Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/633978f8-aeab-427a-bd75-2cdf1d9eb517/0/3130332e3136322e36302e302f32332d3234203d3e20313431363438.roa
File: 3130332e3136322e36302e302f32332d3234203d3e20313431363438.roa (raw, json)
Hash identifier: 4Z5eDrrHZmqs6QxVIkyuY07V0t6QahOws6as1cnmdoY=
Subject key identifier: 31:E2:59:76:31:D3:6D:92:70:A7:FC:B6:B5:81:58:2F:B9:1F:FC:20
Certificate issuer: /CN=466F8934F3FED9355C9ED09E3826CBE32B25D402
Certificate serial: 4B6B7D8D77E430550AE4F592CFDDFBCB5C1BAAA4
Authority key identifier: 46:6F:89:34:F3:FE:D9:35:5C:9E:D0:9E:38:26:CB:E3:2B:25:D4:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/466F8934F3FED9355C9ED09E3826CBE32B25D402.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/633978f8-aeab-427a-bd75-2cdf1d9eb517/0/3130332e3136322e36302e302f32332d3234203d3e20313431363438.roa
Signing time: Thu 02 Jan 2025 09:03:32 +0000
ROA not before: Thu 02 Jan 2025 08:58:32 +0000
ROA not after: Thu 01 Jan 2026 09:03:32 +0000
asID: 141648
IP address blocks: 103.162.60.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:6b:7d:8d:77:e4:30:55:0a:e4:f5:92:cf:dd:fb:cb:5c:1b:aa:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=466F8934F3FED9355C9ED09E3826CBE32B25D402
Validity
Not Before: Jan 2 08:58:32 2025 GMT
Not After : Jan 1 09:03:32 2026 GMT
Subject: CN=31E2597631D36D9270A7FCB6B581582FB91FFC20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c6:1b:d5:bd:7c:94:80:6e:a3:99:94:e2:a7:
09:53:39:e6:c6:3b:d7:ab:2a:0b:69:60:88:f9:c7:
59:ca:19:44:fe:de:32:eb:1e:49:0e:0a:73:7f:3d:
03:87:10:c2:7f:75:b7:41:41:75:25:1a:29:be:9e:
5f:d9:c9:64:18:7e:52:79:10:8a:b5:9b:f1:39:cf:
67:7e:44:9c:b3:b4:d1:ad:67:d3:ea:9e:30:44:af:
4c:7c:bd:6c:65:9d:d6:fe:e4:62:09:e3:b4:f6:63:
fb:12:d4:0f:45:0f:da:99:92:04:d1:2b:03:95:51:
0e:86:bf:ec:f3:9e:8c:f2:61:9c:aa:35:a9:5f:41:
25:97:9f:0e:41:a1:f5:0d:7d:1b:37:95:b4:e1:eb:
2a:f8:ec:32:c5:0b:11:75:4f:f6:0c:7f:52:32:5c:
b9:52:24:64:3f:8a:05:42:75:9a:fd:35:f1:e0:71:
40:bc:8e:49:59:1e:5d:c4:3c:e2:88:95:c7:8e:02:
ba:19:ab:8a:a7:9a:d6:7c:8b:0d:d8:32:01:bb:43:
6c:50:be:2b:8b:e8:7c:42:e7:aa:a4:a9:55:de:2b:
8d:9d:3b:22:97:6a:ae:c8:71:ad:ba:cd:64:6d:00:
94:29:ac:e5:35:71:03:6b:af:04:c2:1d:3c:3e:c8:
6e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:E2:59:76:31:D3:6D:92:70:A7:FC:B6:B5:81:58:2F:B9:1F:FC:20
X509v3 Authority Key Identifier:
keyid:46:6F:89:34:F3:FE:D9:35:5C:9E:D0:9E:38:26:CB:E3:2B:25:D4:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/633978f8-aeab-427a-bd75-2cdf1d9eb517/0/466F8934F3FED9355C9ED09E3826CBE32B25D402.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/466F8934F3FED9355C9ED09E3826CBE32B25D402.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/633978f8-aeab-427a-bd75-2cdf1d9eb517/0/3130332e3136322e36302e302f32332d3234203d3e20313431363438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.60.0/23
Signature Algorithm: sha256WithRSAEncryption
74:c7:60:c2:85:f9:ce:31:1c:20:53:a1:e4:9c:d7:bc:6f:ee:
9f:a5:79:e2:2a:6d:dc:29:3e:ac:0f:34:11:d0:36:8b:b0:81:
8b:59:e8:0f:66:01:ad:3a:90:2c:08:64:d7:c8:fe:6c:c6:b2:
8f:91:5f:54:b6:72:5e:90:db:a7:2d:d7:f3:e7:aa:25:4f:ba:
eb:7c:9f:fe:5e:d1:51:0b:85:aa:73:0f:60:da:cc:fe:08:6f:
d0:3a:d8:b6:f7:32:36:4e:c4:e2:8d:43:a0:16:7a:fa:78:f7:
c4:40:5f:45:3b:ce:51:62:ba:52:b1:62:53:cf:60:4d:3f:99:
f8:14:cb:b7:d8:ba:4c:f8:14:a6:c0:a4:6c:b4:b1:21:93:c7:
d7:7b:9e:7a:5f:d9:ae:91:0a:58:78:be:6d:50:85:c0:ae:f7:
f5:69:73:6c:64:5a:a1:a8:f0:89:93:5e:24:8f:4a:d4:48:e9:
82:e0:95:9d:2c:bc:b9:76:06:e9:f3:d4:be:47:b3:e5:5e:cf:
44:c9:5d:40:29:c9:a1:2f:1e:a9:2e:81:2c:91:37:a7:83:22:
59:24:5d:e0:c7:93:94:a8:e9:92:fa:c5:5a:bc:37:57:61:87:
12:fc:03:cb:0a:e8:2e:48:d0:79:6a:6f:c4:b6:ba:f4:d7:3c:
e5:2e:f2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:11:37 2025 by rpki-client