Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9e2caccf-327e-42bd-9b31-0a873d2e6692/0/3130332e3139302e37362e302f32332d3234203d3e2034383030.roa
File: 3130332e3139302e37362e302f32332d3234203d3e2034383030.roa (raw, json)
Hash identifier: bIwrAt2Dh0C2wpk9OPbSanqilOKHyILAvcZM+yJQeYs=
Subject key identifier: 8A:61:EB:32:BD:AA:53:72:D0:2E:E7:8F:1E:9D:EE:73:F0:B1:9B:27
Certificate issuer: /CN=A5D12164B9484E51D4BE4B03823526989B147558
Certificate serial: 6B14345F496DF55A417CD8DFAD0016215ACF9713
Authority key identifier: A5:D1:21:64:B9:48:4E:51:D4:BE:4B:03:82:35:26:98:9B:14:75:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5D12164B9484E51D4BE4B03823526989B147558.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9e2caccf-327e-42bd-9b31-0a873d2e6692/0/3130332e3139302e37362e302f32332d3234203d3e2034383030.roa
Signing time: Mon 13 May 2024 08:02:28 +0000
ROA not before: Mon 13 May 2024 07:57:28 +0000
ROA not after: Mon 12 May 2025 08:02:28 +0000
asID: 4800
IP address blocks: 103.190.76.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:14:34:5f:49:6d:f5:5a:41:7c:d8:df:ad:00:16:21:5a:cf:97:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5D12164B9484E51D4BE4B03823526989B147558
Validity
Not Before: May 13 07:57:28 2024 GMT
Not After : May 12 08:02:28 2025 GMT
Subject: CN=8A61EB32BDAA5372D02EE78F1E9DEE73F0B19B27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:47:e0:6a:ba:95:cb:6f:71:87:5b:24:41:18:
bb:8c:fa:4d:12:ea:56:51:ed:53:7a:60:56:e8:ca:
f3:a4:de:78:b4:95:18:71:05:21:3d:22:9d:96:54:
11:55:e8:ef:70:ab:95:c5:64:fd:07:54:e9:92:82:
75:34:4e:6e:7e:cc:b1:be:78:4f:f3:02:ec:2e:0b:
8e:09:f9:21:31:0d:11:36:16:73:13:6c:be:39:b8:
24:30:c4:46:0f:23:ce:87:72:82:b5:99:35:0b:e0:
b1:d5:48:a3:61:56:e6:65:19:47:f3:ae:a8:de:44:
ac:13:a2:2d:f5:27:85:8f:f7:b9:25:ed:ef:5d:0d:
0f:d5:07:dd:67:05:da:d7:b9:75:3a:d7:d8:58:b4:
a3:b7:26:e1:39:22:82:93:be:2b:dc:53:da:8d:bd:
18:a4:6f:14:ff:c8:78:85:dd:ec:d5:4b:cd:d5:ad:
aa:41:b6:72:bf:6f:15:fb:85:34:5f:8a:40:a8:ab:
75:2c:40:42:8f:c4:ee:43:46:c7:1f:66:db:0a:40:
98:5b:36:ef:01:0e:d0:b7:16:33:6e:80:e2:88:48:
a8:d3:af:5e:b6:fa:54:65:93:61:2e:aa:d9:c5:f8:
17:c4:e7:a2:6a:80:83:dd:18:80:15:d4:d5:26:5c:
45:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:61:EB:32:BD:AA:53:72:D0:2E:E7:8F:1E:9D:EE:73:F0:B1:9B:27
X509v3 Authority Key Identifier:
keyid:A5:D1:21:64:B9:48:4E:51:D4:BE:4B:03:82:35:26:98:9B:14:75:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9e2caccf-327e-42bd-9b31-0a873d2e6692/0/A5D12164B9484E51D4BE4B03823526989B147558.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5D12164B9484E51D4BE4B03823526989B147558.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e2caccf-327e-42bd-9b31-0a873d2e6692/0/3130332e3139302e37362e302f32332d3234203d3e2034383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.190.76.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:5e:d0:8d:85:d1:11:e8:04:98:6f:14:35:a1:45:a3:3b:ee:
c0:a3:e6:57:9c:aa:83:1a:2d:1d:53:38:6f:ff:e7:92:e1:a7:
a8:98:8b:ec:27:6f:7d:03:93:5c:66:e1:15:f9:42:20:31:12:
7c:16:9d:38:3d:47:13:28:66:56:12:e7:bd:89:f4:5b:00:f5:
b6:27:e5:a6:9d:ff:b8:78:38:ae:60:4c:00:53:e9:4f:9d:93:
be:43:c8:93:ec:18:d8:70:7d:3a:4e:a8:46:94:d0:d2:17:94:
45:ca:7f:05:9e:2a:d2:a1:10:34:bc:19:af:b4:f0:8b:ab:31:
0f:09:9c:6e:26:fc:62:ba:eb:75:e5:8b:4e:79:c7:9f:82:90:
e3:84:5c:5f:58:fe:6c:d1:4c:88:8e:fe:3e:64:95:5f:6f:56:
d7:c8:7c:c3:77:cf:08:18:4e:32:c0:9e:a4:d5:27:15:dc:dc:
d7:a9:f4:58:3f:ee:63:4c:3a:db:07:72:49:b4:ed:e8:66:04:
6f:84:76:3e:2c:18:e5:d7:6b:7e:41:b4:34:83:e8:a5:1d:39:
f1:d4:ef:bf:85:a7:54:e9:cb:2a:65:e5:e3:77:42:55:b6:a1:
04:47:bb:b5:e5:81:82:12:2a:54:da:1e:97:09:8a:3d:4f:d3:
92:76:69:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:47:23 2025 by rpki-client