Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa
File: 3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa (raw, json)
Hash identifier: UkRWHYHFSXJQvTnbIud8PmlndW+kHrowErEkvw8GIIU=
Subject key identifier: 34:22:63:AB:DC:D7:F0:5F:B9:E5:87:4B:0A:9C:1D:88:A7:89:00:44
Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733
Certificate serial: 686562270CE3714810DADB70B9BF93562185DD38
Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa
Signing time: Wed 08 Jan 2025 02:00:00 +0000
ROA not before: Wed 08 Jan 2025 01:55:00 +0000
ROA not after: Wed 07 Jan 2026 02:00:00 +0000
asID: 138089
IP address blocks: 103.124.138.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:65:62:27:0c:e3:71:48:10:da:db:70:b9:bf:93:56:21:85:dd:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733
Validity
Not Before: Jan 8 01:55:00 2025 GMT
Not After : Jan 7 02:00:00 2026 GMT
Subject: CN=342263ABDCD7F05FB9E5874B0A9C1D88A7890044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:25:55:5a:ae:67:a5:51:14:35:c4:10:96:42:
e8:84:59:6b:16:89:c8:9f:b5:98:7e:b3:fc:be:97:
d2:18:01:0f:c7:a2:7f:e8:eb:01:89:43:78:2c:14:
82:50:85:47:d0:73:d6:d6:4d:3f:8b:98:48:89:78:
28:b2:f2:c9:66:18:54:f5:3a:9b:fa:13:f4:4a:7d:
19:3b:f6:20:77:99:fb:95:c6:8c:a9:8a:bb:5e:79:
64:6a:4b:b1:cb:29:85:41:b8:43:2e:48:45:01:9c:
8f:d9:f2:79:11:f2:a1:be:fb:e8:58:3e:48:4c:52:
d4:2e:34:0d:f9:63:f5:20:6a:fa:f0:57:89:d2:9d:
6c:8c:46:61:85:de:d1:0d:82:d2:78:ab:06:1a:df:
9f:6d:50:01:e1:32:44:b9:10:ff:e1:05:c6:47:e1:
f5:1f:69:22:25:a7:1f:48:45:bd:5c:da:b3:0a:6c:
76:9a:5b:67:ef:86:80:45:6f:88:97:77:21:00:36:
3b:bc:1c:08:7d:39:9f:c4:50:2a:fb:38:a0:e9:4b:
16:39:60:00:2c:69:68:71:6f:7b:eb:41:b7:03:28:
d9:c6:c0:f1:00:0b:ff:7e:f5:47:af:17:48:f7:1a:
db:2d:f2:6f:07:c4:88:cb:30:2e:d6:1c:77:7c:65:
96:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:22:63:AB:DC:D7:F0:5F:B9:E5:87:4B:0A:9C:1D:88:A7:89:00:44
X509v3 Authority Key Identifier:
keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.124.138.0/23
Signature Algorithm: sha256WithRSAEncryption
01:19:76:0e:b5:e9:9d:ca:89:fb:a0:cf:ce:3a:08:31:ae:6d:
ba:20:00:63:d9:33:92:b5:dd:94:d4:83:78:b9:61:d0:34:2e:
f2:40:3f:04:de:a0:4d:ab:94:86:8f:77:e1:98:ef:84:13:44:
eb:34:80:cd:1f:af:fd:5b:50:d4:f8:7d:89:ac:cb:8c:d9:4e:
a3:08:38:00:ac:f0:ae:f6:07:ea:55:2b:5c:69:65:c4:f2:52:
ac:f6:0a:65:32:d1:d0:f8:a6:23:b0:56:82:d9:2d:98:c3:ef:
01:46:7a:5e:53:df:b0:4b:ce:0e:9b:3b:c7:de:3a:18:68:00:
b7:50:85:aa:2f:15:25:2f:11:93:63:d2:28:e6:93:e1:fe:f7:
e4:e4:30:59:fd:56:db:48:4c:0e:9d:e0:3d:b1:d6:4a:54:2f:
9c:ab:a5:d2:28:6b:ec:36:b5:48:62:df:54:53:e2:de:98:ec:
96:b3:dc:c9:87:c8:49:71:41:53:62:e0:19:2d:e9:92:40:dc:
35:1c:12:a6:2b:e7:18:6f:6e:eb:1d:39:d9:13:ad:13:c8:0e:
40:ee:69:6d:79:33:86:4c:30:bc:74:a4:04:59:c9:ab:4e:34:
c6:a2:8c:b1:81:ca:f2:2d:e0:ec:e8:85:27:9b:0a:b2:cd:ce:
9b:0b:d1:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:46:52 2025 by rpki-client