Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa
File: 3130332e31302e3133362e302f32322d3234203d3e203137363731.roa (raw, json)
Hash identifier: QbxosqQK//d2RqBMvzHIwqangnp+BlfddLrLSWuWwjQ=
Subject key identifier: DA:AB:FA:43:8B:2E:5E:A3:93:8B:A6:B9:8C:5F:10:56:E9:73:C6:C9
Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Certificate serial: 1E34DC1E9E44D04B7F91648AAE614715C250CB4C
Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa
Signing time: Fri 14 Jun 2024 03:00:02 +0000
ROA not before: Fri 14 Jun 2024 02:55:02 +0000
ROA not after: Fri 13 Jun 2025 03:00:02 +0000
asID: 17671
IP address blocks: 103.10.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:34:dc:1e:9e:44:d0:4b:7f:91:64:8a:ae:61:47:15:c2:50:cb:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Validity
Not Before: Jun 14 02:55:02 2024 GMT
Not After : Jun 13 03:00:02 2025 GMT
Subject: CN=DAABFA438B2E5EA3938BA6B98C5F1056E973C6C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:36:4d:b1:4f:b4:6d:83:20:45:f0:62:b2:82:
b2:2d:c0:fc:f9:e8:a2:52:80:08:ba:9a:d2:30:b5:
30:3a:4d:58:e2:85:e4:5e:10:41:0d:7d:2f:e1:59:
66:ee:55:0e:e0:1c:aa:3a:0c:56:00:6d:2f:c1:c0:
0e:5d:b4:c5:72:03:df:4e:88:c5:54:3a:1b:48:fa:
ef:45:7d:25:6c:2e:9a:60:80:94:55:f9:85:56:02:
db:c0:c1:f8:2d:45:c4:95:5a:9c:eb:ac:d3:6e:25:
7b:72:48:47:65:99:88:26:33:85:d3:9e:c7:b7:be:
de:c1:58:04:bb:47:f9:c2:a5:c4:74:b4:50:b3:5d:
d5:10:18:62:ea:2f:53:04:fe:3b:e6:25:25:02:01:
bb:7e:29:11:39:65:3c:91:73:46:3b:a5:fa:3f:99:
e2:65:d4:e1:a0:88:1f:19:d3:9d:19:9e:8c:a2:2a:
32:fd:67:0f:df:72:96:47:dc:74:6e:4b:19:24:7b:
ad:24:89:21:b4:d7:ad:d4:64:4e:7a:bb:18:b3:f3:
2d:dd:1b:2a:a8:d3:2f:77:e7:09:05:a6:82:7d:95:
7f:8d:49:98:7d:e6:b1:73:b7:1f:5c:58:9f:4a:ce:
b4:a0:7a:8e:fa:6a:60:db:d9:78:39:b9:01:7a:34:
fa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:AB:FA:43:8B:2E:5E:A3:93:8B:A6:B9:8C:5F:10:56:E9:73:C6:C9
X509v3 Authority Key Identifier:
keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.10.136.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:03:da:f7:91:e8:0a:bc:98:98:d3:82:0d:e2:19:c0:80:05:
d8:8d:f9:96:44:ba:84:39:dc:b9:ca:10:0b:d4:1b:9a:71:ff:
8b:b1:a7:0a:a9:55:48:ad:c9:d6:04:0d:d3:b0:dd:ef:50:e2:
5a:7e:65:d5:54:c3:1a:44:f4:49:1a:07:e2:da:37:27:03:cd:
1d:34:d9:71:11:e9:59:1c:de:d8:9a:2a:11:3c:de:3e:bd:5d:
74:de:09:4d:95:bb:54:03:ef:8e:3b:c6:ff:4a:a9:96:95:18:
c8:35:e8:28:80:cf:78:2f:d3:c4:98:b9:96:9a:b9:03:4a:e8:
86:6e:14:ff:29:3f:3d:23:18:a5:42:67:bc:d8:3e:46:cd:38:
94:bc:7d:cf:04:42:aa:96:dd:b8:29:01:33:49:00:f5:45:15:
cb:96:19:44:c9:a3:16:d8:dc:ba:cf:69:b7:98:f4:97:16:6d:
68:30:cb:81:42:e6:b7:25:fe:b6:e4:ec:01:b9:aa:07:32:e9:
98:e8:77:a7:a5:db:7f:bf:d1:18:ba:74:a8:b9:42:5b:49:cc:
1e:e1:39:55:59:6c:78:5e:b5:4a:00:0d:85:e6:93:6a:3d:5e:
a9:d6:5b:d0:d8:da:f6:21:97:63:54:dd:ec:50:bb:3b:1f:4c:
f8:ae:54:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:33:10 2025 by rpki-client