Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/3130332e3231312e32362e302f32332d3233203d3e20313530313933.roa
File: 3130332e3231312e32362e302f32332d3233203d3e20313530313933.roa (raw, json)
Hash identifier: D9VjBd2SjUz6CPtv7rAeGVZ7pKCH1KTw8I8eNpUrm1E=
Subject key identifier: 08:52:9B:61:EB:B2:9B:75:45:10:5B:9D:B7:3E:02:C9:13:B3:90:8F
Certificate issuer: /CN=69CE57F4984A7B332974000C0033734628A36A46
Certificate serial: 1A3D42BD31CDD215D5B18ADE11B1CB9B49C146E5
Authority key identifier: 69:CE:57:F4:98:4A:7B:33:29:74:00:0C:00:33:73:46:28:A3:6A:46
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69CE57F4984A7B332974000C0033734628A36A46.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/3130332e3231312e32362e302f32332d3233203d3e20313530313933.roa
Signing time: Tue 24 Dec 2024 05:00:02 +0000
ROA not before: Tue 24 Dec 2024 04:55:02 +0000
ROA not after: Tue 23 Dec 2025 05:00:02 +0000
asID: 150193
IP address blocks: 103.211.26.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:3d:42:bd:31:cd:d2:15:d5:b1:8a:de:11:b1:cb:9b:49:c1:46:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69CE57F4984A7B332974000C0033734628A36A46
Validity
Not Before: Dec 24 04:55:02 2024 GMT
Not After : Dec 23 05:00:02 2025 GMT
Subject: CN=08529B61EBB29B7545105B9DB73E02C913B3908F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1d:fc:cf:06:cc:c5:41:c4:ba:61:09:fb:e5:
3f:cf:4b:70:c0:9c:12:60:0a:70:92:c7:0a:f8:c5:
bc:b1:fc:b3:6e:09:c6:91:80:6a:c2:83:56:e7:05:
25:35:a7:8f:59:d4:31:44:12:74:19:04:96:34:23:
29:a2:35:73:79:fa:2a:fd:20:7d:87:81:8d:59:98:
12:8b:8e:98:fa:b5:93:75:2b:b9:62:6a:87:ef:a5:
46:06:2b:40:34:4c:b3:3a:97:6f:4b:a0:4e:b3:a9:
89:8d:9e:4e:90:ad:20:f5:8a:af:d1:74:7c:d4:cf:
c8:ef:d1:12:5c:ca:c4:c3:47:f9:13:d9:34:18:f0:
7a:88:2a:35:fe:67:b5:f2:7f:07:9d:b6:e3:f3:07:
60:44:6e:8d:1c:6d:27:08:b6:0b:35:25:c2:a0:00:
45:1b:0a:6e:a6:b3:b2:7d:e0:7d:23:bb:ca:93:60:
68:33:04:8b:74:fe:1a:b7:2c:db:cd:f9:35:7f:8e:
d7:ff:56:63:73:a5:91:31:d9:37:f8:73:d2:01:a3:
9f:50:f5:53:da:f7:77:55:29:c2:ab:94:97:7e:3f:
4e:19:22:ee:1f:66:fc:1f:b4:ca:df:9a:47:4c:09:
e6:8f:9b:1c:00:0e:d0:b6:bc:bf:80:ae:fd:ea:4a:
ee:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:52:9B:61:EB:B2:9B:75:45:10:5B:9D:B7:3E:02:C9:13:B3:90:8F
X509v3 Authority Key Identifier:
keyid:69:CE:57:F4:98:4A:7B:33:29:74:00:0C:00:33:73:46:28:A3:6A:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/69CE57F4984A7B332974000C0033734628A36A46.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69CE57F4984A7B332974000C0033734628A36A46.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70d66b69-707a-4830-a2d3-af6ca0d15bce/0/3130332e3231312e32362e302f32332d3233203d3e20313530313933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.211.26.0/23
Signature Algorithm: sha256WithRSAEncryption
36:e9:59:cf:1b:12:6b:ef:6c:c2:b1:2a:1d:cd:45:d7:f3:2a:
3a:c3:14:c2:e3:a2:32:10:fc:31:f9:28:cd:2a:5f:5a:d9:2c:
55:52:98:2e:c2:32:01:1b:96:a1:3c:c7:31:98:a9:79:9c:eb:
ec:56:2e:d9:27:1f:31:bc:3a:5e:87:db:eb:b4:73:b7:1d:74:
16:e5:b0:4d:ae:22:0b:df:95:18:f2:a9:54:7b:4a:43:f3:12:
33:37:1a:82:8a:55:b6:53:fa:4b:72:b0:3a:2b:f9:5c:fc:ed:
18:a7:bc:9d:c3:51:88:12:26:41:d8:6b:12:2a:0c:eb:40:37:
21:11:af:20:40:35:c6:41:ce:0a:cb:0c:15:a0:b4:ad:3b:49:
77:0c:7c:43:fc:b3:af:e0:da:2d:97:e6:5e:f0:64:75:ab:a5:
3d:75:a9:38:63:26:26:78:6c:08:f0:b3:58:10:55:e9:f4:82:
60:18:08:c4:2c:9c:cf:46:c0:24:67:bd:e9:c4:9f:5d:9f:23:
a9:b2:43:32:6f:4c:e3:9e:81:af:e3:a0:d9:dc:b0:a6:8d:33:
97:c5:c0:6f:7f:b2:69:4b:b2:6f:e9:34:08:7f:67:b7:23:d8:
58:61:25:22:f8:30:1e:f9:70:8f:97:8c:ce:f9:02:d2:ed:87:
2e:8e:e1:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:40 2025 by rpki-client