Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32392e302f32342d3234203d3e203538353532.roa
File: 3130332e31312e32392e302f32342d3234203d3e203538353532.roa (raw, json)
Hash identifier: xVbs2fCV9MRQpIMXIqp/so5D6pJeJ6rHnVZ5EwuWSJM=
Subject key identifier: B0:58:9F:30:5C:F9:C5:7D:08:F3:B9:8D:7E:CA:A9:CA:FC:0E:87:73
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 48EA01619A98D07E3863EB1D1D90EF8E5082E2B4
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32392e302f32342d3234203d3e203538353532.roa
Signing time: Mon 01 Jul 2024 01:03:04 +0000
ROA not before: Mon 01 Jul 2024 00:58:04 +0000
ROA not after: Mon 30 Jun 2025 01:03:04 +0000
asID: 58552
IP address blocks: 103.11.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:ea:01:61:9a:98:d0:7e:38:63:eb:1d:1d:90:ef:8e:50:82:e2:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Jul 1 00:58:04 2024 GMT
Not After : Jun 30 01:03:04 2025 GMT
Subject: CN=B0589F305CF9C57D08F3B98D7ECAA9CAFC0E8773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ed:c8:a6:57:0b:a4:79:0d:54:c3:51:d2:08:
c8:a4:5b:b4:ab:be:2a:47:65:f8:84:e4:42:f4:4d:
b7:db:7b:9b:16:be:b5:fe:fd:8b:0f:61:f3:28:0d:
48:29:84:89:85:db:f3:36:78:b0:7c:63:a1:ef:f4:
fe:c9:5b:13:5c:5f:dc:0e:0d:e7:bc:f7:ae:aa:b3:
08:18:2e:70:d9:7e:d6:2d:99:4b:66:60:87:18:1e:
12:48:d4:45:1e:ef:f1:c5:75:5c:12:7c:00:27:4f:
bb:c0:11:17:b3:f5:5b:ff:66:93:9e:6b:66:f2:de:
ee:6c:91:19:63:2c:56:3a:da:25:eb:b5:8a:25:06:
25:c6:e1:de:34:ad:af:c6:35:e6:3b:b9:a6:be:92:
d0:bc:6d:8c:e3:92:42:0e:e4:12:c3:e4:4d:a6:7a:
4c:7e:26:0c:b2:97:51:0a:90:92:0b:c0:b1:81:4e:
e9:ba:14:93:4b:13:58:40:50:eb:b8:f4:33:20:e8:
56:a7:4e:bb:39:7e:e6:9d:87:61:f4:b3:bf:08:e1:
d3:ff:6a:b1:13:4d:11:38:80:4b:48:cd:0f:bd:27:
d4:49:27:5d:01:41:4f:6e:f8:67:cf:23:63:a2:18:
bb:8e:2b:67:2c:d2:b2:ce:cf:f4:5f:b8:fa:64:54:
1a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:58:9F:30:5C:F9:C5:7D:08:F3:B9:8D:7E:CA:A9:CA:FC:0E:87:73
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32392e302f32342d3234203d3e203538353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.11.29.0/24
Signature Algorithm: sha256WithRSAEncryption
46:58:29:71:a3:52:38:40:ae:8a:41:cc:0f:86:15:23:8d:8d:
10:ee:d4:1a:a7:ec:42:5a:06:59:8f:a1:90:0e:c6:17:25:c3:
6b:d1:86:29:8b:7f:45:4d:8d:e0:be:e1:46:c2:05:f5:70:db:
ef:6d:4e:e1:29:9c:39:4e:a8:6a:e7:d0:5b:6e:2d:09:6b:0f:
1b:0f:08:ab:78:d1:52:56:6b:b3:d0:96:78:a1:cd:36:86:60:
3b:13:49:59:33:6b:23:bf:f4:9e:d2:c3:c0:82:3e:7d:b0:de:
92:e0:b3:06:c6:96:97:d5:d8:ee:80:e4:53:1e:15:65:ff:61:
4d:0c:b3:2f:8b:da:e3:93:63:5a:b6:77:e4:57:c4:7b:fc:48:
eb:fe:28:df:21:04:7e:27:33:20:28:8f:29:9a:06:8a:65:9e:
a6:ff:67:4f:cd:3c:94:ab:b6:90:14:cd:90:3a:01:43:25:d3:
fa:46:13:7c:4d:26:90:ae:4f:92:a0:63:2d:42:6e:e3:7d:35:
dc:a2:59:28:cc:16:2e:27:63:79:a1:98:ef:9e:ad:69:c4:e0:
41:33:91:1c:06:fd:ba:2e:62:1c:06:9d:49:0c:bf:1f:a4:da:
bf:e9:92:3b:3f:b1:70:a0:13:a7:f9:16:49:0e:f5:ea:4d:4d:
51:72:12:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:48 2025 by rpki-client