Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa
File: 3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa (raw, json)
Hash identifier: i9P3BUfAWtkH95rW98va5S26/GuOy0kNU/0qkQxgQNw=
Subject key identifier: 69:65:95:34:58:A9:D8:A9:AF:BE:A6:02:70:81:3E:59:A4:90:95:30
Certificate issuer: /CN=FD0F38979237143A0D44165912E79E2FACD5A3BA
Certificate serial: 363BB1C5A06B88C9B465999FE0653D83307A3AB1
Authority key identifier: FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa
Signing time: Thu 22 Aug 2024 06:00:02 +0000
ROA not before: Thu 22 Aug 2024 05:55:02 +0000
ROA not after: Thu 21 Aug 2025 06:00:02 +0000
asID: 141125
IP address blocks: 103.158.98.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:3b:b1:c5:a0:6b:88:c9:b4:65:99:9f:e0:65:3d:83:30:7a:3a:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FD0F38979237143A0D44165912E79E2FACD5A3BA
Validity
Not Before: Aug 22 05:55:02 2024 GMT
Not After : Aug 21 06:00:02 2025 GMT
Subject: CN=6965953458A9D8A9AFBEA60270813E59A4909530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d9:86:db:c5:b9:a7:be:cb:3f:d9:9a:be:63:
7b:e4:98:bd:78:f8:1b:66:30:09:1e:ac:cd:15:b7:
b5:81:89:9f:7d:c5:0d:ed:e7:ea:e8:6b:5f:7e:f3:
e6:2f:ca:33:25:ae:9d:22:f9:44:50:93:e0:65:c3:
23:5f:b3:aa:64:42:e7:04:db:7c:f2:ff:d1:4e:ef:
2a:32:7d:a2:d2:cf:67:33:d9:be:61:79:80:5c:69:
2e:aa:2c:f1:7d:2b:39:79:bd:d2:c1:cf:25:b3:59:
2d:5c:db:27:20:26:48:28:c4:0f:17:bf:e7:9f:4a:
21:f8:9b:16:41:a8:b5:5f:2d:96:9f:ae:25:d5:4f:
58:ba:b1:29:b0:da:6c:d9:3b:43:9d:c4:bc:49:08:
0e:4c:7f:04:e5:94:0f:0d:1d:07:f3:e4:93:10:63:
e2:cc:33:fa:d4:d1:eb:7b:ef:10:8b:af:4f:8d:6d:
63:51:8f:ea:b2:0c:6f:6e:c1:4d:38:35:4f:41:1f:
bb:cc:af:a8:9d:95:04:c1:f3:06:02:5f:d1:fc:7f:
d3:6b:8d:fd:23:40:89:fb:48:91:c7:2a:bd:dd:9c:
92:77:6e:54:90:92:fe:fc:ac:a9:96:88:29:55:d0:
52:f6:d7:e5:b0:1f:6e:84:8e:78:b4:68:c3:ac:be:
44:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:65:95:34:58:A9:D8:A9:AF:BE:A6:02:70:81:3E:59:A4:90:95:30
X509v3 Authority Key Identifier:
keyid:FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.98.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:0e:35:d4:33:54:41:ed:aa:39:10:0b:bd:56:79:a8:83:a5:
ae:76:3c:e6:5f:39:61:73:6f:30:d0:b8:d4:75:3a:ef:eb:4e:
97:e3:32:6d:3c:d5:8f:0c:12:c1:bd:9f:e1:5a:29:b3:ed:29:
f9:b5:48:81:a9:de:9d:d3:8e:3e:d2:dc:19:8c:f3:6d:63:dc:
a8:ca:26:ff:1b:cd:6d:c1:f0:e5:c6:fc:b1:6d:c5:94:dd:5f:
34:0a:d7:ad:fd:8b:a0:47:32:58:a2:63:a7:1d:ce:70:2b:ed:
8a:7b:1d:98:d6:dd:36:9f:b1:ab:ff:65:a4:ca:66:56:a9:23:
a3:76:70:07:80:a1:d8:4b:c1:4a:f8:e1:1e:76:94:85:ed:22:
e5:88:f1:57:ef:51:bc:ae:76:03:46:9d:46:c2:47:5e:d5:fb:
b5:b8:a6:42:7e:d8:0a:fc:58:14:d3:7b:d1:91:6e:76:af:94:
d4:93:15:f4:36:78:af:af:f1:dc:be:6b:3f:f9:4c:42:d2:fb:
03:cd:31:d0:68:32:52:eb:62:46:83:3b:37:d7:a0:4c:2a:72:
80:7e:21:0e:f4:fa:6d:b4:c0:b3:f6:a9:6e:71:c5:00:fc:ec:
d0:ec:a3:d3:7f:68:c1:95:89:bb:33:70:1a:d8:09:cd:07:b6:
d4:9a:30:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:55 2025 by rpki-client