Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32342d3234203d3e20313437313230.roa
File: 3130332e3137352e3135362e302f32342d3234203d3e20313437313230.roa (raw, json)
Hash identifier: Q0ltxebzKzXnkre7xssfVtSgnahJ7bWNS1vKESygj8c=
Subject key identifier: 21:48:AF:3F:9A:3A:E5:31:97:52:4C:A5:F5:77:F7:6F:68:CF:DC:35
Certificate issuer: /CN=ED4F41D4EBE684D523406475FAB471CE1B24E360
Certificate serial: 2A0952CCE0D8F9A85851546B95E066DA6974C1EC
Authority key identifier: ED:4F:41:D4:EB:E6:84:D5:23:40:64:75:FA:B4:71:CE:1B:24:E3:60
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32342d3234203d3e20313437313230.roa
Signing time: Fri 06 Dec 2024 01:00:00 +0000
ROA not before: Fri 06 Dec 2024 00:55:00 +0000
ROA not after: Fri 05 Dec 2025 01:00:00 +0000
asID: 147120
IP address blocks: 103.175.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:09:52:cc:e0:d8:f9:a8:58:51:54:6b:95:e0:66:da:69:74:c1:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED4F41D4EBE684D523406475FAB471CE1B24E360
Validity
Not Before: Dec 6 00:55:00 2024 GMT
Not After : Dec 5 01:00:00 2025 GMT
Subject: CN=2148AF3F9A3AE53197524CA5F577F76F68CFDC35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d2:bf:61:c5:52:3c:00:d8:8c:8d:df:e1:08:
5f:cb:73:d2:3e:be:3d:e8:a4:bd:2c:61:e3:6b:ce:
16:60:56:7e:70:d1:53:ba:5b:5d:82:7a:55:c7:90:
0d:c2:4d:a2:54:69:92:63:4d:cd:c6:d2:76:ea:08:
46:73:c3:5b:30:ef:fc:01:11:f9:44:e3:ea:14:da:
78:a9:e2:0f:83:dc:bc:a6:b5:e9:ab:dd:8f:15:bb:
06:63:e9:25:ed:e5:b0:89:22:13:43:9d:87:8e:69:
97:b7:36:07:09:93:48:52:99:c2:f8:0e:54:ab:7b:
a3:cf:ca:ce:df:4d:51:c9:5f:3a:a8:dd:60:ed:cd:
40:c0:61:c5:d6:3e:a9:d3:16:ca:b4:fd:6f:f7:a5:
7e:59:bf:27:7b:6f:aa:1e:f6:9b:31:ea:cd:85:52:
a2:6e:fc:d5:29:35:99:74:e8:b8:24:1a:8d:8e:36:
e9:0a:e0:15:26:3b:95:91:b7:22:99:ab:2f:d8:21:
e7:24:c8:d3:8a:eb:04:a7:99:b0:57:a9:7b:ae:7c:
7a:ce:fa:90:a6:4f:44:d1:fe:cb:a7:86:46:fa:a2:
91:0c:b2:79:bc:71:8d:a4:d1:9d:6d:6e:7e:fd:ce:
1b:10:60:a4:59:54:03:da:73:04:47:24:7a:62:d9:
72:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:48:AF:3F:9A:3A:E5:31:97:52:4C:A5:F5:77:F7:6F:68:CF:DC:35
X509v3 Authority Key Identifier:
keyid:ED:4F:41:D4:EB:E6:84:D5:23:40:64:75:FA:B4:71:CE:1B:24:E3:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/ED4F41D4EBE684D523406475FAB471CE1B24E360.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32342d3234203d3e20313437313230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.175.156.0/24
Signature Algorithm: sha256WithRSAEncryption
52:46:b3:7b:fc:f6:93:9e:53:2a:ed:b3:49:50:e4:a6:77:2b:
aa:c9:81:b9:56:38:fa:4f:ba:bf:e6:b6:10:ee:b8:e7:ea:45:
40:fc:83:ae:0b:03:3a:e1:99:16:01:ec:d3:68:6b:e4:57:40:
d7:e8:f1:55:a2:24:82:91:5e:8f:4e:bd:43:00:a2:fe:a8:9c:
03:4f:f6:57:d8:34:34:39:dc:8d:af:b9:e1:68:84:e4:9f:9e:
18:b6:ee:82:ab:35:c5:77:65:00:f8:71:f9:d0:cf:c8:c5:ce:
ae:81:06:e2:42:ed:fb:44:8b:df:2f:10:2b:65:1e:e0:a8:d0:
2b:51:f6:02:df:78:fc:6f:e4:10:d2:b8:93:5a:ec:71:8c:97:
1c:c9:7b:fe:d2:0c:03:e5:ed:5f:71:c4:bd:e6:2c:05:6c:5f:
61:14:0f:0b:11:41:a5:6b:47:a7:8d:94:79:8d:3c:b6:c9:a4:
0b:b8:c5:4d:95:8b:f9:33:a4:b3:4d:73:04:51:8b:6e:25:96:
78:fb:83:24:9e:ff:06:37:11:f6:30:01:b0:98:b4:74:a9:78:
c8:f7:4a:74:1c:6c:fa:c5:d0:a9:8c:46:de:6d:ce:0d:9e:65:
5d:98:2c:75:2d:f0:f5:65:6f:8b:85:e6:59:04:c2:09:2e:ab:
33:8c:17:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:58:29 2025 by rpki-client