Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138382e302f32342d3234203d3e203535363835.roa
File: 3130332e32302e3138382e302f32342d3234203d3e203535363835.roa (raw, json)
Hash identifier: nHqm8yyPxBWFnTDMPE5qYpJPxvv0T73kbb2TqPheBX0=
Subject key identifier: C0:06:36:94:87:C2:12:39:AA:99:26:7F:A7:93:A7:5A:69:85:AE:D8
Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D
Certificate serial: 495EF35A03A4B43CE4BD10F29858AB893A734559
Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138382e302f32342d3234203d3e203535363835.roa
Signing time: Mon 01 Jul 2024 01:05:48 +0000
ROA not before: Mon 01 Jul 2024 01:00:48 +0000
ROA not after: Mon 30 Jun 2025 01:05:48 +0000
asID: 55685
IP address blocks: 103.20.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:5e:f3:5a:03:a4:b4:3c:e4:bd:10:f2:98:58:ab:89:3a:73:45:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D
Validity
Not Before: Jul 1 01:00:48 2024 GMT
Not After : Jun 30 01:05:48 2025 GMT
Subject: CN=C006369487C21239AA99267FA793A75A6985AED8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:92:6c:5e:09:67:00:68:6b:1a:f4:c9:3e:1f:
26:22:34:5e:b2:f6:3f:2f:6e:64:3d:e2:b4:af:fc:
47:39:a0:20:39:43:91:9f:f4:cf:79:b8:f7:33:19:
9e:1d:22:31:f0:67:69:7e:2b:c1:14:9b:78:f9:bf:
e6:9a:0b:8d:04:c5:c2:7b:3b:51:05:8d:a4:b9:db:
2b:6d:c9:0d:fa:60:1f:a2:a6:a0:8e:09:4f:e6:01:
48:0e:d5:a3:b0:0f:58:02:8f:6a:34:90:5d:1d:58:
45:44:2e:90:f3:2b:fc:30:db:8f:84:17:cb:48:53:
51:1b:58:16:a1:bd:7c:51:25:c6:c9:8f:44:3a:d7:
20:60:c3:99:cb:62:b3:52:c6:5b:c5:d4:b1:62:5d:
24:4b:48:84:ad:91:4f:48:87:f2:ba:38:23:26:a6:
2e:79:b9:49:1b:24:e3:99:e4:a4:dc:b8:58:a2:0f:
8d:83:a6:a1:68:25:ad:b5:03:2e:5d:bc:32:2f:d5:
f7:7a:c7:2a:4f:9a:9c:59:63:e7:ca:aa:31:02:7c:
74:22:e1:17:0c:f8:7d:7d:ff:6d:da:f7:ee:ea:d2:
6d:f4:a1:a8:80:81:a0:74:a6:a7:2b:a6:98:70:9a:
fb:4b:1d:71:ab:58:bb:13:33:c4:c4:97:3d:5b:95:
52:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:06:36:94:87:C2:12:39:AA:99:26:7F:A7:93:A7:5A:69:85:AE:D8
X509v3 Authority Key Identifier:
keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138382e302f32342d3234203d3e203535363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.20.188.0/24
Signature Algorithm: sha256WithRSAEncryption
93:00:5a:a2:30:2c:a7:53:e2:fe:3b:6a:d7:19:4c:12:1d:cc:
13:b7:de:d8:1c:de:a8:b0:8a:84:8d:89:0b:e6:8a:d8:40:50:
dd:1a:7c:fb:19:71:f3:4f:64:c7:84:7f:7c:81:b8:49:bd:9b:
67:a3:33:05:10:fa:6b:35:2f:2a:ac:46:c6:8c:92:48:a9:44:
5d:48:b1:71:f0:90:8c:c5:c1:c6:3d:f1:22:7d:4d:07:5c:fe:
ef:bf:85:aa:78:ac:de:56:fb:75:7a:be:ad:ec:c2:ed:6d:ee:
03:ab:70:27:b8:83:07:d6:e9:ba:8d:d8:63:e1:9b:2e:81:19:
74:44:eb:b9:45:68:a8:7b:33:84:4a:88:c5:05:20:d4:63:d9:
99:e4:f1:02:34:8a:9b:20:a9:b4:08:22:be:ec:c6:6e:71:82:
7a:18:88:49:df:41:e0:fe:a8:7b:f0:86:f1:38:0f:63:51:e0:
b3:18:04:fe:41:fa:97:3a:cc:2f:96:09:04:2d:27:94:ac:46:
37:3b:c9:8a:01:87:5b:ca:63:34:5e:1b:c3:ab:31:be:f9:b1:
8d:08:96:ce:24:0a:6e:4c:e3:13:fc:db:83:19:f8:24:0b:95:
39:bd:6b:50:8d:83:79:b4:ac:4e:1d:ab:b3:b4:77:84:b0:7c:
07:09:c1:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:06 2025 by rpki-client