Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32342d3234203d3e20313531353432.roa
File: 3130332e3234342e3130362e302f32342d3234203d3e20313531353432.roa (raw, json)
Hash identifier: cbrl6dBckxe27KqOtUNV9s29bXGi1zCIe4QmB1+JlkA=
Subject key identifier: BE:B8:32:AF:F3:DB:8E:C1:42:E1:8D:0B:D2:C3:01:67:42:02:07:17
Certificate issuer: /CN=32F0F1CEAB608E66E561433AF6CD9BE12F5602E5
Certificate serial: 3364DA447C06EAE7BC2DFA0A76E794BE6F4C5FC9
Authority key identifier: 32:F0:F1:CE:AB:60:8E:66:E5:61:43:3A:F6:CD:9B:E1:2F:56:02:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32342d3234203d3e20313531353432.roa
Signing time: Tue 22 Oct 2024 03:00:00 +0000
ROA not before: Tue 22 Oct 2024 02:55:00 +0000
ROA not after: Tue 21 Oct 2025 03:00:00 +0000
asID: 151542
IP address blocks: 103.244.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:64:da:44:7c:06:ea:e7:bc:2d:fa:0a:76:e7:94:be:6f:4c:5f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32F0F1CEAB608E66E561433AF6CD9BE12F5602E5
Validity
Not Before: Oct 22 02:55:00 2024 GMT
Not After : Oct 21 03:00:00 2025 GMT
Subject: CN=BEB832AFF3DB8EC142E18D0BD2C3016742020717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6b:91:52:33:4d:27:25:da:77:d1:19:cc:cc:
cf:a4:af:41:ae:fb:6b:62:5b:83:1e:83:a8:50:02:
27:fd:8a:34:7f:fc:e9:89:a0:7a:d4:ee:6b:2b:2f:
11:75:10:6e:40:9f:da:bc:ed:ac:5a:31:ad:8b:0d:
ac:c5:3d:51:a7:df:ea:ac:22:11:5e:71:88:25:68:
b3:ab:23:e3:a6:7a:a4:7d:7d:ae:9f:b1:7c:d5:00:
21:83:4b:76:09:1a:77:32:b6:43:6b:b3:29:19:aa:
95:93:db:8f:40:fc:e0:9e:71:fa:82:76:30:b4:53:
c1:30:06:a2:91:c5:f9:1c:c1:01:51:fe:90:5a:db:
35:54:9b:da:a8:5e:0d:d3:e0:a3:d9:88:f6:d1:32:
24:70:6e:25:45:cf:ff:28:d0:0e:ee:f6:cf:87:91:
86:55:ac:e0:37:92:22:cf:f6:3a:d6:9d:4c:0a:cd:
f9:44:b4:4c:95:d9:70:bf:66:4a:a2:34:27:a1:95:
f8:59:98:c8:60:51:45:86:55:f2:bd:db:14:9b:ae:
22:96:6f:03:1d:00:db:f4:5a:a6:76:4b:b6:81:77:
8a:b6:1d:aa:43:ec:b2:5c:d5:66:2c:f7:91:d9:0b:
83:d7:fe:bb:29:08:25:b4:83:1c:96:1c:19:f4:d4:
79:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B8:32:AF:F3:DB:8E:C1:42:E1:8D:0B:D2:C3:01:67:42:02:07:17
X509v3 Authority Key Identifier:
keyid:32:F0:F1:CE:AB:60:8E:66:E5:61:43:3A:F6:CD:9B:E1:2F:56:02:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/32F0F1CEAB608E66E561433AF6CD9BE12F5602E5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80db0dec-f49a-4e7c-856b-b1f0540b1e25/0/3130332e3234342e3130362e302f32342d3234203d3e20313531353432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.244.106.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:3e:7d:f3:5f:89:ee:a5:62:fb:b6:d1:27:d0:7b:a7:4c:8f:
0c:34:1c:35:0e:98:47:12:74:42:db:00:30:dc:72:98:c9:4f:
28:b7:fa:49:37:65:7d:20:80:86:bc:74:6a:cf:d2:00:4a:49:
96:2f:b7:1e:8e:61:7d:12:9d:50:df:c9:33:ac:99:09:75:a3:
d7:b8:47:b1:46:31:13:26:ee:f2:08:de:34:cf:4f:4c:c4:c8:
e3:8b:04:29:d9:d1:1c:e4:e4:24:ca:a3:64:eb:d2:6a:2b:16:
da:72:83:24:5d:98:a2:25:33:15:47:6a:e5:56:fa:79:a5:ad:
6f:9c:3f:4c:75:db:0d:a4:57:62:42:b4:ae:b6:2a:53:87:bc:
84:47:13:02:c4:28:38:7a:ac:fa:75:3d:e5:15:f0:49:fa:d4:
48:43:43:27:bf:80:d6:2e:0c:46:fc:80:0e:8d:6b:48:db:5b:
fa:4e:70:5a:d4:b9:e1:26:9f:61:1c:af:2e:ed:34:fc:c0:44:
5b:b2:65:58:d8:de:07:0d:fe:50:5c:17:61:be:37:23:cc:97:
6d:23:77:71:1b:5e:13:6b:86:18:d9:dc:1a:0d:d1:4e:cb:d5:
c9:3f:d9:5f:dc:4b:0f:8a:b2:b7:fd:6a:b2:b8:b3:01:a7:66:
82:80:02:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:55:02 2025 by rpki-client