Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32332d3233203d3e20313530353535.roa
File: 3130332e38352e35322e302f32332d3233203d3e20313530353535.roa (raw, json)
Hash identifier: NceE1Gl9KqhiR2YQFfS5n58/EXQ01C8EDe6Rkx8w4+4=
Subject key identifier: 9E:08:68:D8:1C:C7:D0:AF:65:83:CA:5C:7C:6B:88:C1:44:CB:80:1B
Certificate issuer: /CN=EE12F179A5D1F52EC033677282AE7E2E72E0F2C3
Certificate serial: 02C97AB100AF64F1AEEECBC9B60D0CAC99EBAF03
Authority key identifier: EE:12:F1:79:A5:D1:F5:2E:C0:33:67:72:82:AE:7E:2E:72:E0:F2:C3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32332d3233203d3e20313530353535.roa
Signing time: Thu 11 Jul 2024 04:00:00 +0000
ROA not before: Thu 11 Jul 2024 03:55:00 +0000
ROA not after: Thu 10 Jul 2025 04:00:00 +0000
asID: 150555
IP address blocks: 103.85.52.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:c9:7a:b1:00:af:64:f1:ae:ee:cb:c9:b6:0d:0c:ac:99:eb:af:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE12F179A5D1F52EC033677282AE7E2E72E0F2C3
Validity
Not Before: Jul 11 03:55:00 2024 GMT
Not After : Jul 10 04:00:00 2025 GMT
Subject: CN=9E0868D81CC7D0AF6583CA5C7C6B88C144CB801B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:21:87:55:93:ec:a5:71:5c:a1:d6:4f:c6:1d:
6b:21:ee:ea:c3:d3:68:53:4f:80:b6:88:f7:00:06:
d6:52:a9:6a:2a:ac:36:89:e3:db:76:98:15:af:35:
59:e3:38:92:23:fa:0b:52:46:b6:f4:db:55:1a:83:
50:d2:67:89:2c:6c:c6:27:bf:ef:b8:fd:59:08:51:
25:9f:a1:26:42:d8:12:e8:1c:5a:d4:ee:7f:8b:a2:
d7:22:c1:7f:fb:88:49:0b:13:19:54:08:d2:6d:5a:
a8:30:bf:f3:1d:5e:61:72:5b:67:6e:5e:ef:7d:e5:
89:78:5a:b0:c0:57:38:be:97:9c:9a:42:9f:dd:b3:
29:e1:2a:a1:b6:43:eb:03:38:ca:dc:79:e9:4d:2d:
31:17:c9:7b:18:b4:5f:30:b7:0e:e0:76:c8:d8:d4:
5f:af:0b:e7:bf:55:1b:ad:29:cd:5c:73:c1:51:88:
50:68:9c:5f:92:08:cf:cd:bf:e9:fe:96:af:61:17:
c3:8e:eb:05:c3:db:1c:b1:7c:63:3d:59:43:e8:66:
68:07:ea:a3:da:18:ed:b7:0b:2c:6b:28:1f:c5:99:
b1:70:53:8e:7d:08:cc:54:4a:a7:d8:9e:88:69:b3:
de:dc:27:0d:5d:9f:83:64:e9:04:3e:5f:e2:af:31:
70:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:08:68:D8:1C:C7:D0:AF:65:83:CA:5C:7C:6B:88:C1:44:CB:80:1B
X509v3 Authority Key Identifier:
keyid:EE:12:F1:79:A5:D1:F5:2E:C0:33:67:72:82:AE:7E:2E:72:E0:F2:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE12F179A5D1F52EC033677282AE7E2E72E0F2C3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0d1f4ce-169b-431a-8286-c5f3a07bbbe3/0/3130332e38352e35322e302f32332d3233203d3e20313530353535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.85.52.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:18:ee:c7:51:48:b7:5b:11:ce:e4:5c:be:52:42:e2:e8:7e:
db:74:97:1c:ef:92:a6:93:13:76:bc:93:4d:d2:ad:15:02:97:
08:e6:b8:2a:60:ea:4e:c0:98:9f:10:df:30:d9:ee:e9:5d:33:
8b:ee:ce:81:a4:9e:e2:9d:81:29:61:bc:64:b8:d0:22:56:26:
3b:63:54:8e:59:c3:bd:2c:70:8d:e0:ec:a3:fb:ab:3c:30:49:
5b:27:46:36:9e:23:20:f9:21:4d:64:4d:a2:5c:0d:bd:39:44:
0e:52:cb:a7:f0:be:d0:ae:7a:15:60:8d:89:56:cd:2e:cc:da:
27:35:5d:47:9b:ed:57:42:79:4f:cb:90:13:86:d8:08:0e:36:
6d:5a:91:94:a1:47:b2:19:cc:15:9b:e4:5a:2d:ff:51:e8:8d:
3d:9e:28:a6:ff:92:3b:e0:3c:2c:74:fb:61:b9:a1:93:06:e0:
df:3c:45:ec:3b:cf:80:3b:39:b5:6d:f7:f3:84:d0:c0:02:94:
b7:6f:07:72:db:c6:20:a3:7b:12:87:5d:81:0a:e1:77:54:be:
6b:20:c4:f5:42:e7:44:37:1e:07:a0:90:c6:98:c0:58:ce:f0:
04:cb:df:23:13:f9:9f:15:5e:c3:5e:f3:67:09:96:b8:6f:7f:
94:b1:e9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:58 2025 by rpki-client