Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/3130332e3132352e3130372e302f32342d3234203d3e20313338313030.roa
File: 3130332e3132352e3130372e302f32342d3234203d3e20313338313030.roa (raw, json)
Hash identifier: MkgkcUTt75Tcg7n8ARaruMXQqr6F1GnzEQsHyvrSVoo=
Subject key identifier: 2F:07:A7:29:FA:61:71:12:51:76:9A:54:FB:9A:8B:96:B8:46:1E:50
Certificate issuer: /CN=06C079105A8A7FB53C97370CDE636B0A22588747
Certificate serial: 46BC507FDF4BFA922DE9CBB62DD2CB5EA0CDAB7F
Authority key identifier: 06:C0:79:10:5A:8A:7F:B5:3C:97:37:0C:DE:63:6B:0A:22:58:87:47
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/06C079105A8A7FB53C97370CDE636B0A22588747.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/3130332e3132352e3130372e302f32342d3234203d3e20313338313030.roa
Signing time: Mon 01 Jul 2024 01:03:55 +0000
ROA not before: Mon 01 Jul 2024 00:58:55 +0000
ROA not after: Mon 30 Jun 2025 01:03:55 +0000
asID: 138100
IP address blocks: 103.125.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:bc:50:7f:df:4b:fa:92:2d:e9:cb:b6:2d:d2:cb:5e:a0:cd:ab:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06C079105A8A7FB53C97370CDE636B0A22588747
Validity
Not Before: Jul 1 00:58:55 2024 GMT
Not After : Jun 30 01:03:55 2025 GMT
Subject: CN=2F07A729FA61711251769A54FB9A8B96B8461E50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:84:05:85:66:49:7d:4c:db:0e:d8:ce:4d:46:
99:ac:dc:1b:87:e3:ef:b4:72:b5:f5:ec:3b:3a:99:
b6:7b:17:95:c7:17:f7:6e:bc:5f:d4:10:ed:df:fd:
f9:9b:28:7a:1c:0b:80:ff:32:1e:04:2e:5d:2e:20:
0c:2d:05:17:dd:d8:0f:ec:59:de:94:c8:89:ef:c7:
fd:30:d0:e7:48:15:e2:f5:45:47:4f:2c:7e:42:70:
83:7f:bc:98:49:b7:26:c8:7b:05:bf:fe:6f:ba:3d:
3c:af:d0:e0:ae:5b:25:f9:f2:d2:98:58:f0:30:34:
65:d0:0d:e6:0b:34:c0:71:f1:41:c2:3b:19:82:96:
23:fd:6a:f6:8c:2f:8e:a3:5b:f9:05:2d:dd:43:35:
21:9f:bf:2a:1d:4c:8b:30:4a:67:fc:e9:ef:3f:14:
96:02:7c:7d:47:bf:80:e4:87:3f:bc:d0:55:04:69:
4b:28:54:e7:dc:d2:ab:bd:6b:20:29:f0:c4:75:e6:
0e:ad:ae:e8:49:83:f3:71:a6:74:b3:5c:30:f9:03:
5c:e3:e9:76:d2:2a:22:b2:7c:de:ab:87:d5:d0:62:
92:a1:34:d0:a3:8a:83:af:fe:e6:99:3e:d0:01:ba:
af:10:c4:c0:46:78:92:01:5e:c2:ec:b6:fe:a4:c6:
9c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:07:A7:29:FA:61:71:12:51:76:9A:54:FB:9A:8B:96:B8:46:1E:50
X509v3 Authority Key Identifier:
keyid:06:C0:79:10:5A:8A:7F:B5:3C:97:37:0C:DE:63:6B:0A:22:58:87:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/06C079105A8A7FB53C97370CDE636B0A22588747.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/06C079105A8A7FB53C97370CDE636B0A22588747.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88cac161-f880-4206-8d2c-daa604fe0902/0/3130332e3132352e3130372e302f32342d3234203d3e20313338313030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.125.107.0/24
Signature Algorithm: sha256WithRSAEncryption
09:14:b6:63:1a:d8:cd:4f:29:60:a5:08:5f:7d:82:0a:b5:34:
83:55:ae:dc:4a:0a:7e:8c:ec:1f:2c:8a:17:fc:e9:13:9d:04:
80:5a:81:7a:03:83:d2:33:51:83:d2:45:0f:2e:1b:b8:60:5e:
a1:36:94:09:73:30:32:97:a3:ea:1e:43:a4:59:00:bd:73:ec:
db:46:c1:5e:ea:f9:f5:19:9b:94:aa:4a:5b:b4:df:f3:01:71:
1e:6b:ea:d6:8d:35:64:a1:66:7a:a8:35:f7:ca:f0:b3:c8:e9:
1a:cd:fe:34:75:af:43:c0:75:2d:60:6c:fb:3d:fc:4a:56:db:
bb:49:45:5f:ac:0a:42:25:46:40:6b:5b:a9:0d:ae:d2:ae:54:
b6:17:6b:4b:5c:ea:52:c2:54:45:0e:2f:4b:ac:9d:ca:d5:f8:
01:91:21:7a:18:ce:66:53:72:3d:d3:28:75:41:46:d7:5f:bd:
0c:5b:50:e2:a3:ce:88:fb:a7:14:ce:0e:b5:48:ff:ca:74:79:
0a:8d:e2:ef:d5:f4:1d:a2:67:54:cc:34:06:1d:65:c2:c9:62:
65:43:4d:ef:51:cf:d8:cb:31:4c:e1:bf:75:11:7d:a8:12:83:
ac:dc:c9:8f:d2:70:4a:cf:9f:dc:fd:70:f3:d9:db:59:2d:d5:
a4:e6:26:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:04:03 2025 by rpki-client