Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/3130332e3130372e3134302e302f32342d3234203d3e20313337323937.roa
File: 3130332e3130372e3134302e302f32342d3234203d3e20313337323937.roa (raw, json)
Hash identifier: 8fikq9dFAzMj3+QK9K8dBiiRspRKPsD5Hsrp6SO4EzE=
Subject key identifier: 5F:6D:C3:9F:C9:B7:79:B6:B7:CB:5E:2A:AD:18:63:28:E6:D8:EC:81
Certificate issuer: /CN=30C39359651C33B59AC32BC46831980108960568
Certificate serial: 4BCE1F6270814358EF59145B8526F5936FCCCF23
Authority key identifier: 30:C3:93:59:65:1C:33:B5:9A:C3:2B:C4:68:31:98:01:08:96:05:68
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30C39359651C33B59AC32BC46831980108960568.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/3130332e3130372e3134302e302f32342d3234203d3e20313337323937.roa
Signing time: Mon 01 Jul 2024 01:03:51 +0000
ROA not before: Mon 01 Jul 2024 00:58:51 +0000
ROA not after: Mon 30 Jun 2025 01:03:51 +0000
asID: 137297
IP address blocks: 103.107.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:ce:1f:62:70:81:43:58:ef:59:14:5b:85:26:f5:93:6f:cc:cf:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30C39359651C33B59AC32BC46831980108960568
Validity
Not Before: Jul 1 00:58:51 2024 GMT
Not After : Jun 30 01:03:51 2025 GMT
Subject: CN=5F6DC39FC9B779B6B7CB5E2AAD186328E6D8EC81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4d:19:24:24:9b:04:1b:1a:a6:3e:b5:90:2c:
69:53:6f:c7:70:bc:0a:9c:07:3d:cc:50:36:41:e4:
3d:d9:2a:85:58:fd:22:e7:74:76:d3:5a:ba:61:ce:
5f:e1:15:24:9d:c1:0b:48:cb:08:53:c5:21:75:6d:
3a:82:4b:8d:7e:1a:9c:5a:90:c4:6b:4e:dc:0e:d3:
71:0d:a4:20:90:1c:b7:71:fe:8d:2b:3c:64:52:c3:
93:44:29:8f:7b:f6:d8:9c:e8:ab:65:b6:e7:9d:86:
dd:ae:f1:b2:35:19:e5:5e:96:2c:1a:cc:65:af:10:
4d:0b:b1:97:85:cb:4f:c3:7c:16:53:03:b9:53:1c:
b1:c3:1d:75:0f:db:6c:e9:f4:fe:ab:a5:57:19:32:
90:aa:3c:ea:f9:d4:8b:a5:cd:89:8b:7e:5c:2d:e2:
6f:23:08:98:9b:86:db:0e:20:69:5f:ba:8e:24:29:
93:a2:1e:31:e6:f3:a1:eb:71:ae:31:d0:2d:de:99:
d1:4b:2e:b4:08:0b:96:9d:97:62:bd:1b:aa:09:df:
73:05:e6:0f:67:90:36:ae:8a:64:44:08:1d:de:9d:
d2:21:8a:9e:54:1c:8a:e5:5a:a6:42:9a:cc:a4:f3:
01:f4:29:15:d1:c3:7e:13:1e:10:b6:67:83:c9:e0:
2d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:6D:C3:9F:C9:B7:79:B6:B7:CB:5E:2A:AD:18:63:28:E6:D8:EC:81
X509v3 Authority Key Identifier:
keyid:30:C3:93:59:65:1C:33:B5:9A:C3:2B:C4:68:31:98:01:08:96:05:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/30C39359651C33B59AC32BC46831980108960568.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30C39359651C33B59AC32BC46831980108960568.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957996f5-a934-4b44-8547-19ec37cf7c14/0/3130332e3130372e3134302e302f32342d3234203d3e20313337323937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.107.140.0/24
Signature Algorithm: sha256WithRSAEncryption
96:14:cb:0d:d6:2c:ec:1e:af:4a:65:56:12:83:3b:b2:3b:1d:
19:8c:e8:3c:2d:af:16:4d:09:0b:78:5e:d9:30:6a:17:fc:b3:
4c:41:5a:53:e1:1a:86:0b:3b:88:2f:9a:fc:c9:94:ee:cf:28:
b2:9a:69:c4:5a:5e:c6:0f:73:73:c1:ff:22:ad:6b:55:f7:0a:
76:c2:30:ec:be:0f:c0:73:76:4a:12:59:1c:b5:37:0b:79:72:
ee:8b:1c:70:2b:62:f8:9a:55:c9:6c:9e:de:33:6f:3c:ab:ca:
fc:ab:c4:78:de:82:05:9d:6d:cf:d4:8e:55:4f:35:0b:ca:7c:
db:20:d0:04:fb:96:2f:d3:bd:22:8f:89:90:b7:50:d4:c4:8c:
c6:f1:bc:eb:9e:91:71:5a:bd:3b:ea:6f:b6:56:11:c1:c1:91:
d2:81:12:57:7d:3a:99:03:bf:6d:68:fd:d9:5e:e5:a3:44:ed:
06:70:bc:cd:32:33:ca:ab:8e:f6:15:e6:fb:4b:b8:dc:f8:43:
f3:1a:5c:2d:0e:c0:bc:50:02:9f:84:60:00:d8:c9:62:4e:21:
d7:15:1e:e9:6d:73:38:6e:3b:81:d0:fd:14:78:f9:eb:66:47:
ad:9a:be:81:f8:dd:bc:58:05:22:7c:80:77:01:d9:0f:e8:73:
b3:19:02:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:35 2025 by rpki-client