Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa
File: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (raw, json)
Hash identifier: omt0on/osncWzWrbGIk75aVtn8fXGKFlF84iedQ76S8=
Subject key identifier: D8:82:0D:97:A0:8F:9E:16:FD:44:BD:E7:51:FE:09:FB:12:E6:19:09
Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657
Certificate serial: 3F62464E1ACBBE1CB1D8AC77E314FD7AE3D1A065
Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa
Signing time: Mon 20 Jan 2025 17:00:02 +0000
ROA not before: Mon 20 Jan 2025 16:55:02 +0000
ROA not after: Mon 19 Jan 2026 17:00:02 +0000
asID: 147131
IP address blocks: 103.176.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:62:46:4e:1a:cb:be:1c:b1:d8:ac:77:e3:14:fd:7a:e3:d1:a0:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657
Validity
Not Before: Jan 20 16:55:02 2025 GMT
Not After : Jan 19 17:00:02 2026 GMT
Subject: CN=D8820D97A08F9E16FD44BDE751FE09FB12E61909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:50:df:3a:09:d1:59:7f:f8:a9:e2:e7:25:a8:
17:0e:3f:cc:2c:47:ab:86:88:38:93:5b:cf:26:db:
3b:32:3b:d7:04:05:6d:2a:59:ea:d9:86:e8:7c:41:
91:69:ea:5b:da:19:d3:20:03:11:aa:74:4f:de:2e:
d9:0d:a6:59:a0:0c:f1:a7:3c:44:4c:74:8c:e6:51:
bb:5f:2e:3c:13:ae:4d:10:ec:61:b0:b1:2f:f4:f0:
1c:5d:a9:3f:53:c8:17:2e:ee:49:e5:63:0d:47:af:
d1:e4:24:93:5c:d1:50:13:da:da:ea:95:41:e0:4a:
58:43:ed:ca:31:25:d4:1c:1a:88:e1:ec:f8:ea:58:
fb:ac:38:ff:6a:9b:c2:26:f5:46:18:22:e2:30:84:
20:3d:5e:bb:4d:21:02:f0:0d:2e:ec:b2:88:75:b6:
d4:66:3b:d9:7d:5e:fa:d4:9c:3b:26:90:fb:bd:a9:
9c:93:3e:85:c2:f5:6d:32:d1:13:e6:00:a9:78:6d:
9a:0d:51:b4:d5:15:e3:c3:6f:62:ee:53:2b:f5:73:
e2:a8:77:2f:23:7e:d1:40:bd:6d:8b:a2:0e:b2:62:
ca:6c:94:69:f0:94:f8:c5:ce:3b:1c:f0:2b:20:83:
11:0f:9c:fd:46:bc:e0:e6:76:0e:a3:06:cf:e1:8b:
05:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:82:0D:97:A0:8F:9E:16:FD:44:BD:E7:51:FE:09:FB:12:E6:19:09
X509v3 Authority Key Identifier:
keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.176.96.0/24
Signature Algorithm: sha256WithRSAEncryption
24:94:11:27:45:04:5b:59:2f:f7:f8:a7:52:cb:45:89:3e:0a:
da:59:93:76:49:e5:d4:13:af:04:5c:01:e9:3b:80:26:d2:38:
ee:e6:60:09:f1:01:59:4a:9d:21:00:1c:a1:a6:fb:15:23:7e:
ba:66:c7:60:60:c6:b3:e7:95:18:93:67:34:a8:96:0a:dc:37:
20:f0:33:df:b0:a5:97:e1:00:5d:53:32:7a:b0:50:02:63:52:
e6:18:55:63:cb:ec:69:90:a1:0a:2e:48:1b:06:e7:01:54:6a:
c0:c1:2b:43:a3:6c:ba:77:6c:d1:cf:f3:a4:74:5e:e9:8c:d9:
85:85:d7:c0:da:77:74:3d:53:72:09:92:2d:76:44:05:5b:f7:
1a:d8:e5:12:65:85:18:52:57:54:24:0c:3a:6f:0b:fe:03:28:
10:89:c3:f4:6f:ee:db:fe:f6:41:33:ca:5b:01:5a:72:51:0b:
e6:e1:56:d9:c3:1f:50:eb:8e:ae:66:dd:c2:10:5f:40:8d:74:
9d:0e:0f:cd:b5:ad:a2:42:79:54:fb:da:ac:d3:77:81:9f:02:
33:57:9f:c0:fa:41:4b:57:29:31:70:be:de:23:d7:bd:5f:5d:
db:7f:8f:cf:38:80:5b:b6:1a:2f:e5:3a:c4:98:94:02:ea:8b:
85:6d:35:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:36 2025 by rpki-client