Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa
File: 3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa (raw, json)
Hash identifier: ey0RnIx9BHEX807Crk0Cq6R921ovlZ3dd8rpdjqgBeQ=
Subject key identifier: 16:CA:C5:0C:87:52:B8:CE:36:B4:E4:46:1A:F6:7E:9A:5E:57:5B:C0
Certificate issuer: /CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE
Certificate serial: 0BE9A3A345B607CF3C1BB86DD9B92BCFF1FB63AC
Authority key identifier: 54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa
Signing time: Mon 01 Jul 2024 01:04:57 +0000
ROA not before: Mon 01 Jul 2024 00:59:57 +0000
ROA not after: Mon 30 Jun 2025 01:04:57 +0000
asID: 132643
IP address blocks: 103.21.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:e9:a3:a3:45:b6:07:cf:3c:1b:b8:6d:d9:b9:2b:cf:f1:fb:63:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54FF141BE96013FE6BC0816D991BCFB4F6618CBE
Validity
Not Before: Jul 1 00:59:57 2024 GMT
Not After : Jun 30 01:04:57 2025 GMT
Subject: CN=16CAC50C8752B8CE36B4E4461AF67E9A5E575BC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a0:c4:4e:b2:2d:b1:01:b0:bb:92:a6:50:19:
7b:98:7a:35:ea:57:dc:43:12:aa:be:a9:10:5a:b4:
2c:60:80:9b:ce:08:09:63:93:96:91:4c:01:69:57:
41:cf:5d:0d:84:81:f8:10:aa:ce:21:45:f4:08:62:
bf:50:a0:5b:69:c5:a8:4f:70:00:5f:52:7a:2f:c9:
a8:52:0c:1a:eb:aa:29:aa:1a:25:f4:45:99:63:bc:
d5:df:b5:6f:e7:de:ce:7e:8f:09:b7:74:61:2c:84:
e0:c0:53:c5:c8:b0:ec:22:e0:7d:3b:51:f0:6a:4d:
0c:b4:a0:03:bf:17:6f:88:fe:37:a8:ec:67:6d:a4:
58:62:a4:cc:b1:d8:b5:3c:5f:11:aa:17:62:fd:e1:
61:01:51:00:c3:61:f8:98:70:d0:5f:d0:16:fe:86:
c6:f3:9a:e9:b2:f1:ac:db:ca:7d:3a:da:a1:89:5e:
cf:f7:24:7e:b3:eb:ba:bf:35:0a:24:0b:1c:9b:c8:
bc:9e:2f:14:41:5c:ab:cc:af:78:95:c8:3d:61:73:
4e:c2:42:43:f7:85:b5:21:a5:0d:c1:42:c6:98:b1:
b1:1e:6e:fd:eb:2b:2f:f1:bb:37:e1:28:56:1c:03:
0c:3b:04:25:6d:de:36:63:d1:95:db:2c:72:99:3c:
44:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:CA:C5:0C:87:52:B8:CE:36:B4:E4:46:1A:F6:7E:9A:5E:57:5B:C0
X509v3 Authority Key Identifier:
keyid:54:FF:14:1B:E9:60:13:FE:6B:C0:81:6D:99:1B:CF:B4:F6:61:8C:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/54FF141BE96013FE6BC0816D991BCFB4F6618CBE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73af271f-c83d-441e-bea9-18a244d0e00e/0/3130332e32312e3232382e302f32342d3234203d3e20313332363433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.21.228.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:b4:ee:0d:68:0c:31:2b:fc:46:73:97:5f:6a:75:1f:25:e3:
e4:e3:64:fe:ec:f6:51:d3:ee:09:c2:f6:d3:15:63:ba:4a:6b:
da:f0:b2:bb:1a:36:28:00:1e:a6:96:75:29:c0:72:81:40:ae:
ad:ad:14:c1:6e:89:2a:bf:ee:2b:99:18:ef:e5:2e:2f:0c:44:
96:8c:3f:4c:94:78:fd:9b:ac:d9:eb:a9:79:ad:48:8b:96:4c:
a5:47:d9:da:59:c3:04:55:63:1f:33:48:9e:6d:26:30:16:ab:
8c:7b:fd:a7:c9:2a:c8:9c:90:3d:1f:49:5a:71:24:8f:bd:fc:
34:42:ac:f5:a0:cf:29:92:3d:b2:8e:08:f5:a9:ba:5e:63:bd:
b1:72:e7:01:c8:9a:2c:65:ac:cf:26:74:2a:3f:0f:c0:72:9f:
c1:23:8a:9d:9c:df:7c:23:07:18:73:a7:4e:6e:69:47:6d:40:
b1:52:e1:12:91:b1:47:83:1d:e7:d4:3d:87:1b:45:78:d5:04:
19:82:4b:d2:f7:94:62:32:45:62:42:55:46:8d:11:62:1c:0b:
d3:98:52:e4:74:f7:d6:3e:a5:9a:4f:33:24:9b:b9:4b:d2:e9:
ad:91:b5:79:56:e7:1d:e4:e7:39:11:25:6f:ee:ef:af:7c:7a:
ed:90:76:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:46:41 2025 by rpki-client