Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/3130332e3132322e382e302f32342d3234203d3e20313530393635.roa
File: 3130332e3132322e382e302f32342d3234203d3e20313530393635.roa (raw, json)
Hash identifier: pWqtdZ34dIJv8otxA6Gkq4aQvclDwHj1tPI196gp7BQ=
Subject key identifier: DA:CE:67:E5:CD:7D:E5:A1:E6:2C:03:6A:93:00:E2:56:76:16:9E:41
Certificate issuer: /CN=8B19ACE0A7391492B18BE27AC01D2A602872BFC0
Certificate serial: 397D495BB2E97D4A533C6E606412D88D243DDA4F
Authority key identifier: 8B:19:AC:E0:A7:39:14:92:B1:8B:E2:7A:C0:1D:2A:60:28:72:BF:C0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/3130332e3132322e382e302f32342d3234203d3e20313530393635.roa
Signing time: Sat 13 Jul 2024 02:00:01 +0000
ROA not before: Sat 13 Jul 2024 01:55:01 +0000
ROA not after: Sat 12 Jul 2025 02:00:01 +0000
asID: 150965
IP address blocks: 103.122.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:7d:49:5b:b2:e9:7d:4a:53:3c:6e:60:64:12:d8:8d:24:3d:da:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8B19ACE0A7391492B18BE27AC01D2A602872BFC0
Validity
Not Before: Jul 13 01:55:01 2024 GMT
Not After : Jul 12 02:00:01 2025 GMT
Subject: CN=DACE67E5CD7DE5A1E62C036A9300E25676169E41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:17:22:98:1a:bd:2d:d5:99:1d:76:ef:93:f0:
63:d5:d1:48:b6:3c:4a:6a:1e:59:18:73:6f:a4:50:
93:d6:44:f1:4c:2c:b0:d1:be:4a:40:95:10:f9:df:
b3:12:e3:b1:50:a4:d3:ef:75:5d:5a:b8:3a:11:dc:
ae:77:1d:07:8f:b5:57:93:cd:f5:ba:5f:4f:d6:3d:
4d:25:c6:b0:67:87:8e:92:e0:f2:f6:5b:6e:99:e3:
5f:d3:d5:02:f5:83:00:30:d0:22:50:d8:75:06:7f:
ce:32:e1:59:97:2b:1b:df:39:fa:15:9b:f1:ed:66:
aa:4e:ad:22:6a:8f:31:1b:3c:7f:4f:dc:06:b5:5f:
cf:1d:28:b3:59:2a:22:59:dd:97:1d:92:81:60:c0:
f4:be:f5:52:42:3d:db:f4:c5:1b:f5:5a:f6:85:a3:
92:f8:7f:9a:2a:3d:0f:86:24:e3:a2:5a:f4:77:86:
2f:e5:0e:e2:a1:24:fc:1b:f8:ab:1e:93:1a:14:d2:
69:cb:d9:d6:5b:33:2a:0f:4f:7d:d4:51:2a:d1:1c:
af:a3:10:06:d6:39:b5:77:6e:dd:fe:3b:bc:ee:dd:
48:bd:53:f6:10:34:83:e3:53:d2:b9:c8:1b:64:63:
19:b2:96:c9:02:cc:e9:7e:21:01:de:cc:12:59:38:
be:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CE:67:E5:CD:7D:E5:A1:E6:2C:03:6A:93:00:E2:56:76:16:9E:41
X509v3 Authority Key Identifier:
keyid:8B:19:AC:E0:A7:39:14:92:B1:8B:E2:7A:C0:1D:2A:60:28:72:BF:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8B19ACE0A7391492B18BE27AC01D2A602872BFC0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6529db-9330-4e97-adf1-b0ddf1a6e599/0/3130332e3132322e382e302f32342d3234203d3e20313530393635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.122.8.0/24
Signature Algorithm: sha256WithRSAEncryption
64:6a:61:b3:27:55:d0:9b:0e:4d:6a:4b:3c:79:bf:12:df:f3:
bd:5f:2e:91:97:d2:76:f9:c6:76:86:3f:dc:d1:ab:03:af:c4:
f2:75:6d:fb:45:66:5a:b8:13:e1:68:cb:a5:91:54:b9:a6:68:
ee:ea:74:26:00:3a:fc:c6:9a:3e:d6:40:2b:86:f8:ad:36:b8:
6f:8d:f0:50:4a:b7:a8:fd:6f:6b:96:76:b7:bd:de:8b:d8:f3:
f2:7d:73:66:1e:9f:27:55:5c:43:c0:dd:52:3f:d2:92:d4:0e:
cb:0c:b5:d8:1d:6e:17:bd:c7:64:95:f2:05:b8:ba:a3:f0:07:
a6:fc:27:24:71:00:46:81:57:c7:f9:ea:ff:b1:e5:9a:49:8e:
89:0d:51:1e:c8:ce:44:52:93:4b:7f:44:f6:18:73:b6:6b:3e:
aa:64:d2:17:e7:14:c3:c5:28:63:af:61:7c:f8:30:9c:05:f0:
8d:3d:59:7a:9a:61:d7:91:76:41:0c:b5:57:be:a8:f1:77:75:
c7:9a:19:9a:b7:36:b5:7e:c3:c8:10:bd:db:b1:59:1f:0f:b7:
fc:ec:fc:f9:df:26:47:71:8e:bb:3b:11:bf:25:59:ec:d8:23:
f0:6e:83:2f:f9:34:66:f8:2d:31:aa:c7:8a:3e:ae:b5:68:22:
8a:d9:2f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:24:14 2025 by rpki-client