Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/960f8461-bb2c-4d3e-a5be-700939427c8c/0/3130332e3139392e3131372e302f32342d3234203d3e20313530393234.roa
File: 3130332e3139392e3131372e302f32342d3234203d3e20313530393234.roa (raw, json)
Hash identifier: 6oB2NEdb1J8wzFdKjlXlM7HaXvyVJb+FJhi1JoqHPbo=
Subject key identifier: B5:74:19:8E:C8:74:6A:B9:2D:11:01:36:8F:43:71:FA:75:05:1C:A6
Certificate issuer: /CN=4BC6236908AF9F36A8057E2BB1A5B34BCD6B7DBA
Certificate serial: 0936846C89AF11ED3CAA3E24AC3CE753993ED548
Authority key identifier: 4B:C6:23:69:08:AF:9F:36:A8:05:7E:2B:B1:A5:B3:4B:CD:6B:7D:BA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BC6236908AF9F36A8057E2BB1A5B34BCD6B7DBA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/960f8461-bb2c-4d3e-a5be-700939427c8c/0/3130332e3139392e3131372e302f32342d3234203d3e20313530393234.roa
Signing time: Fri 24 Jan 2025 00:00:01 +0000
ROA not before: Thu 23 Jan 2025 23:55:01 +0000
ROA not after: Fri 23 Jan 2026 00:00:01 +0000
asID: 150924
IP address blocks: 103.199.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:36:84:6c:89:af:11:ed:3c:aa:3e:24:ac:3c:e7:53:99:3e:d5:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4BC6236908AF9F36A8057E2BB1A5B34BCD6B7DBA
Validity
Not Before: Jan 23 23:55:01 2025 GMT
Not After : Jan 23 00:00:01 2026 GMT
Subject: CN=B574198EC8746AB92D1101368F4371FA75051CA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c3:c1:23:33:97:b4:16:23:ec:c4:1d:b1:0e:
15:81:8d:ab:dc:a7:18:d4:d2:3b:b1:ed:60:a3:eb:
8f:c0:f2:86:15:d7:65:d4:e8:97:14:43:74:e0:81:
08:00:4d:99:cd:a6:ef:32:bf:10:81:a7:28:4d:2b:
c2:49:f1:36:fc:8b:cb:ee:7e:1f:f8:29:71:fa:0e:
51:f9:06:10:b1:9f:c2:83:3e:da:83:5d:d0:02:86:
ed:50:7f:93:4a:85:2b:fa:eb:83:d9:b6:8f:30:62:
28:a4:e4:3f:aa:c1:32:53:a1:85:4c:d7:9f:40:1f:
a4:b4:0d:6f:8a:c4:8a:ee:45:44:63:08:84:54:3e:
82:3e:e3:8e:e8:66:1f:72:e5:1c:f7:29:fb:2c:69:
4c:c7:c6:d9:b2:84:78:68:2e:8d:2d:11:95:aa:b6:
e0:10:a0:32:69:72:b3:6f:ff:eb:21:9f:b7:ea:2a:
6f:3a:83:26:87:1e:5c:26:8e:d5:4e:07:0d:c0:7c:
e2:e9:c0:66:41:ae:7f:55:05:d5:c7:32:1a:4c:5f:
91:41:4b:cc:f9:ce:a1:f6:36:9f:e5:51:f0:9f:c3:
4b:9d:eb:f5:6d:67:16:24:46:7d:8b:36:a9:d1:53:
42:da:2b:59:15:54:1c:f9:e6:f2:17:b1:c1:cd:d1:
67:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:74:19:8E:C8:74:6A:B9:2D:11:01:36:8F:43:71:FA:75:05:1C:A6
X509v3 Authority Key Identifier:
keyid:4B:C6:23:69:08:AF:9F:36:A8:05:7E:2B:B1:A5:B3:4B:CD:6B:7D:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/960f8461-bb2c-4d3e-a5be-700939427c8c/0/4BC6236908AF9F36A8057E2BB1A5B34BCD6B7DBA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BC6236908AF9F36A8057E2BB1A5B34BCD6B7DBA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/960f8461-bb2c-4d3e-a5be-700939427c8c/0/3130332e3139392e3131372e302f32342d3234203d3e20313530393234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.199.117.0/24
Signature Algorithm: sha256WithRSAEncryption
34:11:9a:1d:04:84:66:31:92:ac:41:ac:9f:ce:bd:a5:83:45:
0a:50:52:9e:13:8b:f2:e5:3f:1b:ef:e3:19:9f:4d:2f:be:e0:
ee:b5:98:0b:ae:67:75:9f:a9:a9:23:4d:e7:5a:3e:07:20:a3:
5d:de:d2:e7:bd:5f:71:2f:2d:01:cd:ac:0d:50:d5:16:3b:49:
9c:8a:eb:f3:8b:48:34:6c:ba:1d:61:0d:b6:76:ae:1a:5a:18:
9d:a0:68:a0:dc:bf:17:c3:6d:3f:8f:3b:68:57:51:6e:bd:d5:
e2:5f:e4:3c:b2:37:5b:c6:4d:0f:2c:1b:55:5b:94:0b:b7:39:
ce:dd:58:cf:5b:b7:cb:0e:20:df:7b:a3:a4:10:c3:51:ce:e6:
6b:b3:0e:7c:2f:c6:2c:b8:67:75:d7:ab:5d:de:b1:c2:07:ad:
91:b1:e8:6f:87:b0:c9:f1:aa:a1:d7:e9:55:f5:16:f4:e8:a0:
99:cb:20:62:5f:7c:13:4d:5e:f2:aa:df:47:52:78:1f:88:03:
36:19:00:fc:e2:7d:72:e0:31:6c:4e:2a:6b:86:11:96:f3:2b:
25:4b:56:19:37:c3:de:fe:38:84:f1:4f:c2:ba:b7:51:bb:7e:
b3:86:c8:cb:b8:00:f8:c8:92:17:9e:16:ff:6e:35:2a:70:21:
67:f1:ce:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:03:04 2025 by rpki-client