Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/3130332e35342e302e302f32342d3234203d3e203535363937.roa
File: 3130332e35342e302e302f32342d3234203d3e203535363937.roa (raw, json)
Hash identifier: C+N/4gRGIF8qJkkBp+BXWNuZwbO9GWK96z7S/WTB/J0=
Subject key identifier: F4:76:C1:61:47:FA:D5:0C:4C:42:2D:BB:8F:23:2D:63:B0:33:21:60
Certificate issuer: /CN=1FA59BCEE428AFC03264229113A5539024697A14
Certificate serial: 656B18D0C7B6DED967EB2643A05CE6AF4AFFF7B7
Authority key identifier: 1F:A5:9B:CE:E4:28:AF:C0:32:64:22:91:13:A5:53:90:24:69:7A:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FA59BCEE428AFC03264229113A5539024697A14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/3130332e35342e302e302f32342d3234203d3e203535363937.roa
Signing time: Mon 01 Jul 2024 01:04:17 +0000
ROA not before: Mon 01 Jul 2024 00:59:17 +0000
ROA not after: Mon 30 Jun 2025 01:04:17 +0000
asID: 55697
IP address blocks: 103.54.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:6b:18:d0:c7:b6:de:d9:67:eb:26:43:a0:5c:e6:af:4a:ff:f7:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1FA59BCEE428AFC03264229113A5539024697A14
Validity
Not Before: Jul 1 00:59:17 2024 GMT
Not After : Jun 30 01:04:17 2025 GMT
Subject: CN=F476C16147FAD50C4C422DBB8F232D63B0332160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b3:d9:f1:a8:90:40:eb:2d:30:e5:2d:69:eb:
14:e4:76:47:44:8b:69:99:5b:db:53:40:7e:fa:1d:
63:30:07:da:e1:7b:14:2a:9c:7f:a1:74:c6:fc:c2:
67:30:a2:83:0a:10:2c:b2:cb:80:0a:fb:72:76:49:
a8:bd:d6:35:9e:b8:57:fc:ff:ce:8d:b6:a5:31:f6:
6c:30:ff:27:cb:34:16:1a:4d:65:93:e2:56:ad:4f:
ab:fa:a2:a3:c4:8c:e3:66:b9:2c:d6:68:ff:aa:9b:
7f:00:55:23:e8:48:74:c9:ea:c0:b3:bb:4b:27:9d:
c7:f2:44:3b:27:a7:86:25:2a:1d:fd:6a:b9:64:e4:
24:e2:87:64:4e:0f:0b:28:09:e0:aa:21:2b:dd:d7:
0c:c1:42:9e:0a:a1:f3:31:60:ab:c8:12:1f:f0:d4:
c3:c4:55:39:a7:69:96:5c:d2:e6:0c:e5:81:4a:0b:
2a:1c:c5:3d:bc:40:28:e5:18:3c:d0:ec:96:6d:de:
df:40:b0:79:79:60:ce:4f:a4:61:1e:83:c8:e4:cf:
39:bf:f6:1f:b8:80:b1:b2:12:b4:79:55:dd:90:bf:
0f:b7:34:0b:c3:8f:ec:40:83:be:be:c6:61:c3:d4:
e2:d8:e9:00:d1:1a:0e:00:77:c1:4e:e4:70:2a:d8:
d1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:76:C1:61:47:FA:D5:0C:4C:42:2D:BB:8F:23:2D:63:B0:33:21:60
X509v3 Authority Key Identifier:
keyid:1F:A5:9B:CE:E4:28:AF:C0:32:64:22:91:13:A5:53:90:24:69:7A:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/1FA59BCEE428AFC03264229113A5539024697A14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FA59BCEE428AFC03264229113A5539024697A14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/3130332e35342e302e302f32342d3234203d3e203535363937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.54.0.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:84:46:a0:15:9b:b4:62:f3:cb:96:2c:33:96:f2:15:98:17:
0e:89:d1:5e:bd:0a:84:c8:98:b0:86:5d:fa:b4:77:15:d4:94:
0b:f1:62:da:a4:30:af:29:5e:4d:b4:f9:85:55:00:37:6a:27:
3d:0d:07:ac:4a:dc:77:b2:31:e5:90:e4:8f:eb:13:8e:59:a6:
4e:aa:f4:d2:70:58:55:1c:a7:b7:9e:be:57:eb:09:25:ac:10:
56:1f:ac:2c:3e:27:f9:10:57:fa:11:8c:65:2c:ad:a5:d2:70:
95:c8:55:fb:bd:7c:a3:e3:b1:13:00:cc:35:e9:09:b5:ca:22:
ad:cf:7c:6a:73:9d:c6:f7:d2:0e:4f:04:83:89:8f:0d:5c:b1:
7a:82:1d:a1:e2:f7:ea:2b:1c:13:38:56:fb:38:55:9d:ef:da:
0f:6b:28:c7:af:3c:93:32:e7:15:22:c7:08:86:38:d8:1f:4f:
60:db:bb:d6:95:41:89:bc:7b:e2:ba:30:d4:af:4f:5b:8e:85:
93:4e:38:bd:8a:37:2d:4a:7a:38:5f:4c:3e:19:51:dc:f2:ac:
13:7c:80:1f:b4:16:00:f9:1e:a0:90:be:db:93:f3:30:53:c0:
0d:44:62:f1:c4:10:6d:1f:1c:84:11:23:97:54:3a:61:c9:98:
a9:0a:02:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:44:04 2025 by rpki-client