Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6cd24b05-269e-4784-b935-f27665830fda/0/3130332e3132362e32362e302f32342d3234203d3e20313530353038.roa
File: 3130332e3132362e32362e302f32342d3234203d3e20313530353038.roa (raw, json)
Hash identifier: 7flwUrm8JkroR1lTXRocteAWz9yF/xVYD969TggPKf0=
Subject key identifier: A0:17:BC:BA:3A:EC:D0:21:60:43:48:7F:A8:D2:ED:64:0F:4D:0F:FA
Certificate issuer: /CN=E074B9AA718C37F8B126243F2E30DA35F43C0DD2
Certificate serial: 6ACD571DD489D2808F803D76A99EA5D33141ADA0
Authority key identifier: E0:74:B9:AA:71:8C:37:F8:B1:26:24:3F:2E:30:DA:35:F4:3C:0D:D2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E074B9AA718C37F8B126243F2E30DA35F43C0DD2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6cd24b05-269e-4784-b935-f27665830fda/0/3130332e3132362e32362e302f32342d3234203d3e20313530353038.roa
Signing time: Wed 20 Nov 2024 01:00:01 +0000
ROA not before: Wed 20 Nov 2024 00:55:01 +0000
ROA not after: Wed 19 Nov 2025 01:00:01 +0000
asID: 150508
IP address blocks: 103.126.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:cd:57:1d:d4:89:d2:80:8f:80:3d:76:a9:9e:a5:d3:31:41:ad:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E074B9AA718C37F8B126243F2E30DA35F43C0DD2
Validity
Not Before: Nov 20 00:55:01 2024 GMT
Not After : Nov 19 01:00:01 2025 GMT
Subject: CN=A017BCBA3AECD0216043487FA8D2ED640F4D0FFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5a:27:b5:18:9a:ac:f6:b8:49:fa:f9:ac:2e:
94:81:15:a8:9e:dd:80:86:5a:13:8c:df:d6:68:d6:
2a:f2:d5:af:ab:a8:12:fb:94:af:9a:38:0d:1b:ce:
00:0e:80:28:94:55:6e:2f:4f:6d:1a:22:83:54:7d:
06:8e:01:1f:73:13:6e:8f:3b:2c:43:74:09:1d:41:
97:f1:58:4b:5e:70:b7:c9:12:e6:f5:ea:fb:7b:6d:
f6:27:47:1d:74:76:cf:d4:2b:39:e5:4c:f8:c4:7a:
9a:35:46:a2:02:ff:bd:aa:3d:fe:02:83:21:83:b3:
8a:45:99:87:f6:f1:2a:48:4b:ef:3c:d8:0f:0b:ee:
35:2b:92:db:2c:c4:b6:f8:c3:2f:6f:11:48:43:41:
14:5c:95:67:c6:83:06:6b:b7:73:b9:ed:40:ef:8c:
7a:43:e8:8c:02:59:67:f9:c0:d9:ee:54:23:67:04:
85:e9:b6:c2:56:eb:22:d3:ce:29:71:ef:38:77:52:
73:21:aa:a3:b8:64:0d:73:c4:42:16:7c:7a:82:39:
20:5d:bf:19:d2:1a:1f:fb:6a:98:65:1a:f2:b2:df:
5f:86:94:90:91:4d:b2:88:be:6a:f8:e9:e1:80:ca:
61:98:6b:07:54:c3:06:db:69:c6:85:1d:ab:30:21:
75:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:17:BC:BA:3A:EC:D0:21:60:43:48:7F:A8:D2:ED:64:0F:4D:0F:FA
X509v3 Authority Key Identifier:
keyid:E0:74:B9:AA:71:8C:37:F8:B1:26:24:3F:2E:30:DA:35:F4:3C:0D:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6cd24b05-269e-4784-b935-f27665830fda/0/E074B9AA718C37F8B126243F2E30DA35F43C0DD2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E074B9AA718C37F8B126243F2E30DA35F43C0DD2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cd24b05-269e-4784-b935-f27665830fda/0/3130332e3132362e32362e302f32342d3234203d3e20313530353038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.126.26.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:1d:ad:0a:80:c8:cb:e9:b6:ec:1a:4e:ec:48:cb:80:f8:c2:
9f:ef:86:5f:a6:53:85:9e:60:98:f8:4f:1c:23:d1:d7:63:54:
35:83:4e:60:3c:4b:a5:e6:39:6b:3d:61:af:9e:2c:be:cf:a6:
7b:fc:23:98:85:f1:32:ed:d0:98:0d:08:dc:bf:d3:fa:b0:ac:
b9:12:f1:31:fa:b0:ed:e8:eb:02:dd:11:55:55:2a:bb:0e:6e:
d9:2c:3e:ac:a4:49:96:8d:dc:a4:c5:04:c4:ae:49:53:b1:4e:
50:61:2b:67:58:2d:74:39:0d:c0:6f:03:ae:98:3a:86:05:36:
c2:63:91:e9:d5:19:7c:6b:f2:e5:29:dc:d7:ad:58:6d:fb:26:
95:ed:c4:c5:56:93:02:3d:03:88:83:c3:9a:f9:40:e3:d7:39:
89:59:78:7c:af:c2:fd:40:b4:1b:04:a8:d4:ac:d1:99:9d:4b:
c4:af:87:04:52:a2:29:42:b4:f4:79:98:e9:ed:e8:4f:80:a1:
5d:71:39:e3:24:f5:59:a2:ca:7c:8b:cf:b4:6c:ff:3a:1a:8a:
e6:3b:b5:a5:63:13:61:79:65:f9:8b:b0:68:52:84:d0:55:18:
9b:8f:23:56:d3:2b:68:1b:41:17:0c:f6:3f:f9:0b:2d:30:18:
d6:0e:b5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:32 2025 by rpki-client