Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa
File: 3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa (raw, json)
Hash identifier: kInQZ6+a0szsE+89xOKFo2QCmfmxhWma36K3DO0bgYU=
Subject key identifier: AE:7C:EA:19:F0:5F:BA:7B:04:48:D5:DC:88:4A:36:9E:D3:E5:29:73
Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7
Certificate serial: 56A8C907185D4B09DAA5B7B2EE7359060DC8D8C8
Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa
Signing time: Thu 07 Nov 2024 13:00:01 +0000
ROA not before: Thu 07 Nov 2024 12:55:01 +0000
ROA not after: Thu 06 Nov 2025 13:00:01 +0000
asID: 58819
IP address blocks: 103.240.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:a8:c9:07:18:5d:4b:09:da:a5:b7:b2:ee:73:59:06:0d:c8:d8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7
Validity
Not Before: Nov 7 12:55:01 2024 GMT
Not After : Nov 6 13:00:01 2025 GMT
Subject: CN=AE7CEA19F05FBA7B0448D5DC884A369ED3E52973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c5:e5:52:e0:00:17:c6:7c:d2:65:8d:55:5e:
d7:d5:34:cb:eb:b8:45:b0:98:45:d2:f4:47:db:e6:
32:ca:00:fe:b3:41:53:62:70:53:70:55:56:fd:7a:
04:dd:1a:9f:58:70:33:b8:e0:e3:50:c4:7d:63:9a:
3f:4e:81:15:9c:e8:a1:b9:9d:38:0b:49:78:28:bc:
50:b8:3d:89:2f:e5:2b:79:e7:8d:7c:da:75:7c:a1:
63:46:f1:63:ad:8f:71:0b:7a:17:1f:de:b7:69:15:
bb:7b:9b:7e:0b:4c:87:1e:31:83:3c:9e:37:e5:ae:
8c:93:aa:94:cc:27:6f:02:80:4a:1f:b5:25:49:3c:
0d:8a:5c:8c:2e:b3:03:51:70:06:87:fb:41:f2:68:
6a:64:37:00:8f:a2:02:20:99:f4:6f:b4:f2:1a:0d:
43:c2:7d:e6:07:16:63:f6:74:fb:55:bb:91:1a:0b:
47:ea:fc:95:5e:0f:1e:99:78:ae:29:51:60:7e:19:
90:c1:16:06:d5:df:84:b6:50:e9:e8:41:7d:91:3e:
97:f6:fb:13:2e:9e:db:85:ea:9f:3f:84:18:2a:bb:
c6:eb:86:c5:f8:8f:5b:3b:b1:1a:af:43:02:23:6e:
4f:6a:34:76:28:b9:26:40:5e:8c:9e:a1:33:48:02:
6b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7C:EA:19:F0:5F:BA:7B:04:48:D5:DC:88:4A:36:9E:D3:E5:29:73
X509v3 Authority Key Identifier:
keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.240.110.0/24
Signature Algorithm: sha256WithRSAEncryption
92:42:73:94:9d:28:0f:d0:f1:f4:6d:cb:5a:f0:60:cf:d3:4f:
55:a3:4b:47:ad:f4:38:80:30:4a:d2:6a:60:bf:6e:fd:31:79:
72:55:a9:dd:d3:d7:3a:ed:4b:88:1d:a4:ce:21:e1:42:0d:09:
74:2f:f0:51:4f:8d:16:50:24:46:a0:37:37:7c:b7:3a:8e:b4:
16:d2:2b:79:42:d6:20:5e:42:72:cb:89:f4:22:4c:a8:24:5d:
6b:32:2f:4f:45:2d:46:70:55:b8:c1:b8:13:4a:b2:c4:1c:b4:
72:92:1d:72:4e:3f:60:b8:df:8d:25:35:0c:43:7e:bc:02:45:
2f:dc:b6:a9:fe:b0:3b:54:a7:b0:e3:e7:80:ff:21:ad:e9:bf:
16:5a:89:6a:0e:2c:c6:b9:e0:81:c2:df:4a:a5:0d:fe:21:2f:
4a:04:10:8a:b9:dc:40:62:b9:4f:6d:a9:86:ec:62:8f:7c:a4:
d3:8e:78:30:43:f8:61:4b:55:66:6a:bc:7f:b5:ca:f8:64:ce:
1e:45:5a:bf:06:d2:5f:ea:10:14:67:71:35:04:4b:cd:b4:f1:
2d:78:ed:f3:ad:c5:08:d0:55:d2:2b:c1:16:fb:1c:8e:d3:bb:
12:3d:d3:ee:40:3c:5e:67:bd:bc:a7:f0:87:09:40:bf:cd:cd:
47:6c:9f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:17:17 2025 by rpki-client