Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233312e302f32342d3234203d3e20313336303838.roa
File: 3130332e38372e3233312e302f32342d3234203d3e20313336303838.roa (raw, json)
Hash identifier: SE3H4B/meoJw/h1QWLI6uYkZTsm1TtEA1FVx9lAYQqc=
Subject key identifier: 65:ED:A5:8E:C0:5B:DA:24:79:EE:44:63:67:50:CD:FA:50:AD:9B:82
Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F
Certificate serial: 13F5D6AF4B5F8BD3548ABBA1DFD386810FEECFA9
Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233312e302f32342d3234203d3e20313336303838.roa
Signing time: Mon 01 Jul 2024 01:04:20 +0000
ROA not before: Mon 01 Jul 2024 00:59:20 +0000
ROA not after: Mon 30 Jun 2025 01:04:20 +0000
asID: 136088
IP address blocks: 103.87.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:f5:d6:af:4b:5f:8b:d3:54:8a:bb:a1:df:d3:86:81:0f:ee:cf:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F
Validity
Not Before: Jul 1 00:59:20 2024 GMT
Not After : Jun 30 01:04:20 2025 GMT
Subject: CN=65EDA58EC05BDA2479EE44636750CDFA50AD9B82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f4:db:37:fe:23:76:66:7e:5f:64:44:1d:63:
1e:71:b1:57:3e:e9:22:cd:20:f5:8f:8b:f0:36:44:
79:54:c5:b0:a7:98:b2:46:d8:95:f8:1b:2c:91:33:
d5:48:4b:72:9e:20:d5:63:b4:01:0c:bd:c9:7e:ca:
1b:b1:37:fa:9a:a9:ed:26:94:e1:07:5e:1e:5b:97:
81:ac:91:d5:ae:14:41:e4:30:44:e5:4c:a3:3b:e0:
ea:6f:1c:ac:15:7d:a8:bb:9e:3b:99:3b:05:ef:e0:
b2:4b:a9:df:8e:ac:0e:01:29:e4:37:d2:01:3a:ba:
a3:e9:b4:99:7c:f9:42:62:57:f0:97:a0:86:37:7f:
6d:ae:80:ed:14:b2:ee:ae:b2:e7:a3:eb:b9:cb:b6:
d9:2e:6d:5f:6a:83:3a:f1:1a:11:d3:de:b5:76:16:
f2:72:e6:cb:e2:0a:4c:0c:bc:ce:02:24:56:f5:2f:
81:e4:f7:d6:a5:86:17:83:9c:e3:ff:9a:7c:e6:a2:
0e:9f:fb:e5:83:77:28:2a:55:fe:27:39:ff:7f:e2:
5f:f9:d4:c6:5e:c4:c4:65:04:24:ad:15:ff:1d:34:
59:00:71:0c:80:6f:e2:5a:76:88:98:c9:cd:80:05:
b0:95:8b:d3:10:1e:91:9c:5a:ef:8a:a2:fb:55:90:
eb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:ED:A5:8E:C0:5B:DA:24:79:EE:44:63:67:50:CD:FA:50:AD:9B:82
X509v3 Authority Key Identifier:
keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233312e302f32342d3234203d3e20313336303838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.87.231.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:1c:81:8b:6c:d8:3e:7b:b7:35:80:62:e2:cf:3d:30:f9:9e:
a7:a3:bf:e0:ca:36:99:1f:4e:29:36:85:2d:1a:e5:20:d5:18:
83:15:fa:44:8b:66:27:97:0a:4f:9b:6c:ab:8f:a7:0b:6d:19:
51:6e:c5:5c:15:13:4c:f0:d4:f9:2d:aa:6e:c0:ed:a1:7b:7a:
87:18:a3:cc:f3:fc:cd:c4:a2:c2:ba:c1:68:4f:cb:5c:2e:35:
0a:6a:db:42:92:3b:b0:7c:db:14:00:e4:3e:ba:0d:9d:16:f5:
b1:82:73:55:f9:ec:87:da:f7:26:66:66:ba:79:b8:a4:b6:b6:
64:0a:81:34:3e:f4:56:cc:d0:35:74:26:f1:8f:42:68:05:f1:
c0:c7:5b:f0:12:a3:19:7f:39:4c:45:bb:46:84:9a:48:d5:91:
47:f0:8a:c6:25:92:ca:f6:1b:b4:8b:25:92:b9:3f:88:44:a0:
e6:55:f7:bd:42:1a:40:69:67:9a:5b:3b:f1:a2:7d:1c:29:d0:
17:ae:0f:9a:bf:6c:be:21:b7:f2:1f:39:bc:9b:50:52:42:bf:
e9:01:a4:14:81:2e:4f:f9:0a:70:5a:7e:b8:fb:a9:e1:69:3a:
c2:fd:54:e7:1b:e0:cb:45:39:8d:d0:38:06:2c:b1:5b:a1:48:
89:79:f3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:35 2025 by rpki-client