Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133372e302f32342d3234203d3e203338353131.roa
File: 3130332e36382e3133372e302f32342d3234203d3e203338353131.roa (raw, json)
Hash identifier: JVkCLbeZDJdwzZ2v3iR22hauCUbtGIEz6OcbZ/e1uz8=
Subject key identifier: B9:B3:E9:10:F3:83:7F:B1:07:12:87:01:BB:14:60:96:5F:F6:AE:0F
Certificate issuer: /CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416
Certificate serial: 2E47E3CB3A24E16BD771A2849F39BDAB6BD07F30
Authority key identifier: B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133372e302f32342d3234203d3e203338353131.roa
Signing time: Mon 21 Oct 2024 14:00:01 +0000
ROA not before: Mon 21 Oct 2024 13:55:01 +0000
ROA not after: Mon 20 Oct 2025 14:00:01 +0000
asID: 38511
IP address blocks: 103.68.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:47:e3:cb:3a:24:e1:6b:d7:71:a2:84:9f:39:bd:ab:6b:d0:7f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416
Validity
Not Before: Oct 21 13:55:01 2024 GMT
Not After : Oct 20 14:00:01 2025 GMT
Subject: CN=B9B3E910F3837FB107128701BB1460965FF6AE0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:21:92:b1:7f:5e:a2:b8:10:3a:c1:54:5a:f9:
24:c2:d0:8a:50:2c:97:64:7c:c4:6d:27:4e:32:05:
47:5f:f2:48:31:4d:e7:24:0b:6f:15:82:7c:ee:54:
04:2e:64:cb:48:fe:98:c2:1a:e4:8e:56:2c:79:39:
8e:39:ad:b5:4e:3e:77:48:4b:00:86:1a:f2:95:70:
aa:40:81:17:f2:b6:44:96:be:6e:ec:5f:8f:3b:0d:
8a:e1:d4:6d:ef:cc:f8:bf:09:ed:a6:bb:47:fd:c2:
b4:1c:7e:59:cf:c3:3b:12:e2:29:c8:be:14:40:7f:
08:a1:53:75:75:0f:21:4d:71:31:5c:8f:44:fd:5e:
8a:ee:fd:77:7d:1b:63:fe:6e:67:63:19:c6:19:5c:
ef:91:1d:9c:91:eb:01:2e:22:1f:3b:8e:c1:46:3b:
45:07:e1:9d:b8:a2:19:7e:4d:f7:e8:f5:a5:0a:e3:
23:a6:25:db:9e:f1:72:40:e1:d8:be:c8:c2:1b:c8:
64:6e:cd:df:b2:54:86:42:5a:88:7f:ae:23:9f:86:
24:52:26:bd:ba:fb:6d:8b:12:44:60:47:6d:0c:cd:
d3:40:d9:1b:b2:92:d0:a5:83:39:36:8a:e1:1c:3c:
6d:59:6c:df:4f:ff:6d:b8:f2:01:38:4d:85:d9:9c:
2d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B3:E9:10:F3:83:7F:B1:07:12:87:01:BB:14:60:96:5F:F6:AE:0F
X509v3 Authority Key Identifier:
keyid:B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133372e302f32342d3234203d3e203338353131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.68.137.0/24
Signature Algorithm: sha256WithRSAEncryption
61:a7:70:72:2d:82:c3:18:00:4c:5b:45:29:75:8b:b6:cf:9e:
bd:83:f3:dc:53:02:52:51:2f:9f:38:f3:65:16:ef:f4:77:f6:
49:56:cc:3b:41:b5:33:65:64:de:94:7b:9d:dd:d7:62:99:94:
c9:f2:e0:1b:02:1a:95:26:1b:c5:ad:f8:04:4d:9a:89:72:07:
52:85:03:c3:0a:37:a8:28:a8:14:5c:9a:a6:dc:26:a2:c2:80:
59:20:6f:ad:9c:62:85:7e:66:ff:9f:c8:fa:fa:5c:f8:77:5c:
20:7d:71:dd:5c:40:07:85:e1:ab:02:04:00:dc:2f:67:f8:f9:
2e:6c:0c:8e:4a:e6:fa:b6:d3:d6:1a:f7:d0:f4:d0:92:16:0b:
34:5c:bc:c9:65:4a:c7:7a:62:5e:49:b1:5b:aa:28:2c:31:72:
97:3d:51:6c:40:9b:b3:06:38:20:46:ca:40:e2:64:ce:ec:cf:
5d:9e:13:b1:24:eb:5a:87:02:82:f6:5e:ca:52:f2:be:6f:b4:
ca:5d:4c:c1:45:83:ac:5a:7b:db:39:81:95:19:c4:6a:8b:be:
d8:46:9c:50:db:99:ea:d5:d1:da:45:09:ae:25:30:9e:0d:61:
2e:e6:48:84:5c:fd:5b:f9:c0:07:6b:42:cb:c9:11:ca:7a:d5:
ba:75:e7:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:38 2025 by rpki-client