Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6d64bf6a-4302-460f-9669-09a50a73af1a/0/3130332e3136302e3230322e302f32342d3234203d3e20313431363036.roa
File: 3130332e3136302e3230322e302f32342d3234203d3e20313431363036.roa (raw, json)
Hash identifier: haTibr3tt22zSchSW2+rcU9iqZLSDGd/xcHfzqqfZOo=
Subject key identifier: E2:02:91:6E:34:74:4E:16:DB:41:BA:BD:B3:18:4F:8E:07:DC:3D:13
Certificate issuer: /CN=407B7C7EE09EDBAA0A3525E209FF8E93E48653C8
Certificate serial: 7A686EAF2284769E01933D6B4DB9CA37BD1FFDC9
Authority key identifier: 40:7B:7C:7E:E0:9E:DB:AA:0A:35:25:E2:09:FF:8E:93:E4:86:53:C8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/407B7C7EE09EDBAA0A3525E209FF8E93E48653C8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6d64bf6a-4302-460f-9669-09a50a73af1a/0/3130332e3136302e3230322e302f32342d3234203d3e20313431363036.roa
Signing time: Thu 08 Aug 2024 04:57:44 +0000
ROA not before: Thu 08 Aug 2024 04:52:44 +0000
ROA not after: Thu 07 Aug 2025 04:57:44 +0000
asID: 141606
IP address blocks: 103.160.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:68:6e:af:22:84:76:9e:01:93:3d:6b:4d:b9:ca:37:bd:1f:fd:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407B7C7EE09EDBAA0A3525E209FF8E93E48653C8
Validity
Not Before: Aug 8 04:52:44 2024 GMT
Not After : Aug 7 04:57:44 2025 GMT
Subject: CN=E202916E34744E16DB41BABDB3184F8E07DC3D13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f7:db:e7:4d:ad:84:cd:a8:b6:01:93:f5:ac:
ef:26:b7:52:ea:a6:bb:45:d0:17:af:97:8f:8a:fa:
88:55:d0:d6:e3:51:df:d5:ab:8e:fc:62:dd:01:8d:
26:3d:9a:7b:55:b7:4c:7e:e4:ab:d2:df:41:8b:b6:
d1:62:27:c0:52:4b:f5:ca:e0:e1:e4:c3:28:d6:42:
81:d0:f7:34:96:95:7d:78:34:a0:1b:4e:fe:79:50:
1c:0b:69:0b:6f:9f:f1:6b:17:7f:7f:91:c2:bc:87:
63:47:a7:fa:4c:d7:d9:21:ef:34:3d:d0:31:2a:2e:
e2:06:e1:0b:81:1c:c4:65:ac:71:6f:bf:99:63:85:
d6:03:7a:3c:ef:60:a3:fb:d4:c3:aa:54:97:62:91:
88:8c:7f:20:ef:0e:2a:17:81:5f:b3:8b:69:fd:53:
b0:0e:17:c1:31:cc:d5:f4:e2:1f:c3:9d:a2:32:01:
d4:df:73:fa:0d:12:91:c4:af:f4:7f:8c:5c:52:2f:
04:b6:2d:74:71:cd:b7:73:be:aa:4e:05:4d:55:35:
8d:25:3c:73:95:18:90:0d:94:a3:16:ef:ab:46:52:
5c:a4:37:33:f0:19:d2:6b:86:61:4e:be:87:e8:92:
49:cc:7e:aa:56:c1:86:d6:b1:39:c1:b5:10:ff:de:
18:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:02:91:6E:34:74:4E:16:DB:41:BA:BD:B3:18:4F:8E:07:DC:3D:13
X509v3 Authority Key Identifier:
keyid:40:7B:7C:7E:E0:9E:DB:AA:0A:35:25:E2:09:FF:8E:93:E4:86:53:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6d64bf6a-4302-460f-9669-09a50a73af1a/0/407B7C7EE09EDBAA0A3525E209FF8E93E48653C8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/407B7C7EE09EDBAA0A3525E209FF8E93E48653C8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d64bf6a-4302-460f-9669-09a50a73af1a/0/3130332e3136302e3230322e302f32342d3234203d3e20313431363036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.202.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:22:a0:f9:08:74:1d:fc:bf:f0:9b:0b:0a:ed:c6:ce:09:63:
7d:67:39:69:61:ff:8e:5d:df:27:79:5a:2b:d6:2c:cf:f6:18:
ef:b9:36:bb:10:56:78:f3:fb:cf:cc:79:d4:8f:06:b0:18:9e:
1e:ce:73:59:21:e1:a7:03:4f:7d:ec:7e:77:15:80:99:65:72:
65:bb:ad:65:d0:56:de:59:00:0c:bf:a8:83:05:3e:cb:62:4e:
1b:98:73:10:9b:47:2e:e4:57:05:ae:d2:0d:94:7e:ee:34:75:
eb:a0:7c:0c:20:fb:c7:6e:d1:d7:b6:e6:e0:49:27:3e:17:00:
88:d7:c3:15:d3:79:56:91:4b:8d:2f:3e:01:a0:82:3e:2e:8b:
ca:d4:65:2d:ea:54:d7:0c:a6:e1:1d:75:27:c0:93:85:75:70:
e0:83:79:35:ea:4c:fd:76:27:87:25:c0:c0:7d:8c:36:a8:fc:
76:a5:64:0b:cb:a9:41:79:38:49:a6:9a:c8:a8:ff:1d:e0:2b:
ad:52:99:73:94:0e:43:7d:17:7d:d3:dc:53:dc:a4:72:e9:39:
b8:f2:55:f0:6b:5d:2c:6e:d9:c2:18:d0:42:0e:7d:3e:b7:8a:
66:16:de:8c:04:10:59:15:25:d2:f1:b8:9d:0a:0a:ec:3c:76:
43:6c:83:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 17:10:09 2025 by rpki-client