Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa
File: 3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa (raw, json)
Hash identifier: Q/U8Xb/QHxtCn198u1dLTqoleCD0AnXLqgQ7wOdppUk=
Subject key identifier: F2:7C:89:46:47:58:85:12:D0:B3:B3:10:20:A6:1C:8E:C7:52:29:23
Certificate issuer: /CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1
Certificate serial: 21D344B519DE5F3772F1DCDDAC0E91156DA0D5B4
Authority key identifier: DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa
Signing time: Sat 01 Jun 2024 03:00:00 +0000
ROA not before: Sat 01 Jun 2024 02:55:00 +0000
ROA not after: Sat 31 May 2025 03:00:00 +0000
asID: 142370
IP address blocks: 103.169.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:d3:44:b5:19:de:5f:37:72:f1:dc:dd:ac:0e:91:15:6d:a0:d5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1
Validity
Not Before: Jun 1 02:55:00 2024 GMT
Not After : May 31 03:00:00 2025 GMT
Subject: CN=F27C894647588512D0B3B31020A61C8EC7522923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:64:0c:9a:94:41:6d:01:8a:92:78:e5:f2:c0:
45:3e:e4:19:14:09:1c:f9:db:40:a0:cd:04:db:cf:
76:4e:12:ee:23:b3:0e:ec:af:e4:ac:16:5c:6c:7f:
7b:04:03:2f:1a:d0:81:bc:bb:e0:06:1b:ca:7c:be:
8d:f5:2b:0e:e7:16:e9:1b:c6:c1:6a:81:94:1e:57:
43:69:ac:91:36:14:2f:57:aa:f7:9b:23:94:22:f5:
10:0e:96:27:b4:d9:3a:49:8a:88:35:84:16:8e:ec:
e9:3c:22:1f:a6:66:2d:7f:6e:17:a4:8c:a4:5b:19:
81:23:0e:c1:c3:68:8e:20:3d:8f:f4:b4:39:18:7f:
c5:3a:e1:9c:02:56:f9:f0:a1:ce:16:40:09:9a:a0:
dd:9f:6c:63:18:16:b4:57:db:3d:88:fb:2a:38:b5:
eb:2f:de:87:c8:5f:79:95:09:30:1f:1e:9c:bb:69:
fd:cd:5b:43:b2:c7:b2:d1:a1:24:01:45:d2:7b:98:
a6:59:8a:87:58:da:80:c7:e4:39:a4:dd:21:4a:48:
99:1c:ce:20:c9:7a:de:bf:15:5a:65:6d:d2:3c:50:
3f:66:fd:5d:c9:4d:b5:ea:c9:de:d5:20:06:a3:fa:
ec:00:83:74:8a:5b:a7:00:12:e2:7a:86:94:4b:e8:
48:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:7C:89:46:47:58:85:12:D0:B3:B3:10:20:A6:1C:8E:C7:52:29:23
X509v3 Authority Key Identifier:
keyid:DF:68:55:96:DA:F9:D3:65:4A:2E:2F:21:CE:11:AA:0B:B8:0E:45:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF685596DAF9D3654A2E2F21CE11AA0BB80E45D1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6752b3c2-3f30-4040-8b05-83821777048f/0/3130332e3136392e3235352e302f32342d3234203d3e20313432333730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.255.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:eb:01:3c:83:e4:ee:fe:b8:19:78:99:93:f4:1d:46:79:6e:
4c:0b:4f:b3:a4:b0:80:b8:89:4f:df:bb:25:5b:d7:28:55:5e:
ad:8e:f2:6a:6b:46:be:9e:dc:7b:12:a1:d5:78:77:23:82:5f:
d3:97:47:38:c1:cc:b1:ff:f8:a5:71:19:ff:8d:89:9c:14:d5:
6a:a2:2d:50:43:99:51:de:98:33:83:1d:55:f0:0b:05:46:41:
cc:78:2b:bd:3b:c6:5d:5d:51:58:8c:10:41:dd:c1:31:ad:9e:
0e:1f:a1:ac:59:78:63:4f:1b:90:41:e9:d9:91:63:a7:4e:40:
b8:40:ea:ad:d1:31:18:31:c0:7f:3a:73:bc:1a:b7:2d:65:6d:
9f:4c:d0:1f:e3:a9:f8:cb:c6:9f:6c:b3:4d:73:64:00:e0:ef:
5b:f5:62:4c:a7:b6:f6:e2:cb:88:f5:0c:53:16:15:72:39:a6:
d1:28:c9:b6:11:57:c4:85:6d:7c:3f:0c:57:33:da:0d:dc:6d:
c0:61:6f:6b:0a:86:80:28:16:fd:21:a2:9b:f1:ac:af:a4:f9:
1b:71:5a:d1:37:b5:47:dc:b4:00:09:65:c2:cf:81:d1:e2:cd:
1f:2c:f7:9a:a9:0b:1c:31:9e:ce:1d:46:d1:76:50:78:f3:7f:
84:50:fc:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 14:26:21 2025 by rpki-client