Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130332e302f32342d3234203d3e203536323431.roa
File: 3230332e39392e3130332e302f32342d3234203d3e203536323431.roa (raw, json)
Hash identifier: DZw3cfVpl9eMlsIinfHwKcH6/KtzgbcJ6EVoNMOzf5I=
Subject key identifier: BD:93:7B:9F:EB:76:DB:F0:0F:B4:10:56:08:C8:89:89:6D:4F:CA:71
Certificate issuer: /CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658
Certificate serial: 3BC80AEBB414F0CCEA64066AA301D267C463A6F4
Authority key identifier: C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130332e302f32342d3234203d3e203536323431.roa
Signing time: Mon 02 Dec 2024 07:25:13 +0000
ROA not before: Mon 02 Dec 2024 07:20:13 +0000
ROA not after: Mon 01 Dec 2025 07:25:13 +0000
asID: 56241
IP address blocks: 203.99.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:c8:0a:eb:b4:14:f0:cc:ea:64:06:6a:a3:01:d2:67:c4:63:a6:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C9B3FF3FB070C3B99526356576F10FFA3FBDF658
Validity
Not Before: Dec 2 07:20:13 2024 GMT
Not After : Dec 1 07:25:13 2025 GMT
Subject: CN=BD937B9FEB76DBF00FB4105608C889896D4FCA71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6d:e5:c4:f9:6e:84:b6:4e:42:dd:97:4e:96:
4b:0f:d9:8f:49:e9:e0:34:52:eb:48:07:07:1c:9e:
cf:f4:cf:ba:43:d3:0c:e1:03:ab:ed:18:9b:13:7a:
ba:f9:c9:be:7d:ad:fd:f9:aa:58:7e:69:0d:c0:39:
af:61:5e:fe:d8:40:dd:27:66:41:bb:d6:7c:56:2e:
ea:9a:32:a9:fe:55:bd:84:15:ca:89:7c:8b:f9:bb:
be:f3:08:7e:ca:0f:2d:75:b1:67:96:47:25:f7:3f:
6b:de:34:ed:61:15:84:8c:20:a3:e7:66:af:68:bd:
df:bd:3c:ce:be:e1:d0:01:cd:9e:18:53:c6:15:c9:
90:aa:49:99:79:ba:e3:23:0d:09:be:0f:90:bc:69:
a8:a7:58:a2:c5:dc:0a:db:12:68:89:e0:0e:42:a0:
89:ea:57:9f:58:fc:07:af:33:7c:e5:9c:aa:0e:59:
f3:ad:4c:1f:a7:76:fc:df:a4:79:f2:d3:ba:fa:bd:
b5:31:9e:82:74:c4:a4:26:19:8d:aa:50:97:4b:ec:
f3:52:03:fc:4b:d2:3a:4c:2e:0b:ed:ac:08:d9:9e:
ca:99:46:ae:b5:46:2c:3d:29:bd:ae:c0:df:d3:ab:
8f:93:f5:1b:80:59:11:1f:ee:22:f4:ea:76:b4:fd:
47:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:93:7B:9F:EB:76:DB:F0:0F:B4:10:56:08:C8:89:89:6D:4F:CA:71
X509v3 Authority Key Identifier:
keyid:C9:B3:FF:3F:B0:70:C3:B9:95:26:35:65:76:F1:0F:FA:3F:BD:F6:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9B3FF3FB070C3B99526356576F10FFA3FBDF658.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e59db7e-94f6-4002-99ef-5e96d8e37e50/0/3230332e39392e3130332e302f32342d3234203d3e203536323431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.99.103.0/24
Signature Algorithm: sha256WithRSAEncryption
60:fa:4a:f9:a4:86:e5:9a:9d:bd:a1:99:63:f5:14:e2:ab:72:
30:e2:e7:89:4e:f7:fa:f3:74:72:9b:7b:d3:f6:be:67:8a:24:
08:38:b1:85:40:d7:be:89:53:b1:ac:1c:1d:3f:64:da:3f:35:
ca:82:21:12:99:5b:13:74:7a:e6:8c:19:f9:67:10:8b:7a:b6:
ca:a9:40:1f:d6:aa:d8:2e:fc:a6:b0:83:23:33:4f:bc:7e:97:
04:53:3c:7b:b1:be:66:b7:51:ff:9e:97:16:8a:e7:9c:54:e2:
dc:46:cf:29:0c:ba:33:30:9e:8a:31:37:73:c9:02:16:7e:d5:
95:1c:15:24:ed:ab:75:9d:60:12:3f:6e:41:cf:35:c7:cd:64:
31:85:f0:e8:19:72:5e:42:5e:c9:cd:32:6a:ee:4a:db:d8:d0:
ab:7d:46:35:2f:15:32:bd:e2:69:82:6e:f8:4a:ac:62:9b:3c:
75:72:30:25:35:af:a0:05:d8:93:fa:4e:f7:03:31:95:0d:10:
a8:6a:ff:b8:eb:21:20:20:9e:43:56:06:1e:0b:8b:bb:02:8c:
59:0c:fb:13:2d:8d:31:ee:85:ac:b4:b6:af:61:b7:3e:f4:89:
3e:7f:7a:14:e5:b4:a8:ea:68:46:62:00:6a:b7:6f:c1:86:78:
55:08:75:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:12:39 2025 by rpki-client