Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/773d2b60-12c8-413e-b941-393e00fdd653/0/3130332e3137372e3231352e302f32342d3234203d3e20313437313633.roa
File: 3130332e3137372e3231352e302f32342d3234203d3e20313437313633.roa (raw, json)
Hash identifier: 6qcogMDPHsM3nDEjikmZN+5bLY6xje7gJNbQktTz/GA=
Subject key identifier: 6F:3F:B7:54:FF:45:6C:26:85:AC:F3:26:48:61:EE:3C:A0:BA:27:0F
Certificate issuer: /CN=ADB9C197352F8128F6DAA47A227D3869A4C238F4
Certificate serial: 56DE47FBDA0D3AB24AE4BA3065307BA79B91319A
Authority key identifier: AD:B9:C1:97:35:2F:81:28:F6:DA:A4:7A:22:7D:38:69:A4:C2:38:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADB9C197352F8128F6DAA47A227D3869A4C238F4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/773d2b60-12c8-413e-b941-393e00fdd653/0/3130332e3137372e3231352e302f32342d3234203d3e20313437313633.roa
Signing time: Wed 13 Nov 2024 10:00:00 +0000
ROA not before: Wed 13 Nov 2024 09:55:00 +0000
ROA not after: Wed 12 Nov 2025 10:00:00 +0000
asID: 147163
IP address blocks: 103.177.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:de:47:fb:da:0d:3a:b2:4a:e4:ba:30:65:30:7b:a7:9b:91:31:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADB9C197352F8128F6DAA47A227D3869A4C238F4
Validity
Not Before: Nov 13 09:55:00 2024 GMT
Not After : Nov 12 10:00:00 2025 GMT
Subject: CN=6F3FB754FF456C2685ACF3264861EE3CA0BA270F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:30:13:a0:63:95:1c:0d:64:e0:7b:7e:c5:3b:
c6:95:78:91:9a:8e:36:e9:98:08:04:d9:e5:ba:d2:
b9:72:db:44:5f:f3:05:27:cb:9b:9a:39:5c:03:48:
38:94:4d:50:a9:19:43:f8:54:c3:44:73:a5:3c:dd:
03:42:ad:39:00:b4:6d:53:23:d7:49:48:dc:55:52:
9b:cd:f4:84:34:98:e9:6e:77:a2:70:31:ff:8a:64:
e5:73:a8:a4:02:ff:25:d9:02:8b:92:18:2a:99:35:
ea:26:0a:61:0c:9d:ed:38:f5:22:5b:c6:8f:4c:8c:
0d:de:39:eb:b1:de:0a:80:16:e4:02:18:ab:e0:c7:
2a:fc:19:77:37:f6:4e:9e:49:37:80:31:fc:8e:ea:
36:1c:2e:19:1a:d1:a2:45:55:2f:26:d0:b5:be:8f:
9e:03:ba:4b:86:48:84:80:80:24:81:dc:c6:9f:db:
8e:11:5a:24:c2:7a:de:c8:64:db:9f:26:53:19:d5:
23:56:de:2d:0f:16:13:e0:41:f3:82:b2:0a:73:a2:
1a:a2:a1:5b:76:4b:4e:4f:e4:8e:f1:23:5f:24:f1:
a1:f1:41:f8:e3:6f:cf:3d:ba:e2:1f:7e:5b:0f:64:
64:a1:8d:84:ba:d3:82:d8:de:ce:bb:d8:84:a8:4f:
e1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3F:B7:54:FF:45:6C:26:85:AC:F3:26:48:61:EE:3C:A0:BA:27:0F
X509v3 Authority Key Identifier:
keyid:AD:B9:C1:97:35:2F:81:28:F6:DA:A4:7A:22:7D:38:69:A4:C2:38:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/773d2b60-12c8-413e-b941-393e00fdd653/0/ADB9C197352F8128F6DAA47A227D3869A4C238F4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ADB9C197352F8128F6DAA47A227D3869A4C238F4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/773d2b60-12c8-413e-b941-393e00fdd653/0/3130332e3137372e3231352e302f32342d3234203d3e20313437313633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.177.215.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:6d:61:24:df:a0:82:13:7c:41:b0:c3:f0:c6:6a:e4:70:cd:
02:1b:bb:22:e7:ca:c4:60:f3:c7:e0:df:6e:1b:5a:b5:c4:c5:
26:62:b4:d2:92:6d:b2:6c:30:ed:85:4c:b9:99:13:7c:d2:2e:
04:77:11:be:4d:72:da:1f:1a:12:a1:b9:3d:89:2c:00:5a:f2:
44:8a:65:2c:68:5a:68:9b:76:3e:91:85:66:4a:88:66:4f:11:
73:b5:7b:38:0d:2e:7b:52:78:fd:20:9a:6d:37:30:b7:e3:ef:
13:b6:3a:3f:bc:d3:a5:7e:8c:4e:44:dd:72:50:ff:7d:9a:39:
db:ee:20:6d:a2:b7:07:29:9e:6a:76:c1:2d:43:6e:f1:36:d6:
4e:94:8d:3a:c0:2f:8f:5b:c6:eb:c6:d4:90:e0:9c:f8:dd:04:
7c:61:28:bc:6c:84:b6:cb:ef:72:9c:da:c3:0d:4e:0f:25:34:
97:97:22:7d:39:b2:c8:c8:30:ae:0b:68:90:0f:9c:f5:cb:c3:
74:f7:cd:e6:d1:15:cc:9c:34:d2:3a:38:a1:61:55:92:de:e8:
51:5c:f4:ce:d5:9c:6d:e1:c8:3d:b5:29:1c:f2:24:10:9b:fc:
75:ba:94:12:da:7a:12:33:51:16:88:3d:ef:0f:ea:20:f9:b0:
fe:9a:74:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:10:19 2025 by rpki-client