Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa
File: 3130332e33382e3130302e302f32342d3234203d3e203338353234.roa (raw, json)
Hash identifier: 5ppYVuoYQyz/bQ7f7LrJvWo/wmvUf3p1wkVOWOcoxcs=
Subject key identifier: 62:8B:8B:7E:AC:25:22:6F:5F:3D:3D:48:39:EE:42:D3:DD:81:E5:B3
Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Certificate serial: 0E5A563ECD75172DD55322E42FA7B5954D5A767D
Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa
Signing time: Mon 01 Jul 2024 01:03:45 +0000
ROA not before: Mon 01 Jul 2024 00:58:45 +0000
ROA not after: Mon 30 Jun 2025 01:03:45 +0000
asID: 38524
IP address blocks: 103.38.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:5a:56:3e:cd:75:17:2d:d5:53:22:e4:2f:a7:b5:95:4d:5a:76:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Validity
Not Before: Jul 1 00:58:45 2024 GMT
Not After : Jun 30 01:03:45 2025 GMT
Subject: CN=628B8B7EAC25226F5F3D3D4839EE42D3DD81E5B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f8:28:92:43:b5:44:fe:ce:be:a0:b0:b5:b9:
43:82:31:63:4b:42:1a:b1:f7:42:fb:c1:58:f0:3f:
a9:40:ae:c6:b4:74:7e:98:9c:55:23:81:29:88:41:
1f:d7:0d:42:e0:73:e0:cb:e5:e7:63:66:44:1e:ad:
33:e8:34:e9:ad:62:c7:61:5b:3e:25:4c:e7:36:69:
56:7d:f0:ba:e8:eb:65:5f:96:5d:6b:8d:bb:d2:cf:
9c:d4:44:8f:4a:c4:ae:f4:10:68:36:91:c3:6f:f4:
92:2e:4f:73:c0:7f:e1:15:b2:90:56:54:2d:35:80:
5f:17:6f:59:0f:2d:5f:a2:aa:5e:17:34:3a:b6:dc:
f8:2c:a9:e6:50:e6:1d:15:83:73:87:1f:8b:2a:03:
d0:f6:57:aa:93:8a:21:2e:af:c8:8a:c2:2e:f6:d9:
8d:a1:88:ff:cc:b4:67:b2:6e:41:30:22:90:19:99:
a5:e5:44:04:1d:71:51:b7:c2:77:6f:62:bc:9e:4a:
80:d8:69:e8:93:42:b7:93:1a:cc:54:ba:02:ca:47:
26:0d:95:68:04:95:42:2f:1b:6a:8e:65:3d:0a:79:
32:ba:02:5e:dd:b8:98:cb:b8:77:a7:d1:d3:a6:6f:
5c:2c:d3:dc:37:2f:b4:06:86:fe:41:2d:26:3c:5b:
b6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8B:8B:7E:AC:25:22:6F:5F:3D:3D:48:39:EE:42:D3:DD:81:E5:B3
X509v3 Authority Key Identifier:
keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130302e302f32342d3234203d3e203338353234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.38.100.0/24
Signature Algorithm: sha256WithRSAEncryption
02:e0:df:6e:30:03:e6:d8:c4:5e:00:42:55:db:48:6c:17:20:
14:50:52:ce:66:37:2c:9f:be:61:bd:be:d8:61:26:ee:e7:fe:
ad:73:b6:06:8d:44:89:db:8d:a4:53:25:0a:ef:bc:b8:a0:44:
ee:08:87:0c:9a:d6:eb:72:de:ad:5a:c9:2d:b2:00:84:95:07:
36:e5:85:6e:18:e8:4f:10:9b:3d:f8:73:ac:a7:b7:d4:da:ee:
82:4e:85:af:d9:a6:c8:4b:87:ec:b1:01:09:6e:94:92:ef:d8:
41:33:31:53:fa:df:28:dd:89:ea:88:da:62:c3:bb:06:f0:76:
ca:d9:a8:12:11:e8:f0:eb:ba:ed:d3:a2:a8:4c:7f:68:02:a1:
e2:a0:6c:0f:7d:25:a3:0d:e8:6e:68:c1:3b:b8:97:1e:87:6b:
54:ac:b5:d3:ef:58:18:ca:de:33:10:fa:73:a6:cc:54:06:47:
d1:74:f3:ac:a0:51:46:f3:68:3d:02:10:e4:05:32:c7:4c:27:
2d:65:41:10:15:5d:15:b4:18:3a:56:80:7e:bc:86:ad:aa:64:
93:06:3e:17:aa:de:50:a5:95:0d:1b:1f:d0:b4:c6:76:d4:c1:
0a:05:5f:89:97:6d:61:77:17:ae:06:4d:69:58:b5:6d:7e:78:
b0:20:8d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:51 2025 by rpki-client