Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31352e302f32342d3234203d3e20313337333331.roa
File: 3130332e3130322e31352e302f32342d3234203d3e20313337333331.roa (raw, json)
Hash identifier: MQx/O8O2uQJVqHYOSxfo/Q2KG9J3bcLTiM4IdvIIF+I=
Subject key identifier: 87:BA:58:53:22:96:11:0E:48:A2:DA:1D:50:45:D0:17:4F:7D:A8:4A
Certificate issuer: /CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25
Certificate serial: 63E8CB4E008436FC555002DFD9E512BB25199C3A
Authority key identifier: 08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31352e302f32342d3234203d3e20313337333331.roa
Signing time: Tue 19 Nov 2024 04:00:01 +0000
ROA not before: Tue 19 Nov 2024 03:55:01 +0000
ROA not after: Tue 18 Nov 2025 04:00:01 +0000
asID: 137331
IP address blocks: 103.102.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:e8:cb:4e:00:84:36:fc:55:50:02:df:d9:e5:12:bb:25:19:9c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08773191FBFC21A3C8615A3E36A2ACB187F63C25
Validity
Not Before: Nov 19 03:55:01 2024 GMT
Not After : Nov 18 04:00:01 2025 GMT
Subject: CN=87BA58532296110E48A2DA1D5045D0174F7DA84A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:8c:62:e9:02:87:d2:ea:5f:b5:7d:81:a7:e8:
49:a4:b1:7e:3f:c0:25:19:34:06:7e:6a:73:05:c0:
af:cb:02:29:26:b2:08:e2:58:ce:db:6e:e5:c1:35:
eb:df:b2:c3:18:b6:1b:46:ef:cd:29:22:18:0e:e3:
68:80:b5:f8:07:a3:fb:e1:54:f8:44:98:7e:64:52:
29:f9:59:31:99:07:fb:bf:65:db:40:89:ff:5c:1a:
43:7e:64:e4:59:a9:c6:28:a9:c4:62:ad:3f:c8:6d:
86:dc:b4:6d:6d:74:9d:19:21:42:e8:f2:bf:37:ce:
3a:77:40:f8:ed:ab:ce:21:48:c0:53:06:2e:3c:4d:
11:fc:d0:50:13:68:5a:c0:15:ab:8f:e3:3b:b2:85:
6f:57:36:59:5e:bf:d1:fc:6d:9f:65:66:01:72:2a:
f5:44:9e:68:f0:2d:92:45:6b:24:cc:8d:07:d2:48:
34:b1:6c:88:3e:f0:12:10:df:60:e0:81:7c:a6:68:
c3:a0:95:69:9a:cb:7b:3f:ec:b4:22:76:71:4d:6f:
6b:5f:bc:79:fa:71:0c:8a:4d:e8:29:af:8e:b7:d2:
a0:74:15:d1:dd:08:c5:1b:79:3e:ca:e4:59:f6:0b:
2d:8b:49:ba:2d:0b:d2:12:d2:70:af:7e:11:9c:08:
99:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:BA:58:53:22:96:11:0E:48:A2:DA:1D:50:45:D0:17:4F:7D:A8:4A
X509v3 Authority Key Identifier:
keyid:08:77:31:91:FB:FC:21:A3:C8:61:5A:3E:36:A2:AC:B1:87:F6:3C:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/08773191FBFC21A3C8615A3E36A2ACB187F63C25.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08773191FBFC21A3C8615A3E36A2ACB187F63C25.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5f86b12e-e574-426b-aa6b-4939e3b030ba/0/3130332e3130322e31352e302f32342d3234203d3e20313337333331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.15.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:be:cb:2a:7c:8b:73:c2:1a:65:c1:76:10:7b:05:ef:df:df:
5a:93:0e:59:a1:12:0b:7f:fb:15:0e:a2:b7:ca:85:fe:e0:cc:
11:d3:8d:a5:77:cb:38:84:ef:04:b2:49:43:21:de:f6:04:19:
d6:dc:55:4c:59:06:8d:c2:ca:da:20:e9:73:e2:f6:e5:b4:be:
b9:ef:f5:36:50:e6:88:31:ad:35:07:f9:ed:97:3d:b4:9d:f0:
7e:a3:1e:cb:75:46:2a:0d:97:20:3f:0f:08:79:ab:0e:11:6c:
ac:81:fd:dc:2d:f6:a7:55:d0:45:5a:cc:52:6e:84:63:db:50:
66:cc:47:49:13:8c:50:bf:58:5a:cb:ad:fe:12:68:b6:5e:04:
a4:dc:99:b5:48:5c:bd:92:76:6d:f3:c6:0a:58:95:13:28:5b:
2c:51:42:81:0c:1d:a0:1e:25:d4:a1:82:4e:33:b0:f8:38:85:
01:55:e1:05:78:4b:8c:bc:13:5f:b8:0f:bf:82:25:44:4a:13:
83:cd:78:a2:64:4b:1c:f0:cc:24:8d:5e:f7:de:56:79:0b:46:
be:a2:8f:8b:da:03:4c:28:fa:c9:d4:c5:01:32:ec:c9:46:54:
e5:0a:4b:89:86:c3:6a:6e:1a:3d:4e:18:19:d5:6f:84:51:eb:
5c:0d:a4:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:26:10 2025 by rpki-client