Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa
File: 3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa (raw, json)
Hash identifier: SkrAvX0pF+pQyxeTzXJZ/61PFAWYMW8+rbO8WcqeNoE=
Subject key identifier: 4E:DA:06:1F:D0:6F:E4:1A:DA:F3:08:66:7A:1F:D7:25:17:CD:99:C6
Certificate issuer: /CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A
Certificate serial: 6758D588036FFD5174F42C9AA1E0CEAF8A488CBA
Authority key identifier: 50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa
Signing time: Sun 15 Dec 2024 08:00:02 +0000
ROA not before: Sun 15 Dec 2024 07:55:02 +0000
ROA not after: Sun 14 Dec 2025 08:00:02 +0000
asID: 139424
IP address blocks: 103.144.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:58:d5:88:03:6f:fd:51:74:f4:2c:9a:a1:e0:ce:af:8a:48:8c:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A
Validity
Not Before: Dec 15 07:55:02 2024 GMT
Not After : Dec 14 08:00:02 2025 GMT
Subject: CN=4EDA061FD06FE41ADAF308667A1FD72517CD99C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:56:9c:23:c0:39:1a:33:29:c4:ab:4f:a7:57:
f0:87:e4:91:e4:2d:38:7c:31:ca:29:e2:d2:3f:06:
65:45:ec:68:94:cc:66:b5:8d:fc:bc:a2:76:67:fd:
5e:39:6f:bc:4a:85:0c:00:47:52:b4:76:48:7c:da:
8a:93:e0:50:e3:59:ab:31:b3:fd:00:35:cd:85:a3:
7a:5e:60:f8:38:64:8c:0e:f4:aa:e1:64:e3:29:e4:
fc:1e:5a:6a:57:a1:f4:8e:05:b0:aa:8e:5f:b7:72:
69:c0:62:0a:8b:87:57:f1:7c:52:19:3b:6f:cf:58:
ac:8c:10:eb:a5:bd:90:60:ad:7c:8e:64:ef:ee:94:
be:d9:19:2e:37:8b:1b:1e:57:48:8e:f3:bb:e3:c4:
e6:fb:bd:8e:05:20:97:93:62:5a:9c:cf:64:84:52:
b6:e9:d6:38:30:65:49:9e:44:a2:75:1c:ee:6c:94:
80:a0:f3:d4:7d:00:dc:f9:6d:79:1b:31:e8:3d:7e:
9f:8f:3b:ac:7e:0b:80:15:7e:8c:d9:4b:06:d9:db:
b3:df:50:fa:e7:ca:0a:a9:4e:a9:4e:f4:aa:d7:74:
fe:57:4b:8c:07:b0:9e:91:6b:c1:7a:5b:5f:c9:80:
64:00:82:30:25:5b:b1:36:ce:90:f6:2f:53:bc:ef:
75:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:DA:06:1F:D0:6F:E4:1A:DA:F3:08:66:7A:1F:D7:25:17:CD:99:C6
X509v3 Authority Key Identifier:
keyid:50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33382e302f32342d3234203d3e20313339343234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.144.38.0/24
Signature Algorithm: sha256WithRSAEncryption
82:26:f4:0b:28:cf:3a:68:78:37:d5:65:85:71:21:98:24:59:
8a:4f:66:57:9f:0f:e1:9c:79:9a:f5:7e:df:94:39:ff:bd:4f:
23:09:b7:6f:f7:73:db:71:ed:c5:a5:79:13:07:e5:d7:0a:cd:
86:70:a6:c0:e6:95:78:da:56:ac:de:f1:ab:6d:50:a4:39:dc:
4d:fe:78:57:fe:e0:88:48:81:94:da:ae:ee:02:28:4c:92:31:
94:c0:14:e5:33:ad:e3:ee:0c:d3:f4:a8:f5:8f:f6:13:2f:37:
b1:21:51:ae:77:51:0e:52:22:28:72:29:1c:a2:5d:14:21:a3:
48:f8:51:c9:07:b4:e8:5e:f4:ac:ee:2c:61:66:a8:de:70:a3:
6c:3d:25:6e:80:66:07:dd:64:2e:52:e7:74:06:82:af:ad:b2:
9d:03:92:67:3f:25:61:ed:4a:1b:dc:65:62:e1:eb:82:74:22:
d4:de:a0:7b:5a:ab:08:0b:dc:0f:89:bb:49:07:d7:19:18:05:
a5:8f:b5:f1:23:08:36:0b:ff:35:9d:fd:d4:52:28:0b:e1:35:
27:d0:b1:4d:92:89:3a:ab:3b:e3:16:4d:67:b7:c0:72:55:d0:
20:da:e3:fd:ce:1c:d7:39:96:9a:03:81:c4:35:7e:06:d9:45:
8d:49:d7:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:40:09 2025 by rpki-client