Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa
File: 3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa (raw, json)
Hash identifier: eh9L4Tsi0TWOJ96L0aONhD0NCfoHgdr4v7RDNkWy5XM=
Subject key identifier: 41:03:21:CE:FE:26:D1:DE:23:88:38:66:A9:57:7F:EA:22:44:F1:54
Certificate issuer: /CN=8CFA88063D5C0A51C1D737A5170338865A245358
Certificate serial: 24F5F027B02C137001DBB93038C5284BF091E60E
Authority key identifier: 8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa
Signing time: Mon 01 Jul 2024 01:02:47 +0000
ROA not before: Mon 01 Jul 2024 00:57:47 +0000
ROA not after: Mon 30 Jun 2025 01:02:47 +0000
asID: 138113
IP address blocks: 103.126.200.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:f5:f0:27:b0:2c:13:70:01:db:b9:30:38:c5:28:4b:f0:91:e6:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8CFA88063D5C0A51C1D737A5170338865A245358
Validity
Not Before: Jul 1 00:57:47 2024 GMT
Not After : Jun 30 01:02:47 2025 GMT
Subject: CN=410321CEFE26D1DE23883866A9577FEA2244F154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e5:51:2b:8e:f0:1d:06:ae:9e:5d:6d:c2:a0:
de:38:af:23:04:99:5d:e5:cf:fe:58:cd:c1:48:ed:
10:1e:12:31:1b:37:97:5a:4d:0a:02:bb:b4:cc:a8:
ef:c5:66:50:32:bc:d3:92:d9:01:27:70:22:54:a0:
44:6d:67:39:87:21:1c:a9:8f:43:56:e5:35:fb:cb:
12:96:18:bc:29:f5:03:de:43:4e:59:e7:a4:85:db:
85:1f:f7:1d:f7:55:ba:9d:fa:0c:c9:e9:f3:af:6c:
9b:21:a7:e8:25:15:fc:30:70:e1:c1:08:f6:37:3a:
ac:ec:70:ad:b5:8a:b6:49:17:e2:fc:ca:6e:80:76:
6e:4f:9a:ba:47:48:ef:e7:e7:92:c1:d3:0d:da:34:
03:f7:6d:97:26:13:e5:27:13:16:b9:9f:f3:99:de:
01:74:6e:8a:b7:67:31:6d:60:91:9a:0d:2e:1c:e8:
b7:7b:f2:9a:3c:f4:46:f1:8b:b4:52:59:8c:ca:eb:
84:48:4a:b8:e0:5b:a2:af:b1:61:6f:75:ee:20:c7:
7e:a5:1f:ff:3d:e8:2f:43:f1:87:29:49:ce:27:47:
d1:5a:a2:fd:4d:5a:6e:ad:9b:77:ce:3b:b2:13:18:
c9:d4:43:8a:85:82:9f:b2:0b:26:8f:98:bc:97:dc:
bd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:03:21:CE:FE:26:D1:DE:23:88:38:66:A9:57:7F:EA:22:44:F1:54
X509v3 Authority Key Identifier:
keyid:8C:FA:88:06:3D:5C:0A:51:C1:D7:37:A5:17:03:38:86:5A:24:53:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/8CFA88063D5C0A51C1D737A5170338865A245358.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CFA88063D5C0A51C1D737A5170338865A245358.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8a2e5b69-adbd-4e2d-847d-374815581d86/0/3130332e3132362e3230302e302f32322d3232203d3e20313338313133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.126.200.0/22
Signature Algorithm: sha256WithRSAEncryption
96:cc:e3:c0:ff:7b:42:4f:21:8e:e7:58:43:2d:a3:be:b1:3c:
fd:ea:46:70:25:46:f7:60:c6:2c:e0:9f:9e:d6:09:25:1b:8b:
15:c8:50:bb:eb:dc:35:c5:75:82:df:9a:c9:26:87:d7:e3:5a:
83:84:cc:c4:a8:26:e0:da:ed:e2:a1:81:b6:51:7f:e9:57:67:
aa:b3:16:6f:cd:72:e2:f5:35:9e:8b:ee:2f:e1:17:fe:3c:20:
91:9f:9b:69:94:12:dc:d6:cf:aa:2c:99:00:36:0c:8a:b0:eb:
88:d1:98:d8:00:1f:db:84:3b:11:aa:d0:f7:85:32:ba:3a:9e:
51:14:80:a0:56:9d:af:c7:86:50:f1:a5:73:2b:53:0a:c8:10:
0d:4f:91:52:c0:b7:23:c9:fb:a1:fc:6a:cf:5b:e7:47:c0:ff:
77:9b:5a:f3:7e:fb:b6:69:0b:20:8f:20:33:39:1a:20:ff:35:
92:30:dc:a0:f2:fb:51:8b:9c:d0:e6:eb:9f:ac:e5:12:e5:0d:
11:cd:d2:47:b1:97:41:93:91:d3:21:8e:05:b0:42:87:5d:5f:
44:f2:db:6c:a8:f1:bd:c7:81:c7:54:13:4f:51:9f:2a:96:74:
b0:0c:f8:70:c5:d5:a6:99:75:e6:a4:4c:9c:f4:54:db:3c:cb:
85:af:d8:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:39 2025 by rpki-client