Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa
File: 3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa (raw, json)
Hash identifier: 4mB2XM5DudhhoPkrzgkjpAUPPeNBfh6OVwqbnoubk7c=
Subject key identifier: 65:13:8B:DB:CD:A8:D3:45:66:22:40:E7:76:EB:38:AC:2A:9B:92:3E
Certificate issuer: /CN=A5BB79678DB1239CD393222080CAAF085BEE737F
Certificate serial: 5C0027E48CE0087EFFE4DA0634148FB47ECA78B4
Authority key identifier: A5:BB:79:67:8D:B1:23:9C:D3:93:22:20:80:CA:AF:08:5B:EE:73:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa
Signing time: Mon 17 Jun 2024 06:00:00 +0000
ROA not before: Mon 17 Jun 2024 05:55:00 +0000
ROA not after: Mon 16 Jun 2025 06:00:00 +0000
asID: 150923
IP address blocks: 103.97.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:00:27:e4:8c:e0:08:7e:ff:e4:da:06:34:14:8f:b4:7e:ca:78:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5BB79678DB1239CD393222080CAAF085BEE737F
Validity
Not Before: Jun 17 05:55:00 2024 GMT
Not After : Jun 16 06:00:00 2025 GMT
Subject: CN=65138BDBCDA8D345662240E776EB38AC2A9B923E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e7:6a:86:37:24:8d:a9:81:62:be:66:c0:f8:
84:b8:9b:27:d7:1c:93:75:e8:c4:6d:50:bd:ce:81:
cd:7c:10:64:00:d3:1c:30:11:6e:b5:4f:ad:c7:a1:
84:54:f0:18:72:b8:51:57:eb:c6:9a:6b:15:ce:e6:
a7:af:88:ec:70:87:a3:a3:95:28:69:d7:cc:30:a0:
7a:9e:65:af:98:e7:4f:78:39:a1:7a:ad:b1:2e:33:
df:df:f7:b4:d1:2e:70:91:ec:ba:82:fc:0f:b6:3b:
3d:3f:c1:37:06:56:13:84:48:2d:76:bf:4a:6b:4f:
1d:26:a6:56:9f:8e:32:65:58:3c:6b:f1:51:5e:f2:
66:08:0e:bc:fc:de:b4:02:83:56:60:5c:4e:1e:33:
13:67:e4:df:16:62:d2:8f:19:d5:88:e5:eb:2e:ad:
8d:c5:96:8b:00:92:d4:d4:26:66:91:22:f0:3a:f8:
7a:05:fa:4e:2a:a8:7e:55:4d:07:01:1b:59:51:75:
56:03:6e:58:45:d5:e2:72:c3:c7:86:1a:d8:37:4e:
df:20:d8:b1:54:ab:89:22:f6:55:6e:0e:c2:9d:21:
19:20:2e:fb:ba:14:56:9f:7e:95:47:f3:78:71:0e:
93:70:d2:bd:a6:b2:87:6c:5c:77:19:0f:eb:f9:c4:
e7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:13:8B:DB:CD:A8:D3:45:66:22:40:E7:76:EB:38:AC:2A:9B:92:3E
X509v3 Authority Key Identifier:
keyid:A5:BB:79:67:8D:B1:23:9C:D3:93:22:20:80:CA:AF:08:5B:EE:73:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/A5BB79678DB1239CD393222080CAAF085BEE737F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BB79678DB1239CD393222080CAAF085BEE737F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74aaa2f1-63a9-4281-8942-fb5d824119a4/0/3130332e39372e3232352e302f32342d3234203d3e20313530393233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.97.225.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:76:41:56:7a:ef:0d:96:ea:03:57:42:5c:0e:1f:e7:28:f4:
a1:b5:07:ed:f1:4d:c2:e1:9c:08:d0:63:bb:68:f0:d0:37:ec:
b3:67:f0:fe:a2:75:66:48:d6:40:4d:c8:37:7f:b4:bb:96:7c:
34:cc:42:43:04:9c:16:0e:48:e2:93:a7:e9:18:fa:b9:f8:dd:
86:f4:2c:79:9d:b3:d4:91:c5:9d:ae:91:b7:70:c6:a6:23:f5:
2c:5a:c4:b7:62:5a:a0:aa:84:62:53:2a:c3:58:d0:b9:ef:83:
ec:d1:39:5c:d7:d5:83:90:d3:bb:3a:82:2a:04:1b:83:c3:d4:
92:9d:96:ba:f6:2b:d8:58:1e:85:d4:ba:4a:77:3c:4a:7d:5d:
a7:38:6b:8b:59:59:23:72:5c:f2:3d:39:70:29:d4:de:9e:39:
b3:3c:ed:e8:a4:6f:2f:70:45:58:c3:d3:76:6e:80:cd:11:4e:
5f:4c:88:0c:dd:11:ee:de:9d:72:a7:bb:a0:73:00:af:43:c2:
ef:19:2a:9c:3a:86:bd:84:a5:86:6d:02:b8:cf:e3:58:97:4d:
fe:d4:ae:ae:4d:46:9b:55:1f:76:9a:fe:8c:70:63:71:f5:79:
d5:a1:95:1b:a3:65:2a:e1:09:c9:1d:fe:da:2b:4f:9d:e3:6d:
9a:63:61:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:17:40 2025 by rpki-client