Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32322d3232203d3e203338353135.roa
File: 3130332e3130372e3234382e302f32322d3232203d3e203338353135.roa (raw, json)
Hash identifier: spz6qG1bxXEvqZGHND0wn8N5S0VzxSUNZ62Ev/Uf0x0=
Subject key identifier: 39:D6:E5:DF:36:44:5C:FE:61:A3:A9:24:AC:F9:7E:81:2C:55:F7:85
Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3
Certificate serial: 7BF9D6510E4F5C472C2BE34934E7295907B1D4DD
Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32322d3232203d3e203338353135.roa
Signing time: Wed 06 Nov 2024 10:00:00 +0000
ROA not before: Wed 06 Nov 2024 09:55:00 +0000
ROA not after: Wed 05 Nov 2025 10:00:00 +0000
asID: 38515
IP address blocks: 103.107.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:f9:d6:51:0e:4f:5c:47:2c:2b:e3:49:34:e7:29:59:07:b1:d4:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3
Validity
Not Before: Nov 6 09:55:00 2024 GMT
Not After : Nov 5 10:00:00 2025 GMT
Subject: CN=39D6E5DF36445CFE61A3A924ACF97E812C55F785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:93:3b:23:a5:54:e2:5f:7a:4e:f8:b5:76:4c:
5e:1c:a4:53:bc:05:5e:aa:aa:ef:85:4b:71:d5:6a:
2a:fe:9c:e0:f6:5b:9c:64:73:50:f3:c6:79:44:66:
d5:8c:18:5f:74:59:c6:6d:9d:22:d1:88:00:59:de:
5d:58:ce:fc:d7:a3:04:8a:6a:64:0e:c2:ad:b2:41:
2b:da:f9:d8:a1:25:53:91:db:11:f8:c3:1c:65:e0:
6b:45:01:e7:ad:38:9b:d5:3d:5d:65:ff:32:bb:4c:
4c:18:22:52:15:35:50:ce:3a:ac:ab:d3:61:57:ee:
6b:63:70:10:73:94:c7:c2:8b:58:2e:cf:2a:34:08:
be:87:c8:55:35:91:f2:dd:fa:86:61:ab:37:f5:dc:
f1:67:2c:db:67:28:b5:1b:20:62:32:4a:86:db:cc:
75:dc:d6:d2:ea:c9:3e:d0:ac:42:fd:44:53:f9:8c:
e6:cb:f6:3c:16:fe:5a:2f:ae:d3:02:0d:84:a2:3a:
a3:ac:b5:1d:54:24:0d:5c:29:13:cb:0a:44:c9:9e:
ed:93:65:9a:c4:7c:4d:12:7a:e7:63:8d:fc:78:21:
15:11:3c:b4:6c:96:3d:a2:c3:61:24:d6:64:89:7a:
fa:83:0c:61:df:c3:b4:d4:a0:81:32:1b:65:e0:89:
e6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D6:E5:DF:36:44:5C:FE:61:A3:A9:24:AC:F9:7E:81:2C:55:F7:85
X509v3 Authority Key Identifier:
keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/3130332e3130372e3234382e302f32322d3232203d3e203338353135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.107.248.0/22
Signature Algorithm: sha256WithRSAEncryption
13:65:40:3b:5e:74:ba:21:6e:ec:13:9c:22:23:f0:ee:a9:d2:
ed:86:6d:eb:fd:73:fd:d6:26:5a:c1:80:79:27:de:32:0f:cd:
87:43:db:db:d1:30:6e:fb:d3:87:4a:94:19:3c:a3:7c:3f:a8:
fc:4a:a3:dd:b5:e9:e9:45:92:d2:05:db:1e:83:34:c5:2a:d8:
08:84:49:78:ee:46:a9:34:9e:71:16:b1:5f:bf:4c:52:15:ff:
11:55:e7:f8:27:1a:f4:fc:b6:3f:58:bc:87:52:55:9a:85:7c:
5d:27:90:c0:9a:94:38:8a:dc:54:9e:65:7c:54:63:13:aa:61:
2d:55:cf:71:1c:68:58:b2:95:76:91:57:d2:b7:ee:f9:56:80:
d3:95:d2:b4:b7:89:9a:dc:8a:09:b3:2c:62:b7:ca:80:5a:d4:
0b:02:38:c8:f4:f2:90:95:c1:8c:6c:da:b7:f5:11:3b:01:e7:
f5:ae:69:bb:43:b7:8f:2b:b6:29:bc:53:c6:de:3f:17:92:b5:
7e:dc:50:20:dd:40:dd:99:34:81:2d:78:3e:3a:c3:0c:ef:f5:
47:9f:f3:56:72:6e:89:b9:3e:62:a0:b6:aa:dc:bd:c2:94:2d:
8b:5c:12:81:c7:d9:e4:d6:6b:1f:48:3b:6d:c8:40:6c:d3:30:
1f:79:a4:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:58:00 2025 by rpki-client