Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32342d3234203d3e20313432333730.roa
File: 3130332e3136392e3235342e302f32342d3234203d3e20313432333730.roa (raw, json)
Hash identifier: cIZW3sdgonys96m+uORVonHJxNU9LIGcE2oXfVXwFxY=
Subject key identifier: FC:8F:19:06:C3:24:80:D9:AF:B4:BB:79:80:63:5A:8A:B1:93:D1:B2
Certificate issuer: /CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1
Certificate serial: 7ACBAA73E9491A3A1DADBDFC68AEAB9DB05CBD60
Authority key identifier: DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32342d3234203d3e20313432333730.roa
Signing time: Sat 01 Jun 2024 03:00:00 +0000
ROA not before: Sat 01 Jun 2024 02:55:00 +0000
ROA not after: Sat 31 May 2025 03:00:00 +0000
asID: 142370
IP address blocks: 103.169.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:cb:aa:73:e9:49:1a:3a:1d:ad:bd:fc:68:ae:ab:9d:b0:5c:bd:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1
Validity
Not Before: Jun 1 02:55:00 2024 GMT
Not After : May 31 03:00:00 2025 GMT
Subject: CN=FC8F1906C32480D9AFB4BB7980635A8AB193D1B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0e:22:b9:ba:d7:81:32:5b:d3:98:12:53:7b:
b9:0c:d2:f1:2d:09:9b:e0:ad:ad:6e:55:36:de:e4:
88:8b:94:66:b1:4d:20:a9:99:2f:fc:67:60:0c:37:
91:b2:24:50:c3:1b:40:18:98:eb:df:fd:b6:e4:b2:
9c:b7:11:b3:93:82:ce:bd:78:8b:be:9f:db:ed:90:
ee:19:14:b0:4b:05:8e:16:38:65:0d:61:28:66:9a:
b0:2e:2c:2d:d2:bc:2e:ef:d4:ad:c1:0c:01:23:f3:
29:e9:41:b9:27:10:5c:5b:85:d8:95:b3:e9:fb:dd:
90:2c:a2:ce:07:e4:0e:76:e2:e0:f8:48:15:07:f3:
ff:32:1b:d6:3d:1d:63:0c:1e:5e:b1:44:9a:67:b7:
5d:7e:02:1e:bb:13:bf:b0:38:aa:39:b0:71:e0:1e:
f4:06:b7:da:dd:d3:00:01:87:68:fa:6b:bb:d1:ba:
7f:df:bd:c2:81:c1:da:1e:7b:a1:6a:cf:b9:01:b2:
51:8a:4d:8e:b4:9a:56:60:d1:9c:b4:dc:9a:a6:d0:
71:21:24:de:cc:c8:6d:4c:19:19:fd:bf:57:9e:98:
ee:ae:d7:a9:39:1d:b5:62:de:c6:4e:3c:c2:18:59:
c1:01:e8:28:5c:55:37:c3:86:74:c2:cb:b4:ed:1e:
30:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8F:19:06:C3:24:80:D9:AF:B4:BB:79:80:63:5A:8A:B1:93:D1:B2
X509v3 Authority Key Identifier:
keyid:DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235342e302f32342d3234203d3e20313432333730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.254.0/24
Signature Algorithm: sha256WithRSAEncryption
84:fc:ad:7d:dc:6c:7f:de:a3:57:9a:c4:86:a4:5b:59:37:fc:
24:aa:a4:f4:7b:32:c9:65:ff:e9:a8:bb:d9:63:55:a3:89:e1:
06:76:4c:ac:ba:f3:8b:49:6d:19:98:91:da:94:7e:ee:90:a6:
d7:77:21:38:00:12:a3:ee:54:3f:75:c6:d9:42:7b:bb:d3:c6:
6d:79:04:1a:c5:f3:5e:90:88:e9:ce:be:ab:f4:30:a9:4f:ed:
53:75:00:95:d0:b5:f2:55:b7:59:7f:69:1f:e9:0b:50:81:43:
0c:19:20:7f:cb:08:ac:03:80:d5:d0:21:73:20:61:b3:90:67:
ca:fe:03:c9:7e:29:e4:cc:69:73:57:eb:10:2a:91:5d:ab:20:
bc:e2:59:8e:c0:b2:6b:9e:b5:32:7c:36:17:bc:28:85:a7:ea:
cf:c0:97:30:97:ee:f0:83:71:f6:83:fa:9a:70:94:48:6d:b6:
2b:c1:77:af:ea:ae:9e:98:6a:67:06:9a:c3:ee:c9:58:bd:72:
a3:89:10:62:1e:6c:9e:75:28:2a:20:a4:ac:23:ce:fe:7b:d3:
33:9e:d3:3e:b5:59:03:13:da:29:b4:6f:b6:00:9f:c1:8c:73:
39:22:ad:8c:3c:85:6b:04:cf:d6:ab:1e:32:d1:a8:97:dd:e7:
06:80:fd:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:12:30 2025 by rpki-client