Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32342d3234203d3e20313430343031.roa
File: 3130332e3135302e3231382e302f32342d3234203d3e20313430343031.roa (raw, json)
Hash identifier: 8qEqjUoI8JCcLal/9MN7LwmrWh3RHDKtA/EYlOAqErE=
Subject key identifier: 2F:BB:0A:01:0D:13:81:0D:F9:E6:89:FD:D3:43:BF:93:07:2E:B8:6B
Certificate issuer: /CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5
Certificate serial: 449B69877964BF3A2C9113D4A94A431C1317A095
Authority key identifier: 84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32342d3234203d3e20313430343031.roa
Signing time: Mon 01 Jul 2024 01:02:48 +0000
ROA not before: Mon 01 Jul 2024 00:57:48 +0000
ROA not after: Mon 30 Jun 2025 01:02:48 +0000
asID: 140401
IP address blocks: 103.150.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:9b:69:87:79:64:bf:3a:2c:91:13:d4:a9:4a:43:1c:13:17:a0:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5
Validity
Not Before: Jul 1 00:57:48 2024 GMT
Not After : Jun 30 01:02:48 2025 GMT
Subject: CN=2FBB0A010D13810DF9E689FDD343BF93072EB86B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:85:c2:34:a6:a8:76:aa:63:bc:aa:13:3f:89:
42:3e:1a:92:44:39:83:0b:8a:8f:86:31:1c:6f:fe:
a0:39:ed:7b:62:b8:05:5b:d0:29:fd:0d:28:9f:de:
c4:4b:ff:d3:32:3b:7a:3d:bb:b0:67:5a:a4:13:e2:
96:1f:a4:50:91:fd:45:d3:fe:05:42:cd:11:32:f4:
d9:85:70:c7:87:31:74:1e:a7:9e:98:b3:45:a2:6d:
8a:b6:05:69:80:b8:3c:dd:a6:bc:6a:55:10:4e:12:
8a:bc:cb:e2:2b:15:86:95:f8:db:ee:a4:5a:4b:d2:
3b:9c:cc:80:7c:6a:75:2b:4a:53:4d:8d:aa:b6:7c:
b9:ad:69:54:a0:c7:4d:eb:11:37:2c:94:2a:b1:52:
23:43:f6:60:66:8e:ec:25:d6:1e:b0:2e:59:a7:72:
fd:b2:09:b2:86:98:17:b7:70:9b:54:9a:d9:00:2d:
56:a5:45:a3:89:fd:52:4f:61:b3:67:7a:8f:d7:69:
5d:22:c2:1d:f3:ef:56:9c:c3:ca:4c:95:d2:fb:f2:
23:12:8a:98:f1:f0:a9:a3:c6:02:e6:6d:cf:c9:47:
cb:c6:9a:b0:28:d8:3f:4b:51:dd:a2:55:01:a5:de:
1a:de:de:b1:17:85:04:8a:20:82:dd:75:48:b8:02:
d6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:BB:0A:01:0D:13:81:0D:F9:E6:89:FD:D3:43:BF:93:07:2E:B8:6B
X509v3 Authority Key Identifier:
keyid:84:7E:BE:D5:D2:D5:9F:7F:1F:79:1C:B9:C0:DF:A9:33:AE:F0:67:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/847EBED5D2D59F7F1F791CB9C0DFA933AEF067C5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b5d72f3-2db2-4bcc-9f77-d1442b632d04/0/3130332e3135302e3231382e302f32342d3234203d3e20313430343031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.150.218.0/24
Signature Algorithm: sha256WithRSAEncryption
58:ef:34:cd:ce:89:ff:73:68:48:21:97:f7:76:7b:bc:2a:b3:
7b:c9:ba:00:4d:4c:39:db:1a:ac:ac:37:de:1f:75:9d:42:43:
07:22:b4:38:74:80:2d:d8:1d:1b:1d:f7:0e:7d:4d:78:f6:8c:
a4:be:c0:33:f4:f2:a8:d8:b1:35:59:e3:1b:c0:4d:ee:68:20:
66:07:99:c6:18:07:28:3e:36:cf:1e:82:76:4c:a9:6d:f0:ef:
e1:e1:8c:92:96:fa:78:82:9b:8f:c3:24:b0:c9:80:b5:25:7c:
7c:d2:d8:fe:3f:72:04:bd:63:40:1c:61:51:77:b4:77:76:8b:
6e:4c:62:d2:5d:48:d9:19:61:db:ac:50:09:1a:9f:81:38:ba:
6e:5a:eb:fd:41:c0:8f:bd:3c:0d:f6:e0:af:3f:02:20:2b:ac:
23:89:41:c4:f3:4d:7b:8b:da:de:c3:e1:c4:fa:c7:0a:55:8e:
be:eb:34:ec:2d:42:8e:24:4a:d9:0e:46:99:3e:24:6a:05:57:
03:fb:0c:63:e7:7a:86:d6:d5:e7:f6:51:fb:c4:dc:7c:ef:26:
ae:b1:8b:a2:10:73:53:8a:73:33:a8:ea:7e:f1:39:e0:b3:37:
62:21:8a:e6:9c:30:f5:78:86:01:08:45:55:af:a3:0c:ff:e3:
25:79:fe:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:55:01 2025 by rpki-client