Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8c278747-6ac7-4f87-9b2b-21359294f034/0/3130332e38372e31382e302f32342d3234203d3e20313336303835.roa
File: 3130332e38372e31382e302f32342d3234203d3e20313336303835.roa (raw, json)
Hash identifier: n9e/0sEAxnxjRV58QVqHL9QspOrx1U/QI3uFgFT4Dgc=
Subject key identifier: 77:DA:8C:BF:FE:7A:52:A0:D2:9F:A8:EF:ED:FD:88:02:7D:01:53:09
Certificate issuer: /CN=48500B00C61DA1B0EC4484E0791DBBCDDC34EA6A
Certificate serial: 6C890C73C8F1CF31414CA4358A848A0738FF95CF
Authority key identifier: 48:50:0B:00:C6:1D:A1:B0:EC:44:84:E0:79:1D:BB:CD:DC:34:EA:6A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/48500B00C61DA1B0EC4484E0791DBBCDDC34EA6A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8c278747-6ac7-4f87-9b2b-21359294f034/0/3130332e38372e31382e302f32342d3234203d3e20313336303835.roa
Signing time: Thu 31 Oct 2024 03:56:35 +0000
ROA not before: Thu 31 Oct 2024 03:51:35 +0000
ROA not after: Thu 30 Oct 2025 03:56:35 +0000
asID: 136085
IP address blocks: 103.87.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:89:0c:73:c8:f1:cf:31:41:4c:a4:35:8a:84:8a:07:38:ff:95:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48500B00C61DA1B0EC4484E0791DBBCDDC34EA6A
Validity
Not Before: Oct 31 03:51:35 2024 GMT
Not After : Oct 30 03:56:35 2025 GMT
Subject: CN=77DA8CBFFE7A52A0D29FA8EFEDFD88027D015309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7f:26:92:64:f3:99:27:1a:b0:7e:d1:e9:ea:
ce:79:92:22:2c:4e:b1:e6:70:0a:50:c6:ca:25:39:
ba:cb:19:6c:83:f8:73:17:1b:62:d3:65:ed:b4:4e:
45:27:55:20:2a:cb:a7:0d:a0:d0:34:a3:2d:ef:1a:
20:aa:76:a7:a6:07:66:4e:84:bc:f2:97:76:ba:33:
3f:37:cd:70:44:9a:56:77:b6:d2:52:cd:da:13:0d:
ee:f6:f0:22:c5:7c:ec:af:ea:bb:3f:2e:c0:93:81:
6d:22:83:d3:ef:86:22:25:34:ec:ad:80:e5:40:81:
7e:2d:85:e9:d6:cd:5c:d3:02:2d:db:ed:93:09:ee:
a2:18:e9:ba:9f:8d:37:8d:5f:9d:69:cd:7d:03:60:
d6:b8:0f:5a:1b:b2:dd:09:06:f3:07:21:a8:47:95:
c9:99:7f:38:0f:f2:0e:e2:cc:68:de:58:69:62:3c:
b9:6c:32:3f:b8:b9:44:98:fd:85:3a:d0:8b:70:23:
95:1e:e8:20:7d:fb:65:fd:19:4f:ed:1d:ef:ba:a8:
2d:f4:66:ec:82:92:9b:6d:b8:c0:8f:46:e6:44:21:
e0:b1:f4:e4:32:6b:9b:dc:05:98:fa:6b:d0:c3:1a:
b6:4f:de:9e:97:a2:87:a7:77:8f:b3:14:5a:19:39:
f0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DA:8C:BF:FE:7A:52:A0:D2:9F:A8:EF:ED:FD:88:02:7D:01:53:09
X509v3 Authority Key Identifier:
keyid:48:50:0B:00:C6:1D:A1:B0:EC:44:84:E0:79:1D:BB:CD:DC:34:EA:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8c278747-6ac7-4f87-9b2b-21359294f034/0/48500B00C61DA1B0EC4484E0791DBBCDDC34EA6A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/48500B00C61DA1B0EC4484E0791DBBCDDC34EA6A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c278747-6ac7-4f87-9b2b-21359294f034/0/3130332e38372e31382e302f32342d3234203d3e20313336303835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.87.18.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:40:a8:a8:03:89:34:ab:b4:aa:83:e3:b0:3e:9e:ac:e8:f8:
f8:9e:8f:c4:86:10:2e:37:80:fb:07:95:4a:10:d6:ea:c3:01:
c2:94:e9:60:82:e4:81:ac:88:c2:e6:c1:a7:31:b4:3f:87:3e:
cd:d0:76:f5:30:b7:0c:e1:47:82:ce:ae:2d:64:30:e1:5d:88:
c9:4c:e8:69:1a:11:5b:46:a9:77:bd:db:d6:06:80:e4:31:28:
b0:de:5c:dc:24:34:07:d3:7b:00:83:a0:14:3d:66:b3:0c:e1:
bf:fc:9d:24:38:89:7f:2f:b7:af:bc:5a:c3:56:60:98:42:f9:
34:84:a7:37:c6:90:7d:32:3e:b9:e1:e5:be:db:c7:97:42:37:
2d:94:b9:5a:86:10:05:aa:1f:4a:b8:ab:d9:cc:d5:fc:0f:af:
93:b4:69:66:1c:ed:62:aa:67:9f:bc:35:a5:94:ea:c9:11:87:
ee:79:01:57:ea:26:54:5a:06:5b:74:17:91:0b:7c:85:f1:be:
42:18:db:51:29:d4:ce:a5:3f:f3:d6:70:fa:fd:a5:24:ad:4e:
21:1a:c2:a9:d4:19:63:f8:36:26:f6:d0:1b:27:2e:08:4f:4e:
08:e3:3d:67:20:fc:f4:40:89:56:d5:b4:d3:38:b2:be:a5:ea:
e1:57:5c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:52:03 2025 by rpki-client