Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/3130332e3138342e35372e302f32342d3234203d3e20313532333532.roa
File: 3130332e3138342e35372e302f32342d3234203d3e20313532333532.roa (raw, json)
Hash identifier: X5jcqVTllqsiihg+7l6qTb+EAVnsgGJI9/U4b928wFE=
Subject key identifier: D2:91:38:51:40:4C:4B:BB:1B:C0:C0:6C:5B:98:97:15:2C:FD:FF:52
Certificate issuer: /CN=2F24A2044806301EB7FA6CE5C8521FE03941B7BA
Certificate serial: 57FC650AF97FE563AD96CFF78FF7AC03E4734967
Authority key identifier: 2F:24:A2:04:48:06:30:1E:B7:FA:6C:E5:C8:52:1F:E0:39:41:B7:BA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/3130332e3138342e35372e302f32342d3234203d3e20313532333532.roa
Signing time: Sat 28 Dec 2024 11:00:02 +0000
ROA not before: Sat 28 Dec 2024 10:55:02 +0000
ROA not after: Sat 27 Dec 2025 11:00:02 +0000
asID: 152352
IP address blocks: 103.184.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:fc:65:0a:f9:7f:e5:63:ad:96:cf:f7:8f:f7:ac:03:e4:73:49:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F24A2044806301EB7FA6CE5C8521FE03941B7BA
Validity
Not Before: Dec 28 10:55:02 2024 GMT
Not After : Dec 27 11:00:02 2025 GMT
Subject: CN=D2913851404C4BBB1BC0C06C5B9897152CFDFF52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:02:7f:e6:5f:2a:d4:32:c1:f9:9e:f3:b4:cb:
44:a5:1e:8d:12:52:c2:c9:94:57:40:9a:46:53:41:
33:b7:7f:b1:d2:f8:d0:61:0c:46:db:ee:21:c0:09:
e1:ee:ee:06:7d:b1:ce:53:df:67:f5:ff:9b:3f:35:
16:66:f5:05:f2:5d:1c:0c:9a:96:76:3b:ce:d4:07:
53:0e:a4:9b:ff:23:9e:dc:34:d9:f2:ae:8d:0a:f3:
43:1a:a3:82:e8:9f:f4:03:e1:20:1b:e1:74:ee:04:
43:28:68:4c:4c:84:83:d0:5c:2b:d7:22:ba:85:0d:
3b:16:07:b5:ad:c8:ca:ac:23:e2:18:2f:b7:da:5f:
0e:92:b8:9d:2d:71:03:5c:df:0d:d1:7d:04:11:03:
5b:8c:47:92:d8:7d:4e:49:b8:ef:ab:94:bf:dd:31:
8d:9a:c3:54:b1:5c:c4:e7:06:66:b3:15:80:28:27:
76:e7:e4:fa:c7:63:e7:df:1f:cd:ad:61:c4:9b:63:
2d:ae:79:57:b1:f0:e8:e9:f1:92:86:eb:73:e5:83:
f5:0e:5d:98:b6:df:d1:d7:50:38:5b:23:19:3c:c5:
98:16:2a:a2:13:49:d2:eb:9d:13:87:56:b9:85:18:
b5:46:8c:23:41:86:e1:a4:0c:51:68:3d:71:32:59:
7c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:91:38:51:40:4C:4B:BB:1B:C0:C0:6C:5B:98:97:15:2C:FD:FF:52
X509v3 Authority Key Identifier:
keyid:2F:24:A2:04:48:06:30:1E:B7:FA:6C:E5:C8:52:1F:E0:39:41:B7:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/3130332e3138342e35372e302f32342d3234203d3e20313532333532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.57.0/24
Signature Algorithm: sha256WithRSAEncryption
16:ef:f5:59:c2:c9:03:c0:71:5d:de:5e:14:60:30:93:08:73:
e1:ab:89:ea:a3:62:56:58:bd:29:ff:3a:33:21:07:0a:7c:7b:
d2:36:16:cd:88:07:6c:2f:67:fe:bd:41:e6:bc:c8:19:04:27:
ac:7a:37:59:35:1d:e8:9f:63:a4:67:e3:7c:ff:38:97:e3:70:
5e:64:19:64:d0:d6:a3:8e:c8:e8:40:2a:8e:5f:3b:45:d2:5e:
c8:0c:bb:db:99:99:d3:bd:67:99:0f:52:a5:eb:4e:a8:47:38:
6e:10:93:5b:38:70:38:7b:8c:97:0d:cf:67:42:d7:8d:04:9b:
c4:13:8e:81:90:92:74:aa:d3:38:00:03:b6:cd:9f:98:b8:6d:
fd:21:7e:90:05:c3:18:63:a4:02:de:ea:25:fd:da:ac:46:d7:
07:79:cb:63:3d:eb:0b:26:0f:01:e2:43:5d:4c:dc:b5:c7:7b:
a9:8c:d6:70:fe:d2:8e:c2:96:08:7e:e4:7a:51:ca:46:85:3a:
10:50:da:20:40:1f:c1:c7:77:d1:70:e3:25:9a:c9:71:8c:b8:
60:64:d1:e1:ef:a7:21:27:3d:7d:9e:16:3a:a7:06:79:44:76:
7b:45:d5:98:30:6a:6a:db:93:94:f9:0f:c6:03:55:8b:59:e0:
53:7a:db:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:33:31 2025 by rpki-client