Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/3130332e3137382e38362e302f32342d3234203d3e203438343635.roa
File: 3130332e3137382e38362e302f32342d3234203d3e203438343635.roa (raw, json)
Hash identifier: L0+ufR2O1ax5oE/AG50W3KROh6ggSv3rdUyms/8wcSk=
Subject key identifier: A4:87:36:68:48:36:58:1D:85:BB:C0:38:71:6E:7C:E1:0B:21:F8:F1
Certificate issuer: /CN=A62202F88CE61D6BD47195FB36103CDD061D7D27
Certificate serial: 4A12F2E3C55968B4615BA88200451DCFD510AF06
Authority key identifier: A6:22:02:F8:8C:E6:1D:6B:D4:71:95:FB:36:10:3C:DD:06:1D:7D:27
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A62202F88CE61D6BD47195FB36103CDD061D7D27.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/3130332e3137382e38362e302f32342d3234203d3e203438343635.roa
Signing time: Sun 14 Jul 2024 23:57:24 +0000
ROA not before: Sun 14 Jul 2024 23:52:24 +0000
ROA not after: Sun 13 Jul 2025 23:57:24 +0000
asID: 48465
IP address blocks: 103.178.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:12:f2:e3:c5:59:68:b4:61:5b:a8:82:00:45:1d:cf:d5:10:af:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A62202F88CE61D6BD47195FB36103CDD061D7D27
Validity
Not Before: Jul 14 23:52:24 2024 GMT
Not After : Jul 13 23:57:24 2025 GMT
Subject: CN=A48736684836581D85BBC038716E7CE10B21F8F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5f:9f:90:02:e2:8c:0c:55:43:df:cc:46:89:
87:d2:e1:f8:92:e6:8a:e2:e1:12:64:79:b1:b2:e7:
e6:f0:70:b0:60:14:a9:04:1a:ce:9f:16:8a:90:21:
c3:6c:30:2b:02:c5:c9:67:fe:46:a1:e6:ef:5b:1b:
bb:02:22:e2:90:8c:cd:9b:2e:d6:ec:88:9e:f1:2a:
06:cd:0e:c5:7c:7a:e9:01:77:b1:d8:1e:42:2d:7d:
2e:81:a9:30:45:dc:74:2b:d3:ba:5d:ec:2d:21:57:
c3:56:2e:46:a1:3e:3c:a4:f8:66:c3:92:5a:01:b7:
47:fa:ef:a5:19:d1:99:3d:bd:d2:0d:d1:8f:f6:ac:
2b:18:08:32:e4:bb:32:e9:1c:c0:0c:01:32:57:c9:
0e:6c:ff:2f:ce:01:cd:92:fb:88:da:ea:e9:ee:b1:
c5:99:5f:3f:65:53:bf:e2:9b:c7:60:b9:d8:33:b5:
69:5e:8d:be:ab:99:5e:e7:6e:63:6f:42:a6:58:65:
1e:d9:64:b4:24:13:4b:64:ab:bd:ba:96:d5:c8:dc:
18:7f:9c:14:68:13:d9:e0:ea:40:e5:75:e7:f1:eb:
ef:79:3c:46:b3:17:9c:b7:79:65:85:ec:13:2a:8a:
b2:00:63:de:86:ec:23:dc:a6:8c:69:69:91:bb:0e:
73:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:87:36:68:48:36:58:1D:85:BB:C0:38:71:6E:7C:E1:0B:21:F8:F1
X509v3 Authority Key Identifier:
keyid:A6:22:02:F8:8C:E6:1D:6B:D4:71:95:FB:36:10:3C:DD:06:1D:7D:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/A62202F88CE61D6BD47195FB36103CDD061D7D27.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A62202F88CE61D6BD47195FB36103CDD061D7D27.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d738314-a975-4fd1-9bc9-52138f83b56e/0/3130332e3137382e38362e302f32342d3234203d3e203438343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.178.86.0/24
Signature Algorithm: sha256WithRSAEncryption
12:97:d9:a5:fe:ae:4b:5f:fc:80:81:ad:27:0f:c5:22:e9:d9:
e4:a7:8f:e2:13:fc:d1:a4:08:f2:f6:a9:3e:24:23:5a:7f:63:
4a:50:38:75:3e:c4:d2:83:d3:db:0e:d1:6e:92:68:b5:31:2c:
7e:b6:82:a8:7e:a6:76:7a:99:f2:9e:6f:91:4d:52:9e:88:d5:
7b:d0:08:37:6e:b3:52:f9:5a:44:31:e2:9c:6d:a2:4f:01:39:
f8:a5:c7:52:8f:a1:88:7b:9f:23:c6:f0:b1:34:61:e0:e9:8c:
9f:85:f7:22:41:42:aa:70:32:9d:ae:06:69:c2:f2:3b:7b:e0:
47:24:e7:47:dc:95:09:47:f7:b9:90:79:1f:c8:e1:f7:ce:3a:
92:7f:94:2e:6c:9c:5a:55:9b:ea:2a:5d:87:97:4e:40:df:05:
80:8e:ff:43:27:02:7f:de:b1:7e:b3:cd:89:c7:c2:e7:69:4f:
d9:92:1e:b1:ac:3e:f7:45:79:47:69:00:97:31:09:bd:38:b6:
e3:12:53:85:f2:30:67:89:33:11:7b:50:e4:15:09:00:ac:1d:
cf:cb:e3:07:b3:8c:32:dd:89:a2:3e:a6:01:e8:b1:bc:d7:17:
dc:65:d3:65:31:60:d8:94:69:e6:70:e0:a0:51:7d:77:ae:c0:
ed:59:ca:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:36 2025 by rpki-client