Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130312e302f32342d3234203d3e203338353234.roa
File: 3130332e33382e3130312e302f32342d3234203d3e203338353234.roa (raw, json)
Hash identifier: Y4MeJ9PaSkvsjXAqgDR8vQ3tnNQkR8xgfz9mOf/Y6Gs=
Subject key identifier: F3:51:5F:0C:0A:17:7A:56:7B:3D:2B:69:1D:AD:E6:C5:31:5E:E8:89
Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Certificate serial: 70763C3FDE21E39E1D063C5625C4EC2D1040D456
Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130312e302f32342d3234203d3e203338353234.roa
Signing time: Mon 01 Jul 2024 01:03:43 +0000
ROA not before: Mon 01 Jul 2024 00:58:43 +0000
ROA not after: Mon 30 Jun 2025 01:03:43 +0000
asID: 38524
IP address blocks: 103.38.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:76:3c:3f:de:21:e3:9e:1d:06:3c:56:25:c4:ec:2d:10:40:d4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A
Validity
Not Before: Jul 1 00:58:43 2024 GMT
Not After : Jun 30 01:03:43 2025 GMT
Subject: CN=F3515F0C0A177A567B3D2B691DADE6C5315EE889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:28:59:24:b5:bd:48:94:3e:ea:f2:ec:57:b1:
bc:7a:c7:1d:b6:5b:61:0f:8e:d4:16:33:eb:b4:3e:
94:37:1d:56:89:63:61:3c:a4:98:6c:5f:c0:6f:7d:
39:7b:55:0b:47:85:79:9e:f6:af:a6:d3:58:65:bb:
d2:27:16:4f:17:4d:2a:10:b3:08:d2:58:76:ea:74:
e4:64:59:f8:5c:8a:95:bf:7d:ff:c0:eb:bf:e0:e3:
1b:46:5d:3c:97:db:dc:27:b3:fc:55:a3:90:d3:57:
37:e5:c7:50:f1:6c:27:7e:0c:21:07:49:77:cf:01:
e8:aa:13:af:21:db:09:d3:e5:27:35:d9:57:52:a7:
dc:ed:f4:52:74:fb:e3:2a:df:5a:96:d7:68:05:c3:
7a:3d:ed:b6:ca:38:f2:cf:04:24:50:30:61:11:08:
e1:2c:80:ad:84:18:40:5c:45:a7:d1:3d:3f:83:a7:
c7:cd:5b:68:56:c6:01:d2:9e:a8:55:6c:ea:4f:14:
a0:2a:91:c5:25:38:4c:0e:a2:46:4f:88:14:e1:f1:
e7:70:fb:a0:bb:8c:ff:5e:2e:be:5f:b5:47:96:5b:
61:64:c1:e8:cf:1a:07:d7:7a:b2:8c:4c:d1:53:02:
26:cf:e1:3c:7d:1f:6e:91:0b:7a:b9:8b:fc:eb:59:
f3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:51:5F:0C:0A:17:7A:56:7B:3D:2B:69:1D:AD:E6:C5:31:5E:E8:89
X509v3 Authority Key Identifier:
keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3130332e33382e3130312e302f32342d3234203d3e203338353234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.38.101.0/24
Signature Algorithm: sha256WithRSAEncryption
52:38:6f:e6:28:38:e6:59:43:2b:7d:1f:38:76:ea:df:ac:82:
bf:13:73:da:f3:0c:dd:8b:8e:41:30:f2:7f:a2:c4:b0:c6:e1:
12:2c:94:7d:4f:19:b7:aa:60:2b:f4:c1:8c:10:7c:4d:c1:93:
4f:18:0f:37:88:75:22:52:e0:9a:d3:a3:ce:f5:a8:e9:95:29:
f7:f2:a1:d9:c0:d6:5f:35:a5:f2:6b:1f:a6:19:2d:16:14:a3:
83:3c:a3:ad:9d:2b:1a:b5:74:f3:52:4c:9c:5e:e1:94:23:b0:
cd:04:4e:af:93:26:aa:55:35:38:59:c8:41:3c:72:28:6c:d9:
18:a7:f5:1d:8b:78:af:16:58:95:0f:bd:a3:48:19:6a:2a:66:
f4:32:5a:92:4d:5e:b7:d9:d5:c0:a1:97:8b:a9:bb:ac:af:90:
49:e0:10:9a:eb:9d:31:f5:a6:f3:71:0a:6e:c3:46:7b:40:50:
78:8b:af:8c:96:c4:40:ac:48:77:bf:44:33:52:40:a0:1f:af:
ec:b6:30:be:f2:59:5f:6c:4b:82:bc:61:f6:38:6c:67:c6:3e:
ee:4d:9f:8f:ff:dc:44:f0:d9:e0:7c:97:24:70:e3:7d:1e:41:
3f:f8:f0:a2:83:4e:b4:bc:d1:db:e3:b4:d7:31:16:02:e6:28:
58:54:09:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:47 2025 by rpki-client