Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa
File: 3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa (raw, json)
Hash identifier: P6MybQx69Dhx8eJMG1s/9FzqCCNhgPl3kk8plpJbd7k=
Subject key identifier: 8F:39:00:89:4F:27:E3:DA:3C:8B:CA:6D:3C:19:C1:73:13:29:A9:3D
Certificate issuer: /CN=146D9338596ECF1F976FB37F330D8C0CD48414C9
Certificate serial: 366F8C3EF8DFFF7490DF09EC6A77305E2CBFF90E
Authority key identifier: 14:6D:93:38:59:6E:CF:1F:97:6F:B3:7F:33:0D:8C:0C:D4:84:14:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146D9338596ECF1F976FB37F330D8C0CD48414C9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa
Signing time: Tue 31 Dec 2024 08:00:02 +0000
ROA not before: Tue 31 Dec 2024 07:55:02 +0000
ROA not after: Tue 30 Dec 2025 08:00:02 +0000
asID: 140409
IP address blocks: 103.151.72.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:6f:8c:3e:f8:df:ff:74:90:df:09:ec:6a:77:30:5e:2c:bf:f9:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=146D9338596ECF1F976FB37F330D8C0CD48414C9
Validity
Not Before: Dec 31 07:55:02 2024 GMT
Not After : Dec 30 08:00:02 2025 GMT
Subject: CN=8F3900894F27E3DA3C8BCA6D3C19C1731329A93D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5c:ac:62:58:66:8e:be:8f:da:f1:af:21:47:
a8:aa:59:b5:f3:71:19:3b:e3:3a:18:ff:01:22:bd:
80:d3:c1:2b:48:28:08:ac:d9:2a:f3:39:de:a4:12:
ea:14:ae:d0:3b:6f:e9:cd:7f:34:de:4a:30:cc:03:
a4:57:55:25:0d:5a:a9:fe:94:b0:16:de:8a:14:d0:
42:57:0a:c0:ca:ae:70:d3:7f:f8:b0:6f:ef:03:59:
f5:fe:b8:2d:12:66:fb:77:c5:47:a1:55:ca:5a:2a:
fb:28:01:b1:8f:84:01:7d:73:ad:5a:60:5d:c4:7b:
8b:c0:11:30:1d:2a:eb:c7:6f:b6:3b:fc:ae:00:b7:
96:3b:e5:bf:e9:80:10:29:f5:b4:ca:08:8c:f5:9a:
ff:e3:1d:2c:96:0c:b2:ef:98:c2:24:bd:aa:02:b7:
d6:3c:81:be:d5:7c:e0:16:3c:f8:00:d9:1d:e7:9a:
57:3d:8d:3b:55:6d:83:ce:11:b4:72:50:5f:46:8d:
f1:0a:9f:f2:18:45:3d:cd:af:ca:15:27:97:3b:fd:
be:8e:f1:3c:af:f3:58:f1:53:50:f8:78:5a:8d:a6:
57:d6:05:ff:84:0e:db:e4:e3:e5:8b:9e:6f:39:51:
2d:14:7c:76:77:40:5e:81:cc:c1:bf:28:81:f0:cc:
49:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:39:00:89:4F:27:E3:DA:3C:8B:CA:6D:3C:19:C1:73:13:29:A9:3D
X509v3 Authority Key Identifier:
keyid:14:6D:93:38:59:6E:CF:1F:97:6F:B3:7F:33:0D:8C:0C:D4:84:14:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/146D9338596ECF1F976FB37F330D8C0CD48414C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146D9338596ECF1F976FB37F330D8C0CD48414C9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.151.72.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:19:36:6b:77:a1:40:23:f7:b1:ff:a1:dc:81:ab:1e:25:b9:
cf:e6:69:e4:eb:df:24:cf:91:44:33:35:2d:ad:7a:c0:cd:2b:
25:5c:1f:ee:c5:ed:a5:a8:c4:d9:37:21:df:ab:1e:8e:46:66:
2c:d0:d8:06:7e:da:dc:ac:75:c7:aa:50:b9:b3:c3:9a:7a:97:
e7:6a:a2:27:17:8f:c6:ea:15:21:fd:43:b1:92:d4:90:2c:9d:
dd:dc:30:4d:74:eb:8b:55:3d:65:82:60:6b:92:7b:73:2c:17:
8b:ed:92:dd:c8:1d:ed:f2:18:eb:c9:08:d3:df:03:33:e6:09:
55:f0:10:fd:36:e2:8e:f8:e1:73:d9:68:1e:b2:dd:50:b3:c9:
8e:d9:70:af:39:ac:df:25:7d:ba:7f:7a:07:3c:b7:aa:ac:31:
e3:42:81:f6:72:30:bb:ac:83:cd:67:27:e6:ee:a4:01:d5:9d:
8a:ec:f9:b4:c8:7e:c3:f2:25:c5:f5:91:83:9b:10:ae:e7:12:
24:3c:94:b0:b8:40:81:bd:a8:6b:b9:7b:2c:00:f5:1a:23:f4:
39:bb:75:51:07:56:01:05:61:8c:a6:38:ce:6d:28:32:1d:ad:
bd:68:e3:d9:8d:54:8f:3f:62:75:fc:26:d4:78:c6:b0:ff:c3:
a7:4a:bd:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:03:49 2025 by rpki-client