Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130332e302f32342d3234203d3e203634303237.roa
File: 3130332e3231342e3130332e302f32342d3234203d3e203634303237.roa (raw, json)
Hash identifier: Ekl0FrcYaGWxYw7IgCiFXv5CngMgEcsPhMAedshOar0=
Subject key identifier: E6:74:27:5A:2E:7D:A9:8D:9D:53:E0:38:C6:C8:CB:A4:32:BA:9E:AC
Certificate issuer: /CN=132BBDF9D9F26F001CC0F0EF9590333D38D04410
Certificate serial: 59F41199ABA1A96572C77BD1EB3560E4651B1E4B
Authority key identifier: 13:2B:BD:F9:D9:F2:6F:00:1C:C0:F0:EF:95:90:33:3D:38:D0:44:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/132BBDF9D9F26F001CC0F0EF9590333D38D04410.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130332e302f32342d3234203d3e203634303237.roa
Signing time: Mon 15 Jul 2024 22:00:01 +0000
ROA not before: Mon 15 Jul 2024 21:55:01 +0000
ROA not after: Mon 14 Jul 2025 22:00:01 +0000
asID: 64027
IP address blocks: 103.214.103.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:f4:11:99:ab:a1:a9:65:72:c7:7b:d1:eb:35:60:e4:65:1b:1e:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=132BBDF9D9F26F001CC0F0EF9590333D38D04410
Validity
Not Before: Jul 15 21:55:01 2024 GMT
Not After : Jul 14 22:00:01 2025 GMT
Subject: CN=E674275A2E7DA98D9D53E038C6C8CBA432BA9EAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:90:d2:d8:f3:59:75:ba:b0:52:f7:7d:ad:bc:
92:16:27:2f:30:e5:4c:de:e7:0f:2b:4a:b7:34:f8:
86:c7:d3:0d:c0:18:cb:56:6c:0f:87:2f:02:e6:87:
72:04:1d:be:e9:97:5a:43:2e:14:90:27:f4:6d:01:
9c:8c:40:2a:ee:47:06:bb:0b:3a:27:d2:79:d5:2f:
21:63:33:1f:34:68:1e:77:e5:8e:97:a6:6b:2a:b0:
85:69:47:fa:22:ed:b7:81:d5:3d:ec:8c:d1:5d:7e:
e2:ba:07:0f:8b:72:48:58:b0:f8:73:ca:80:ed:b9:
53:56:f4:0f:4a:2f:b9:28:37:73:3f:2f:4b:62:98:
72:20:df:63:fd:1e:e3:09:69:32:9e:c7:56:e8:55:
04:e3:1c:3e:0c:4b:06:37:18:1c:fd:cd:e3:6b:5d:
2c:9f:5e:30:05:df:59:f7:d6:61:c2:3e:3f:e4:ef:
a8:8f:cc:e4:34:67:ee:d2:04:54:50:f5:f3:7d:26:
eb:ce:57:37:69:50:a9:77:79:ef:4a:05:e8:50:fb:
38:97:b0:fc:a4:45:17:d3:31:d2:d1:be:c2:b4:17:
5f:ac:d2:ef:b4:70:0d:cd:7a:6c:36:ce:5a:41:2c:
b1:86:7d:4b:2e:3c:ad:7c:2d:0c:41:77:8e:97:aa:
df:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:74:27:5A:2E:7D:A9:8D:9D:53:E0:38:C6:C8:CB:A4:32:BA:9E:AC
X509v3 Authority Key Identifier:
keyid:13:2B:BD:F9:D9:F2:6F:00:1C:C0:F0:EF:95:90:33:3D:38:D0:44:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/132BBDF9D9F26F001CC0F0EF9590333D38D04410.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/132BBDF9D9F26F001CC0F0EF9590333D38D04410.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85e51875-5087-4264-a8bd-4156f55baaab/0/3130332e3231342e3130332e302f32342d3234203d3e203634303237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.103.0/24
Signature Algorithm: sha256WithRSAEncryption
70:05:b9:9a:c3:58:6b:6e:4a:9e:92:4f:50:63:59:1b:dc:ce:
91:07:20:ba:b8:bb:0b:ca:f9:0b:38:51:39:b6:5c:3b:33:ce:
80:6c:72:11:6f:06:36:6d:72:09:97:10:5d:cb:99:76:a8:30:
59:d6:ee:c1:d2:6a:53:40:6c:4d:6f:1c:7d:24:02:5b:be:e6:
c6:42:b7:a2:b1:bf:6a:ff:d5:74:9b:21:e4:8f:2a:65:d9:f6:
fa:d8:91:b9:e3:55:d5:04:57:c4:fb:10:b9:a9:c7:a2:27:e5:
b2:d0:1f:aa:e0:dc:61:ec:14:52:01:d1:f5:4a:11:4c:10:3f:
fd:71:cb:5f:91:8e:24:dc:c8:72:23:2c:9e:1f:50:15:b6:27:
06:50:3a:37:80:4b:90:fe:a4:92:95:20:11:b7:df:59:e4:12:
0e:b1:9d:5c:65:12:6a:13:49:aa:26:f4:de:a8:a7:89:64:5f:
08:17:8a:bd:80:ef:28:07:08:b6:e7:87:0d:ef:fc:ef:b1:63:
aa:7f:b4:37:c6:2d:7f:42:e5:02:36:de:fe:07:ee:02:c4:27:
11:5e:63:77:1c:c4:a1:87:fc:d8:41:45:63:de:89:21:d5:55:
91:5e:9a:06:82:d0:09:29:8c:7f:bd:42:eb:e0:13:e5:ac:89:
26:2b:c7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:08:02 2025 by rpki-client