Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231392e302f32342d3234203d3e20313331373433.roa
File: 3130332e3136322e3231392e302f32342d3234203d3e20313331373433.roa (raw, json)
Hash identifier: xf2I9h8KQwy/WwpQfY5CtYlpiMXIfz8b66L3e8+iRiw=
Subject key identifier: B1:76:03:9D:AF:FB:EB:75:59:FD:FC:D3:D3:96:00:67:18:B1:70:F3
Certificate issuer: /CN=6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A
Certificate serial: 2F17DA250827187838F2EE0C6955EEF97B4CCFDD
Authority key identifier: 6C:DF:5C:D1:FD:DF:F2:C0:24:C1:3A:29:26:4D:70:FA:51:F9:58:7A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231392e302f32342d3234203d3e20313331373433.roa
Signing time: Tue 26 Nov 2024 12:00:47 +0000
ROA not before: Tue 26 Nov 2024 11:55:47 +0000
ROA not after: Tue 25 Nov 2025 12:00:47 +0000
asID: 131743
IP address blocks: 103.162.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:17:da:25:08:27:18:78:38:f2:ee:0c:69:55:ee:f9:7b:4c:cf:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A
Validity
Not Before: Nov 26 11:55:47 2024 GMT
Not After : Nov 25 12:00:47 2025 GMT
Subject: CN=B176039DAFFBEB7559FDFCD3D396006718B170F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:90:98:ae:2c:48:42:c1:1c:83:33:bb:cc:bf:
b6:4b:74:2c:7d:f8:c0:46:08:b7:87:94:8f:0d:10:
50:8f:b4:fb:ad:06:72:2e:78:7d:f7:65:26:4f:7b:
ba:9c:60:0c:a8:30:24:63:d4:57:e4:71:05:72:d0:
13:8f:20:31:8b:c7:31:8a:61:70:bf:21:5a:49:90:
c6:5b:09:75:88:48:33:22:47:94:37:62:49:ca:f2:
84:94:fa:04:3c:98:2a:2c:1e:63:9e:b6:6b:db:90:
13:86:d5:ec:44:15:9b:aa:14:da:2b:9f:f7:46:18:
7b:d7:4b:1f:1a:00:fa:7a:77:84:79:50:f7:ed:f9:
ac:63:2b:34:84:a1:ae:bb:16:55:46:ab:7d:1f:b3:
af:19:cf:a1:a9:f3:d8:79:77:94:f0:0d:75:be:b2:
36:bb:70:41:45:84:94:eb:ad:98:78:70:86:6a:cf:
c9:82:e3:54:de:de:58:f3:a1:f2:19:d6:69:07:6a:
1d:cc:1c:ed:d7:11:e6:9b:5e:dc:75:9e:c6:32:68:
0b:da:2c:da:71:3d:2d:0b:37:33:86:18:99:92:68:
1d:2b:1c:b5:42:7d:9c:dc:83:d2:2a:8b:90:00:56:
a1:b0:73:84:a2:a3:8c:14:e9:9b:52:f0:b0:52:59:
7f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:76:03:9D:AF:FB:EB:75:59:FD:FC:D3:D3:96:00:67:18:B1:70:F3
X509v3 Authority Key Identifier:
keyid:6C:DF:5C:D1:FD:DF:F2:C0:24:C1:3A:29:26:4D:70:FA:51:F9:58:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6CDF5CD1FDDFF2C024C13A29264D70FA51F9587A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d266511-639e-4c2b-9634-9cc1e22fa708/0/3130332e3136322e3231392e302f32342d3234203d3e20313331373433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.219.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:73:78:73:45:2f:f4:53:a0:59:ae:1d:9d:41:20:f8:ae:cb:
c2:69:4f:bc:ca:e3:63:3e:13:cc:d6:39:e5:15:5f:64:db:ff:
4e:09:93:d6:cf:e3:8e:51:13:fc:91:1a:af:8f:5f:12:4c:47:
f4:ab:09:08:16:85:2e:38:ab:4e:c6:ca:c4:4e:c1:b4:cb:25:
00:62:6d:0e:61:e5:51:51:ab:16:9a:63:a7:df:fe:0d:ae:b3:
84:5e:7a:87:fc:e9:8a:2d:f6:f5:e5:4c:a2:73:b4:94:c7:6e:
f9:f0:b5:ec:38:b4:23:cc:ee:2f:ce:cd:86:56:6f:3e:8b:6e:
84:91:a1:00:3b:93:d1:b1:fe:9b:bb:0b:f4:7d:0d:e3:81:42:
1c:0d:83:dc:d7:ad:cb:5f:e9:aa:1e:3a:71:d7:a4:08:1f:26:
38:7b:76:ab:39:94:ee:28:35:01:54:9d:07:5c:3d:a3:b2:b8:
3a:f7:92:5f:ac:a0:b5:23:4c:8e:19:f6:43:42:8e:52:85:01:
59:1f:d3:e7:77:1c:cf:81:85:5b:da:b9:b3:39:c5:9e:33:f2:
9b:6a:25:c0:64:de:ff:e1:67:f1:a3:66:bd:cd:f7:35:d0:a8:
28:0c:cc:29:f9:24:35:d3:0c:d5:e8:ad:49:e2:0c:f5:4b:64:
49:db:2a:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:19 2025 by rpki-client