Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/3130332e3133342e37362e302f32342d3234203d3e20313338313433.roa
File: 3130332e3133342e37362e302f32342d3234203d3e20313338313433.roa (raw, json)
Hash identifier: qEX4OYiN2K5aBSYBNnOOR/c3wxxgYWgILOryM5GH2lc=
Subject key identifier: 21:9D:BE:DA:50:45:FE:4F:CC:C4:B0:03:65:D4:F7:A1:0E:DA:8B:6E
Certificate issuer: /CN=F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B
Certificate serial: 2F2A84A5D6B8647414F1CB3F367C13E8B6B2D586
Authority key identifier: F5:CC:08:F1:CD:0B:94:57:9D:4F:77:3C:EE:5A:BF:BD:5E:8E:22:0B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/3130332e3133342e37362e302f32342d3234203d3e20313338313433.roa
Signing time: Wed 04 Dec 2024 05:02:35 +0000
ROA not before: Wed 04 Dec 2024 04:57:35 +0000
ROA not after: Wed 03 Dec 2025 05:02:35 +0000
asID: 138143
IP address blocks: 103.134.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:2a:84:a5:d6:b8:64:74:14:f1:cb:3f:36:7c:13:e8:b6:b2:d5:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B
Validity
Not Before: Dec 4 04:57:35 2024 GMT
Not After : Dec 3 05:02:35 2025 GMT
Subject: CN=219DBEDA5045FE4FCCC4B00365D4F7A10EDA8B6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2c:83:1a:07:08:d3:6b:07:88:d4:9a:d4:c7:
4f:48:ff:e7:39:e6:62:73:02:f5:69:3e:46:10:72:
ed:2c:09:fe:fb:03:6e:7e:0f:68:b8:06:9f:0c:80:
c1:e6:c0:52:2c:b7:56:d5:82:e9:77:a5:47:75:60:
e1:7b:09:a5:3d:b4:24:16:1d:4c:2e:4d:67:4a:6a:
ec:d8:44:50:2a:a6:a1:39:9a:f8:d7:6b:fb:51:08:
b3:7a:1c:83:0e:66:40:b5:1a:fc:27:41:de:e0:8e:
10:30:30:bf:45:e8:de:d8:27:7a:33:6f:2f:df:a7:
cd:4a:d5:e9:2c:29:6b:d5:5f:ca:57:c8:f1:4f:66:
51:66:4b:20:06:77:89:61:3b:30:30:7a:54:7c:f7:
05:c2:34:22:31:71:61:5f:ad:54:a9:f3:26:a1:cc:
90:78:ac:b6:8c:c4:af:c4:e8:77:95:73:fd:ed:e4:
1b:f7:2f:fe:37:11:3a:07:71:65:4e:47:62:13:83:
b6:d8:a1:31:1e:db:02:d6:67:01:b8:a9:6c:5e:9b:
ca:1f:52:2d:41:cc:e4:ea:74:b0:27:0c:71:f3:3b:
ae:82:19:07:21:db:9d:8f:6a:9e:5d:4e:65:d9:ba:
a7:6e:ed:cf:74:d5:d4:34:38:62:e4:e4:4c:95:88:
78:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9D:BE:DA:50:45:FE:4F:CC:C4:B0:03:65:D4:F7:A1:0E:DA:8B:6E
X509v3 Authority Key Identifier:
keyid:F5:CC:08:F1:CD:0B:94:57:9D:4F:77:3C:EE:5A:BF:BD:5E:8E:22:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5CC08F1CD0B94579D4F773CEE5ABFBD5E8E220B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d794d36-69f8-4406-bf9f-122ddd17f450/0/3130332e3133342e37362e302f32342d3234203d3e20313338313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.134.76.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:79:09:d7:93:9e:8c:00:20:c6:54:7c:5a:75:ea:18:b5:4f:
a7:aa:04:3c:d0:21:ad:cd:68:c2:8c:5e:83:cd:16:bf:e0:db:
9e:4c:6c:50:70:72:8b:d4:a0:25:15:a9:50:75:1c:c0:b2:1a:
ce:42:5b:56:4f:2f:87:98:a8:44:86:c3:51:df:48:56:92:5e:
b7:39:9e:a6:7e:77:d9:0e:36:cd:9b:58:b8:07:00:de:9e:0d:
eb:b8:54:2b:df:a7:6b:3e:74:ec:74:77:33:a3:11:bd:a7:31:
f2:ad:a0:f0:ce:75:ee:7a:85:57:cd:6c:6f:e5:c9:48:5c:be:
f4:df:58:e3:f7:47:72:08:a1:2e:7f:3c:b1:41:ba:2d:dd:00:
33:58:b9:d0:57:70:8a:5a:7a:85:3d:a1:66:58:83:37:c8:c5:
94:58:dd:82:cf:c1:ee:2f:4e:13:9f:0d:1e:4f:f9:a4:c3:21:
8f:f1:d2:c5:a4:4a:d5:04:44:5c:9c:a4:f8:1b:ef:81:c2:b6:
1c:b0:bc:3b:46:5e:a0:c5:25:06:71:5f:92:4b:46:55:50:e2:
97:10:c4:92:0f:ac:c9:c2:b0:ea:f6:a9:55:5b:76:d4:a1:e0:
6c:c6:34:01:ac:21:ee:e9:03:73:5e:14:69:25:0c:c6:25:9c:
c0:8c:5e:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 09:24:20 2025 by rpki-client