Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa
File: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (raw, json)
Hash identifier: P56l00js9rnf8V8KM5dQv3ykfj4qv8CRRUVkqILqmlU=
Subject key identifier: EC:29:1A:DD:D5:C6:C7:62:39:BC:4A:D1:EF:8C:24:2A:F2:14:09:0F
Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17
Certificate serial: 680A86D1AE5FEA97EE4EF0DA7F447C13D686FB37
Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa
Signing time: Mon 01 Jul 2024 18:00:00 +0000
ROA not before: Mon 01 Jul 2024 17:55:00 +0000
ROA not after: Mon 30 Jun 2025 18:00:00 +0000
asID: 142341
IP address blocks: 103.169.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:0a:86:d1:ae:5f:ea:97:ee:4e:f0:da:7f:44:7c:13:d6:86:fb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17
Validity
Not Before: Jul 1 17:55:00 2024 GMT
Not After : Jun 30 18:00:00 2025 GMT
Subject: CN=EC291ADDD5C6C76239BC4AD1EF8C242AF214090F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7f:7d:6c:42:5c:e8:24:39:64:42:f6:3b:4f:
3d:a6:af:4d:ce:08:0d:c4:a8:33:24:87:fd:56:60:
ce:75:bd:87:a8:49:da:9b:98:fc:46:be:e0:f8:e9:
20:6f:8a:8f:5f:08:bb:d6:cf:33:a0:b6:06:3e:05:
62:fe:fb:b1:ad:92:64:42:21:86:33:3b:ca:d1:df:
3d:20:00:5f:96:e9:c9:d9:d6:b6:f8:cd:de:5f:85:
5a:40:11:02:d3:55:3f:37:8c:1b:76:2e:61:e2:3d:
69:a8:6b:4f:1c:b8:a1:c0:0e:46:92:02:66:18:0c:
e9:0b:5a:dd:e8:42:86:3e:a1:19:0e:fe:f4:84:69:
09:52:2e:85:24:70:f6:f6:33:4a:10:e4:3f:b3:e0:
9f:4d:e2:81:23:b9:e2:8a:c9:35:f6:fd:e4:2f:4c:
d7:c2:a1:ca:8f:d2:b1:30:09:08:57:55:df:81:c5:
4f:dd:c6:0d:8a:0b:60:ff:b0:8e:54:a2:88:0b:60:
83:63:f4:57:49:ff:50:5f:03:76:83:41:b6:c1:46:
d9:42:51:8a:76:f3:e6:fa:e0:be:4a:68:d5:31:4d:
db:d9:7b:12:13:12:05:3c:0c:37:56:c4:47:d8:1b:
a3:79:b3:67:c8:4b:a0:62:67:12:01:fd:c7:bf:21:
11:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:29:1A:DD:D5:C6:C7:62:39:BC:4A:D1:EF:8C:24:2A:F2:14:09:0F
X509v3 Authority Key Identifier:
keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.132.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:74:ef:08:49:9f:8c:ad:e9:65:83:c1:30:56:65:72:ba:19:
5e:44:9f:0e:9a:fa:77:cd:95:3a:19:7c:43:f7:1d:92:98:45:
ad:12:12:d7:35:ae:3f:19:85:c8:d6:22:49:1d:f8:fc:c3:7b:
87:2c:af:2e:65:c8:9e:93:a4:23:22:d7:1b:f9:be:5c:53:f9:
4f:1c:10:25:5a:63:2a:05:a1:18:45:2b:f5:67:62:fe:cf:f3:
2a:44:70:1e:95:08:ff:86:be:00:38:b8:7a:5d:e2:8b:4d:5e:
fc:f5:1a:0f:5d:fd:f3:7f:42:fd:fc:d5:bf:6e:e6:3a:08:2d:
d6:2f:e8:eb:9f:38:22:3d:d0:01:0e:4f:c9:eb:0a:78:3c:68:
20:a8:2f:28:d8:83:96:84:8d:f4:ef:34:26:98:8b:c4:2c:c4:
a1:0b:c6:91:75:44:13:0f:4e:a2:68:e1:84:43:e3:35:53:cb:
75:50:7b:45:aa:0f:b6:4c:0f:c7:aa:ca:cd:09:15:e9:6c:80:
21:00:43:e5:da:b4:bc:cf:31:a8:4c:5b:1b:40:b5:08:45:24:
dc:cd:56:83:fd:66:80:c4:03:0f:97:c5:44:29:b4:8e:b9:a5:
17:6e:b5:a3:5e:f2:9e:42:9f:a0:ca:23:4b:ea:09:4a:55:b0:
92:52:97:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:58:03 2025 by rpki-client