Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e39352e362e302f32342d3234203d3e20313333383237.roa
File: 3130332e39352e362e302f32342d3234203d3e20313333383237.roa (raw, json)
Hash identifier: s/uZYeJprhGnWX2//HBqYGCHtbueKtXiv18b+uk27Pk=
Subject key identifier: 18:E1:08:B7:61:18:45:4C:57:99:0D:87:11:F9:0B:C2:20:AF:EA:35
Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F
Certificate serial: 0F304C0CE658C8189FF0C21FAD99543F9DA65037
Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e39352e362e302f32342d3234203d3e20313333383237.roa
Signing time: Thu 08 Aug 2024 04:00:02 +0000
ROA not before: Thu 08 Aug 2024 03:55:02 +0000
ROA not after: Thu 07 Aug 2025 04:00:02 +0000
asID: 133827
IP address blocks: 103.95.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:30:4c:0c:e6:58:c8:18:9f:f0:c2:1f:ad:99:54:3f:9d:a6:50:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F
Validity
Not Before: Aug 8 03:55:02 2024 GMT
Not After : Aug 7 04:00:02 2025 GMT
Subject: CN=18E108B76118454C57990D8711F90BC220AFEA35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ec:75:b2:31:77:7c:6e:23:25:dc:e2:06:9d:
e2:f7:26:99:ee:0b:27:69:ab:7f:7c:93:41:5d:ee:
52:dd:14:2e:77:56:5c:5d:fe:ff:22:22:3c:05:09:
01:39:be:27:d5:8e:2b:fa:ea:d6:1a:7c:c3:5d:51:
52:9e:a4:fc:75:30:7e:94:91:aa:20:3c:00:b0:4f:
57:bb:cd:9b:34:c8:c6:39:67:18:87:58:3c:0a:2e:
e7:5b:6b:57:17:74:a8:bd:be:75:74:82:05:96:80:
b3:bc:37:e2:3e:ce:d9:7a:4b:d7:e2:2e:11:d7:af:
b0:8e:1e:ac:e0:ad:c4:10:4a:5f:a0:46:3c:ba:ab:
39:6a:1c:7e:c7:b3:92:3b:d4:c5:04:07:5a:a0:3a:
7f:ea:7b:f8:f9:da:a7:67:c8:9c:cb:21:de:d4:bb:
87:09:cc:7f:0f:ed:c7:b3:19:3f:7c:df:42:47:ec:
95:f7:35:2b:ca:08:71:99:b6:a6:22:59:c7:61:fd:
d9:ec:f6:0d:24:96:15:b0:24:d6:fd:49:e9:ef:af:
f9:df:17:e9:26:65:4c:be:ae:d4:be:a0:6a:26:0c:
4e:b6:e9:33:cc:70:98:cc:3b:3b:52:e3:43:4b:7f:
5c:f2:b4:9a:ec:85:cc:e7:61:83:c6:19:f8:08:c0:
63:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E1:08:B7:61:18:45:4C:57:99:0D:87:11:F9:0B:C2:20:AF:EA:35
X509v3 Authority Key Identifier:
keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/3130332e39352e362e302f32342d3234203d3e20313333383237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.95.6.0/24
Signature Algorithm: sha256WithRSAEncryption
93:93:1f:09:e1:98:3c:64:c6:79:2e:27:be:71:bf:9b:27:aa:
d6:e7:cd:cc:fb:7d:f1:ef:09:9c:56:26:ef:92:ec:7d:42:94:
96:fb:a5:46:6c:ee:05:8a:5b:71:5c:5a:26:84:db:47:80:ac:
c1:a3:2e:ba:34:0b:f1:99:35:47:7e:8c:d5:33:00:6d:61:fc:
9c:11:46:4d:d7:c5:15:8f:48:18:55:e3:bc:c0:2f:a2:1e:fb:
5b:53:4c:f6:c0:bc:cd:9e:7c:6c:b6:ad:de:f6:c7:73:ce:92:
0d:b7:5b:d0:6e:30:b6:68:f1:0b:38:64:e4:92:10:30:60:61:
72:ef:ac:8f:a5:1f:e9:08:73:53:96:7c:40:cd:09:e8:81:cb:
26:1f:47:bc:05:08:5d:9c:17:36:02:ed:fa:8d:c8:4d:7f:ac:
20:f6:62:2d:43:d4:68:bc:81:39:2b:e3:9b:89:c4:ca:14:c8:
a8:02:77:e7:71:0e:35:c3:be:5f:ff:55:ab:2f:38:d2:56:0c:
38:6b:17:f2:80:30:9d:65:d3:94:5e:1d:d9:2f:9b:ab:05:0d:
a6:56:16:43:81:d1:bd:74:79:d2:3d:0f:64:4c:dd:5e:6b:e3:
a8:76:26:c1:d3:7c:94:e5:13:31:13:5e:e8:cf:83:36:1f:68:
e5:13:0e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:08:10 2025 by rpki-client