Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32332d3233203d3e203233363934.roa
File: 3130332e36362e34362e302f32332d3233203d3e203233363934.roa (raw, json)
Hash identifier: DHeMqVwrApzxWg7Auqbk1A2iZy33N/HgDZkHf2KtsyA=
Subject key identifier: C3:E5:27:35:8C:86:21:C9:0B:29:05:1C:F2:22:65:C4:D4:FF:17:5A
Certificate issuer: /CN=3E0D060F214DF8E6493243033EBD30ABD627ED36
Certificate serial: 1C5B207540E3480DA821205BC48234AFB1DCAA23
Authority key identifier: 3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32332d3233203d3e203233363934.roa
Signing time: Thu 06 Jun 2024 11:00:02 +0000
ROA not before: Thu 06 Jun 2024 10:55:02 +0000
ROA not after: Thu 05 Jun 2025 11:00:02 +0000
asID: 23694
IP address blocks: 103.66.46.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:5b:20:75:40:e3:48:0d:a8:21:20:5b:c4:82:34:af:b1:dc:aa:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E0D060F214DF8E6493243033EBD30ABD627ED36
Validity
Not Before: Jun 6 10:55:02 2024 GMT
Not After : Jun 5 11:00:02 2025 GMT
Subject: CN=C3E527358C8621C90B29051CF22265C4D4FF175A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d4:f3:92:48:1f:02:13:f2:4b:59:e8:ef:6c:
91:76:1b:67:ca:f1:8e:57:05:ee:e6:23:3a:3f:2c:
96:49:e3:fd:c2:9d:47:21:5b:94:47:ef:6e:ac:eb:
77:f9:22:96:57:be:a7:ec:20:18:ee:2f:8e:b7:6f:
a2:64:26:c2:03:23:64:a4:a7:19:00:1d:ab:21:7a:
3c:3c:31:7e:5f:5a:08:db:28:71:52:34:68:ee:7f:
35:c1:36:ca:66:3d:ea:cc:d7:4e:97:2d:bf:40:de:
1d:37:ff:7a:cb:11:47:79:0f:e1:96:15:2c:79:b9:
7a:8c:ee:59:44:07:6a:14:32:e7:9d:c2:65:a3:27:
3b:32:a2:3c:a3:3c:7b:a3:12:63:a9:26:fc:d2:12:
b5:e8:eb:f8:ab:23:32:e3:41:c8:4b:6d:59:12:70:
88:3d:50:35:90:2d:9b:9e:aa:63:37:42:c9:2e:e4:
a4:b9:73:ee:b4:ec:9b:4a:67:a2:23:75:68:e8:fe:
d0:3b:65:8d:e4:7c:15:11:f2:db:1d:b7:a4:8d:45:
27:da:c9:d8:ed:1a:94:c9:ac:80:4c:e0:5b:9a:e7:
9f:ae:51:f5:42:2c:27:b1:ec:54:cd:b2:73:9b:25:
b9:3c:39:86:ea:3f:95:85:e0:b3:42:19:ce:f9:6e:
34:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E5:27:35:8C:86:21:C9:0B:29:05:1C:F2:22:65:C4:D4:FF:17:5A
X509v3 Authority Key Identifier:
keyid:3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3130332e36362e34362e302f32332d3233203d3e203233363934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.66.46.0/23
Signature Algorithm: sha256WithRSAEncryption
70:2f:5a:b0:a4:d9:7b:bd:12:86:95:98:35:ea:c1:f7:10:35:
3b:4a:72:f6:32:db:c3:b1:82:cc:9e:8d:8e:f2:5b:85:8d:4e:
68:f0:ac:c7:24:f0:33:97:fb:9f:4c:56:03:ca:03:d1:1a:3e:
fe:5b:5e:de:2c:f3:5f:19:c3:47:fc:15:5d:c0:70:3e:e9:18:
a5:09:4a:28:87:d9:53:31:07:c6:d6:0b:ba:76:f8:9a:e0:33:
9c:14:0f:ab:26:a1:b8:37:8f:d8:93:e6:0f:03:77:79:9e:a1:
b1:80:5a:6b:d1:d5:81:55:1f:eb:52:10:04:bf:18:1a:47:6e:
2f:7f:dc:cc:29:41:d3:3a:2b:81:b5:2c:61:67:ff:f0:e6:ae:
83:0a:64:7a:87:4f:03:48:64:36:bf:44:04:0d:f7:bd:1c:36:
b7:92:54:5c:d1:e1:f4:4c:ac:7d:0e:78:e8:94:51:64:eb:f6:
8f:76:50:59:83:8a:bc:7f:91:5f:bf:14:63:b2:96:21:ad:de:
fa:58:b7:b4:17:69:e1:ae:d7:7f:5e:39:c5:06:7d:1b:e9:4b:
87:5a:14:6b:bb:14:ce:e5:d1:c6:3a:80:fa:cc:0c:95:36:11:
7c:d8:bc:04:24:a7:23:1c:2b:2b:83:c3:09:5a:2d:25:9b:ad:
a0:46:91:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:29:28 2025 by rpki-client