8:6b:8e:72:12:15:e6:79:cc:
30:cb:e9:f3:72:52:b4:66:27:7e:a7:33:9c:ff:0b:
dd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:60:0A:1B:B5:14:2E:0D:16:66:F3:08:F3:A6:B3:98:22:D4:34:14
X509v3 Authority Key Identifier:
keyid:6D:21:20:D2:81:86:50:21:E1:6D:49:A2:45:1D:C5:3A:85:1B:5B:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/6D2120D281865021E16D49A2451DC53A851B5BBD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D2120D281865021E16D49A2451DC53A851B5BBD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32342d3234203d3e203436303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.245.18.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:fe:07:93:a0:d3:0f:d5:93:5d:3a:98:9a:30:e9:14:fa:5a:
8e:de:b0:97:67:9b:8c:4c:3a:33:44:39:36:73:bc:53:81:a3:
c8:3f:ca:e3:81:18:56:fd:45:bb:52:09:83:26:21:64:6e:cb:
3a:fe:7d:49:dc:6e:7a:44:5f:07:b4:e0:88:ed:fc:35:bb:2e:
fc:3c:0b:c3:da:4f:e2:5c:6b:7d:bb:69:c1:9f:ca:e8:db:4b:
59:1f:77:81:3a:4b:ba:eb:43:2a:e2:d5:d6:f4:2b:0b:54:a7:
ec:7f:4e:77:b0:3e:f5:8c:ec:82:2e:2f:ef:62:77:44:4a:bd:
d2:1a:cb:8e:c1:76:51:c8:ef:76:f3:03:aa:88:3c:88:8f:d5:
62:f2:1b:86:ab:56:d9:f5:20:11:84:08:8b:5d:57:96:a6:d0:
b8:0e:2e:c9:9c:3a:c2:11:34:b9:85:41:c6:31:59:e5:21:23:
a4:62:00:15:57:24:58:bc:5d:84:10:0c:d4:89:70:c1:7a:a3:
37:b8:6c:a5:b1:be:5b:2c:bb:33:40:3e:39:18:d6:a0:8a:f4:
8b:90:5d:36:e5:f6:86:48:df:52:bc:04:11:03:f2:3c:f1:2f:
a3:bc:b8:a0:81:a4:41:f2:3f:45:bb:3e:69:31:4f:7b:bb:b6:
60:a8:28:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:51:22 2025 by rpki-client