Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33392e302f32342d3234203d3e20313339343234.roa
File: 3130332e3134342e33392e302f32342d3234203d3e20313339343234.roa (raw, json)
Hash identifier: GLcDNEX0tgavndI+MfQtQe+3mTYPu4xrloHdU6jT+Vw=
Subject key identifier: 58:E7:68:A7:B2:FC:B6:9F:75:B3:B1:FC:A7:AB:BD:9E:C5:0D:3D:73
Certificate issuer: /CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A
Certificate serial: 1B44AF56D028BBC8831C7ABC642E5B614D720A86
Authority key identifier: 50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33392e302f32342d3234203d3e20313339343234.roa
Signing time: Sun 15 Dec 2024 08:00:02 +0000
ROA not before: Sun 15 Dec 2024 07:55:02 +0000
ROA not after: Sun 14 Dec 2025 08:00:02 +0000
asID: 139424
IP address blocks: 103.144.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:44:af:56:d0:28:bb:c8:83:1c:7a:bc:64:2e:5b:61:4d:72:0a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=507DBCE0DE73C38C3EE975AE23FB7C0C0377011A
Validity
Not Before: Dec 15 07:55:02 2024 GMT
Not After : Dec 14 08:00:02 2025 GMT
Subject: CN=58E768A7B2FCB69F75B3B1FCA7ABBD9EC50D3D73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1e:a5:3d:9f:cf:ea:10:f6:a0:1b:14:04:27:
4d:69:bb:1f:af:a4:1b:b3:cf:7f:1c:f7:8f:36:19:
87:d8:ab:69:50:29:d0:9c:a2:c5:05:2d:32:0e:f6:
f9:85:71:58:dc:9e:c0:e8:ee:65:d7:c9:39:91:34:
49:fd:45:f1:b2:ec:eb:29:44:66:f7:1f:c5:a0:05:
2d:5a:55:b9:cf:dc:e2:23:04:a0:99:55:87:b3:46:
70:b5:63:22:bc:0d:24:3d:9f:6a:d6:ec:14:ef:7a:
e5:68:af:57:53:6f:8b:50:02:0f:32:c6:a0:5e:1d:
76:54:5e:c0:d9:1a:b5:1d:34:1b:7a:18:ec:e1:27:
4c:80:a2:41:13:d7:73:42:fc:f6:c8:cf:3b:14:4e:
15:6b:0e:15:5e:cc:1b:35:f9:88:ed:37:11:d7:bf:
d7:76:33:b3:7f:2c:7f:a6:f6:b7:5e:4d:53:a5:f8:
ac:a2:9d:75:c7:dd:18:ca:18:e6:7f:97:ab:27:93:
23:76:0c:e4:31:93:c4:d3:12:1f:0b:77:07:1e:b2:
42:02:72:b3:96:42:9d:f4:0d:af:ae:03:f9:e9:0e:
18:b7:3c:f0:80:ef:9a:f3:5c:61:cb:49:5e:f8:27:
e2:d9:19:6b:a7:1f:12:19:85:a9:ad:65:3d:86:a9:
a5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E7:68:A7:B2:FC:B6:9F:75:B3:B1:FC:A7:AB:BD:9E:C5:0D:3D:73
X509v3 Authority Key Identifier:
keyid:50:7D:BC:E0:DE:73:C3:8C:3E:E9:75:AE:23:FB:7C:0C:03:77:01:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/507DBCE0DE73C38C3EE975AE23FB7C0C0377011A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ab0a59a-61ba-462e-a82a-a202b7fb80f0/0/3130332e3134342e33392e302f32342d3234203d3e20313339343234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.144.39.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:61:40:73:80:44:3d:54:83:24:2c:83:52:63:9a:9e:44:3c:
8e:ad:64:55:be:02:f0:ce:b1:d4:eb:f1:55:db:a0:38:c3:8f:
bf:f4:55:e1:25:1a:7d:2a:74:c4:cc:a4:9c:dd:81:08:25:dc:
d5:4d:c3:d4:5d:8e:14:cb:13:23:9c:1d:77:34:c7:a7:67:4a:
36:df:71:1d:e9:dd:a8:40:8d:11:d0:4c:03:98:41:e8:b2:3e:
54:c6:16:5f:8b:3c:29:82:4f:af:df:14:b0:bc:48:7a:4d:8f:
19:91:e0:f0:11:a7:58:28:85:72:10:bc:b8:02:a5:4d:df:1f:
f2:19:db:53:49:6e:b0:1a:f7:c2:77:13:af:5c:16:85:04:a8:
08:9a:16:65:21:1d:00:12:2f:65:3c:87:4c:16:2e:85:16:0e:
f8:4e:f6:ec:8f:40:0f:a1:a9:87:08:cc:61:bd:16:4f:28:e3:
97:44:2e:47:75:90:39:40:69:f4:8b:d0:8c:01:71:4b:ca:8d:
9f:08:74:a3:45:cb:c4:3a:c2:bf:4d:ef:1f:5b:13:12:05:fc:
cc:7d:11:be:0d:71:17:84:af:fe:6c:ab:90:71:a0:dd:2a:5e:
66:72:14:38:ec:10:07:b3:bd:eb:55:6d:74:f5:d0:03:f7:13:
7a:da:06:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:22:40 2025 by rpki-client