Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/3130332e3136322e3135322e302f32332d3234203d3e203338373532.roa
File: 3130332e3136322e3135322e302f32332d3234203d3e203338373532.roa (raw, json)
Hash identifier: 73r5XpLlO1W+eIYbM90ZwdPVSVFCouzcbCPE/5tQPPQ=
Subject key identifier: BE:4B:CC:0F:8D:21:64:C3:74:84:22:50:96:AA:C4:CD:0E:0D:95:2E
Certificate issuer: /CN=83906AB18A49EC17ADD841F2072FDC55E0EC22F6
Certificate serial: 5F7BEDB18FC380896724453C13AD710B99BDD8AE
Authority key identifier: 83:90:6A:B1:8A:49:EC:17:AD:D8:41:F2:07:2F:DC:55:E0:EC:22:F6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/3130332e3136322e3135322e302f32332d3234203d3e203338373532.roa
Signing time: Sun 01 Sep 2024 07:02:24 +0000
ROA not before: Sun 01 Sep 2024 06:57:24 +0000
ROA not after: Sun 31 Aug 2025 07:02:24 +0000
asID: 38752
IP address blocks: 103.162.152.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:7b:ed:b1:8f:c3:80:89:67:24:45:3c:13:ad:71:0b:99:bd:d8:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83906AB18A49EC17ADD841F2072FDC55E0EC22F6
Validity
Not Before: Sep 1 06:57:24 2024 GMT
Not After : Aug 31 07:02:24 2025 GMT
Subject: CN=BE4BCC0F8D2164C37484225096AAC4CD0E0D952E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:17:66:2d:96:d3:ab:5d:42:ab:e5:6f:52:51:
f2:72:83:41:25:ad:ce:be:9a:29:0d:ce:59:75:e5:
3f:8a:15:51:3d:ab:e0:4a:31:42:99:cd:a9:c7:ee:
5e:1f:93:ef:fc:19:55:35:7d:5a:0d:12:5a:d3:d8:
c6:65:70:5f:e5:17:6d:cc:b6:2b:09:72:03:52:53:
3a:f7:5a:0f:c4:13:8e:53:b9:02:d0:e2:f3:f6:85:
f3:75:47:d9:af:df:bc:66:3b:d3:2c:ae:a9:89:e7:
03:42:65:60:d0:53:24:09:44:a9:34:f5:78:e2:52:
16:89:66:2b:f7:a0:3e:76:8b:c7:8d:9f:91:c3:d5:
26:32:31:5c:97:05:71:9f:40:56:94:09:00:3b:11:
e7:93:99:89:fd:f9:93:62:89:4e:61:99:c2:d3:8a:
77:7f:f2:6c:8e:56:46:70:f3:a9:41:22:db:e0:dd:
79:43:a0:82:85:be:d5:4a:57:05:6b:9f:87:98:c0:
0a:c6:06:63:7d:e5:16:6b:7f:e1:97:d0:86:c5:cb:
53:b8:45:dd:29:77:54:f2:55:3b:f0:8e:4f:67:f0:
51:61:22:20:0e:1e:00:72:df:18:0b:58:4d:94:02:
0d:e5:75:0d:db:40:39:bb:e6:28:5b:d7:ab:ca:4a:
ec:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:4B:CC:0F:8D:21:64:C3:74:84:22:50:96:AA:C4:CD:0E:0D:95:2E
X509v3 Authority Key Identifier:
keyid:83:90:6A:B1:8A:49:EC:17:AD:D8:41:F2:07:2F:DC:55:E0:EC:22:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83906AB18A49EC17ADD841F2072FDC55E0EC22F6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ab3c03d-2e2e-4897-869b-21ce48601619/0/3130332e3136322e3135322e302f32332d3234203d3e203338373532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.152.0/23
Signature Algorithm: sha256WithRSAEncryption
50:0a:a5:60:bc:8f:0e:24:2f:a3:0b:4d:02:55:d2:11:55:94:
ff:49:f9:4e:72:de:db:d0:a4:06:59:06:5c:25:95:f7:ae:43:
2d:80:91:b2:09:64:91:f8:70:c1:f1:06:bb:73:de:9f:6b:dc:
62:30:42:e3:3b:19:b8:9e:f7:d6:cf:58:49:c8:6a:68:20:60:
70:19:26:05:12:a5:51:37:20:62:ae:90:dc:f5:88:d9:dc:be:
c1:b4:c9:4f:71:c7:d1:0a:eb:37:17:32:44:fa:a1:e3:71:6e:
dc:44:2a:9a:0b:9b:ae:00:df:c0:8a:ad:ab:b8:58:18:51:30:
9b:36:18:20:bb:c4:f1:a1:a9:d9:3b:52:16:2b:5f:84:a0:0c:
cb:d4:2f:ed:48:79:b7:6b:1e:90:a6:6c:80:14:e8:ea:63:2e:
0d:57:0a:3a:50:69:a9:5d:2b:7e:d2:29:67:4f:b2:59:ab:86:
5f:b6:52:16:f7:f0:79:68:80:fc:76:30:20:31:3b:fe:a5:39:
ce:a1:15:d0:26:94:2c:fd:09:61:64:ca:cd:37:90:1a:c9:ac:
d1:3e:d3:84:9d:52:5d:55:1f:35:1f:b0:e6:62:78:fd:97:06:
70:bb:a3:64:2d:92:70:46:06:a2:4a:f6:20:c1:59:74:3d:35:
06:b7:a2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:53:02 2025 by rpki-client