Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235352e302f32342d3234203d3e20313439393433.roa
File: 3130332e3139312e3235352e302f32342d3234203d3e20313439393433.roa (raw, json)
Hash identifier: uoMaFn6K0kXeGqCIYO963bxjg6ulr+R66p0nlkWHE2E=
Subject key identifier: BE:CD:6F:50:84:15:F8:B3:4C:CA:59:F4:2E:2E:07:C7:3B:F0:02:4E
Certificate issuer: /CN=ADE0D4624859A4D642D8C07FD007B4EEE066EFF3
Certificate serial: 6B33A249C352958A6017EE62F636C9FBBE541EC5
Authority key identifier: AD:E0:D4:62:48:59:A4:D6:42:D8:C0:7F:D0:07:B4:EE:E0:66:EF:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235352e302f32342d3234203d3e20313439393433.roa
Signing time: Fri 26 Jul 2024 10:00:01 +0000
ROA not before: Fri 26 Jul 2024 09:55:01 +0000
ROA not after: Fri 25 Jul 2025 10:00:01 +0000
asID: 149943
IP address blocks: 103.191.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:33:a2:49:c3:52:95:8a:60:17:ee:62:f6:36:c9:fb:be:54:1e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADE0D4624859A4D642D8C07FD007B4EEE066EFF3
Validity
Not Before: Jul 26 09:55:01 2024 GMT
Not After : Jul 25 10:00:01 2025 GMT
Subject: CN=BECD6F508415F8B34CCA59F42E2E07C73BF0024E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2e:39:ec:5a:52:3e:6e:fe:7a:6a:c5:de:fc:
97:c3:e5:66:bc:82:30:28:db:8e:b1:9b:d8:db:62:
65:59:60:fc:51:f0:6e:87:22:f8:b5:f8:e2:54:42:
88:41:ae:b7:0c:d7:f4:fd:49:37:24:70:65:9d:ca:
a9:13:db:55:ae:f5:88:05:1a:a1:37:65:20:ba:d0:
34:6c:ca:32:fa:b8:ee:a4:39:82:6f:90:e0:14:8b:
4e:c6:c4:8a:69:92:c6:18:8c:b2:71:91:67:01:16:
25:1c:bf:73:12:c1:48:9e:a5:71:75:28:b8:66:59:
66:0e:15:ce:1c:f5:34:aa:ae:ce:2f:a6:8f:28:54:
e8:4a:f1:14:1d:75:22:17:12:86:12:ef:41:dd:8b:
05:3a:7c:2f:fb:8f:3a:35:6e:28:5c:c7:ed:66:3b:
cc:30:58:75:de:d0:fb:d1:bf:8f:fb:be:11:17:cf:
6e:1c:16:5c:bd:6b:76:b1:2d:07:f0:ec:9b:3b:4a:
16:e0:05:c6:88:d8:16:51:f2:e2:7d:f7:b5:18:e7:
98:b2:14:d7:d7:80:18:6f:67:d5:27:27:f7:a3:a3:
cb:5a:8e:2c:16:9c:86:37:e9:71:95:96:49:82:30:
9e:91:cc:c6:81:2d:b0:c2:6b:86:6b:dc:98:b2:e9:
85:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:CD:6F:50:84:15:F8:B3:4C:CA:59:F4:2E:2E:07:C7:3B:F0:02:4E
X509v3 Authority Key Identifier:
keyid:AD:E0:D4:62:48:59:A4:D6:42:D8:C0:7F:D0:07:B4:EE:E0:66:EF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADE0D4624859A4D642D8C07FD007B4EEE066EFF3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6098f924-9f2e-499b-8101-02f7506932bf/0/3130332e3139312e3235352e302f32342d3234203d3e20313439393433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.191.255.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:30:ce:9c:c2:a1:ef:5a:cf:80:f5:74:31:2e:c1:7b:a0:18:
d2:32:6d:a1:94:1b:12:98:31:ef:45:c7:93:f1:23:e5:d3:2a:
6e:df:4f:9f:76:f2:12:cd:88:15:86:7a:22:b2:08:9c:a6:ce:
82:95:6a:31:34:4d:95:ac:37:99:4b:9e:89:36:67:c5:7f:8f:
d6:4e:88:3e:3f:16:8f:df:65:b8:23:0e:a5:0f:7e:57:86:3e:
25:00:2a:2f:5d:6e:a8:3b:9c:fa:01:9e:2b:2e:1e:38:5f:e5:
3b:17:ca:f6:e6:71:f1:b3:4c:c0:9e:66:d1:c0:b8:6f:83:51:
cc:ee:7b:81:d8:fd:49:c6:59:97:13:1e:7c:0f:59:01:94:65:
77:0f:dc:35:06:10:b9:00:a7:fc:e4:ca:59:e1:9b:8e:96:e2:
56:c2:4b:fc:6d:c8:42:14:e6:b1:56:4a:16:5c:b0:15:e3:3c:
9c:ee:98:8c:ec:e6:f9:db:90:d5:14:5c:77:d7:02:97:e7:e9:
29:28:95:96:6d:2f:ec:9b:b8:9b:a1:f2:1a:76:8d:59:77:6e:
38:8c:09:2e:c3:2f:57:d4:a2:4f:8b:16:18:6f:41:cc:a2:5b:
d2:c7:21:ab:d1:39:3a:da:96:e8:65:bf:78:08:ef:68:7e:d1:
75:56:e0:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:30:29 2025 by rpki-client