Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3133302e302f32342d3234203d3e20313332363633.roa
File: 3130332e32362e3133302e302f32342d3234203d3e20313332363633.roa (raw, json)
Hash identifier: 0Awtg6B32GW5NWll2qH+GxCAvBSSeLSwfPyArxlbT7c=
Subject key identifier: 64:18:C8:46:29:22:2D:03:66:81:33:B6:66:8D:B0:14:09:02:EA:83
Certificate issuer: /CN=9A635D422743AA8C31CA82C7F503B95FFB64A4DF
Certificate serial: 76A1E9CDF916C75586CFA57EF86FF95D9CACB657
Authority key identifier: 9A:63:5D:42:27:43:AA:8C:31:CA:82:C7:F5:03:B9:5F:FB:64:A4:DF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3133302e302f32342d3234203d3e20313332363633.roa
Signing time: Mon 16 Dec 2024 13:00:01 +0000
ROA not before: Mon 16 Dec 2024 12:55:01 +0000
ROA not after: Mon 15 Dec 2025 13:00:01 +0000
asID: 132663
IP address blocks: 103.26.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:a1:e9:cd:f9:16:c7:55:86:cf:a5:7e:f8:6f:f9:5d:9c:ac:b6:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A635D422743AA8C31CA82C7F503B95FFB64A4DF
Validity
Not Before: Dec 16 12:55:01 2024 GMT
Not After : Dec 15 13:00:01 2025 GMT
Subject: CN=6418C84629222D03668133B6668DB0140902EA83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:84:f3:89:f1:32:85:d6:66:cf:3d:10:1b:3b:
ca:27:db:0f:14:92:67:98:54:c3:b8:51:6f:b4:02:
7d:88:99:4a:45:9a:7e:cc:aa:08:40:63:c6:26:66:
48:d4:86:cb:1c:97:50:d1:05:c5:38:b6:de:9d:38:
8e:60:bb:1b:75:2a:9a:6a:6c:5c:26:29:14:e5:08:
36:85:3a:11:a1:52:64:d2:17:08:da:97:61:da:ae:
fa:92:d3:7e:c8:14:ba:52:00:c4:31:eb:45:c8:2a:
30:4d:42:40:9b:51:50:e3:3c:75:d8:40:28:37:84:
8d:ec:dc:e9:2b:5c:40:f9:7e:a7:09:70:95:73:2e:
51:dd:80:87:9d:e5:eb:e6:96:06:0d:4f:7c:c3:e2:
6a:e6:6a:42:39:56:8e:c1:75:a7:8d:38:70:45:fb:
b8:ba:73:f3:c2:1e:29:7a:f0:d2:63:6c:a4:a3:ca:
55:03:f5:a9:e9:ae:92:55:f7:c6:dc:33:ee:6b:ab:
00:63:36:0b:72:de:c1:56:e2:e3:b5:a4:7c:f2:10:
bf:36:28:74:6b:c0:e4:f0:da:fe:2e:82:1e:54:92:
14:5e:54:e5:b7:67:45:07:6c:4d:78:26:1a:51:80:
c4:50:94:90:6d:51:c5:4c:cd:3c:aa:e5:91:f2:24:
c6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:18:C8:46:29:22:2D:03:66:81:33:B6:66:8D:B0:14:09:02:EA:83
X509v3 Authority Key Identifier:
keyid:9A:63:5D:42:27:43:AA:8C:31:CA:82:C7:F5:03:B9:5F:FB:64:A4:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A635D422743AA8C31CA82C7F503B95FFB64A4DF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5da32967-d558-4a34-be8e-64ef4cfc04e3/0/3130332e32362e3133302e302f32342d3234203d3e20313332363633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.26.130.0/24
Signature Algorithm: sha256WithRSAEncryption
73:56:42:f6:86:87:0c:31:32:67:ca:fa:07:52:07:e9:4c:62:
a8:27:7c:b2:ea:bb:27:a9:d8:6f:90:1c:12:b6:84:f2:26:92:
0d:d5:32:20:43:6e:eb:8f:1c:47:37:00:61:3a:9e:b8:e8:be:
32:ed:c3:fc:47:f5:ab:07:e5:62:15:b4:cf:70:3d:2c:af:93:
83:a9:2f:b1:57:b6:b6:41:b1:80:8b:e5:df:98:b5:e6:c3:70:
2a:16:52:50:78:65:c3:ed:70:7a:71:38:0d:db:29:e7:27:cb:
96:66:8b:30:b9:b8:63:f6:04:36:7b:bd:d1:37:35:43:49:03:
8c:86:fb:b1:f0:77:b1:23:1b:01:79:34:40:41:cc:22:97:f6:
f2:95:1b:c2:ee:fd:4a:85:01:4a:23:33:32:6f:46:e6:65:2b:
f9:0f:a3:a8:3c:81:48:5a:c3:41:be:c3:63:21:0a:c8:f4:6f:
4d:78:aa:0a:a0:a7:9b:7b:c9:0b:a2:f7:5f:0b:20:50:d1:06:
5d:55:82:97:9c:9c:f4:15:0e:86:06:20:ce:38:c0:64:a7:8d:
f3:3d:be:49:4c:c4:07:0d:21:58:30:58:7a:3e:61:f1:99:08:
5b:5b:0f:5a:9f:aa:13:aa:45:51:6e:61:33:0e:4d:61:e3:8c:
f0:9d:fb:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:10:39 2025 by rpki-client