Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa
File: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (raw, json)
Hash identifier: zzTNZ4xzQEOmQw8ycNtJFjGo6ll3tDYLpBJW9o97EtU=
Subject key identifier: 73:AB:87:97:38:A3:A5:C0:A3:9D:B7:08:A1:C9:FB:B9:81:15:00:74
Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB
Certificate serial: 1D3AA79BFE77DE95B10B71E8128040DDF40179F9
Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa
Signing time: Mon 01 Jul 2024 01:04:49 +0000
ROA not before: Mon 01 Jul 2024 00:59:49 +0000
ROA not after: Mon 30 Jun 2025 01:04:49 +0000
asID: 63497
IP address blocks: 103.232.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:3a:a7:9b:fe:77:de:95:b1:0b:71:e8:12:80:40:dd:f4:01:79:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB
Validity
Not Before: Jul 1 00:59:49 2024 GMT
Not After : Jun 30 01:04:49 2025 GMT
Subject: CN=73AB879738A3A5C0A39DB708A1C9FBB981150074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:67:2d:37:1f:cb:c2:1a:47:fb:d4:d7:58:c0:
cf:6b:88:03:5b:2e:29:52:9e:bc:2e:f5:70:6f:bb:
0a:83:3b:5c:db:c4:70:7d:4b:1a:4d:fc:78:d6:30:
ea:d1:a6:f4:f5:52:17:ed:c2:90:5c:83:7a:f4:a6:
86:c6:18:7e:2e:1e:82:4f:07:41:b3:3b:7a:02:eb:
7e:cb:0a:da:f8:42:f8:e1:3b:7d:a3:31:7b:9a:17:
d1:e8:5e:c5:19:34:10:40:30:e3:8f:f5:9c:dc:e8:
9d:cc:7f:2a:34:5e:56:ff:2c:47:1d:f7:8b:62:86:
9f:c6:ce:b1:70:5f:04:87:7c:98:f0:c5:5d:ba:e5:
89:10:1f:00:fb:87:83:34:7b:db:14:11:f5:99:cc:
6b:ec:ca:72:3d:c3:d1:77:3e:fb:ce:34:d0:16:74:
e0:98:d9:08:98:dc:ad:cd:46:9f:13:69:fa:03:c6:
5e:f5:23:5a:40:f7:1c:95:09:65:8f:13:cb:1e:6b:
b8:75:a7:80:42:79:20:e3:aa:80:cb:09:a0:7f:69:
7a:f5:bf:fc:5d:48:9d:c0:65:9a:ef:f4:33:47:05:
05:e0:6d:f4:69:bb:7f:39:b8:be:2a:9f:c6:8e:62:
22:2e:46:a0:7d:1a:1f:d1:b0:1e:55:6d:32:50:39:
68:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AB:87:97:38:A3:A5:C0:A3:9D:B7:08:A1:C9:FB:B9:81:15:00:74
X509v3 Authority Key Identifier:
keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.232.242.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:f8:a0:d7:56:23:e8:ef:f6:a8:ea:a9:c3:37:1e:29:6f:05:
fa:29:b0:c7:6b:6b:f7:ad:bf:e4:83:83:d9:5d:1e:b8:50:d6:
a4:c5:09:f9:c8:f8:ea:f8:34:27:f1:ba:56:fa:5e:6a:ea:cf:
c7:81:0f:96:e9:2b:ee:9b:e2:9b:7c:41:b8:6c:e3:e8:4f:5e:
5d:79:c5:4f:29:53:c2:1b:f2:c1:df:07:1c:12:7c:29:ea:b5:
94:e8:cb:f5:4a:f5:2d:bb:09:f2:97:dd:6f:20:9f:18:2b:a5:
ae:84:01:9e:46:97:0a:c6:b7:e7:15:1d:d3:31:f8:cd:59:e1:
33:7b:8d:90:4e:c1:fe:8b:58:62:54:d9:77:93:4d:a5:09:cc:
8e:c2:65:20:38:fe:47:40:07:89:20:a0:32:f1:00:c5:65:1f:
8c:44:ba:a1:b6:30:43:c4:b7:17:aa:a7:d5:d9:1d:0e:91:35:
b2:de:b1:5b:72:1e:45:95:94:36:02:61:c4:5e:b7:72:81:4a:
f1:9e:52:a2:cd:e5:ee:d3:68:e6:bd:ef:5f:5f:6e:00:1a:a4:
9b:a4:3e:c4:0f:2b:e3:03:a8:20:5b:3a:4b:4e:81:b0:2c:f9:
6e:33:9f:bd:7b:4c:7b:e5:5a:15:df:8c:8c:f4:77:ac:bd:d9:
94:b9:be:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:22:12 2025 by rpki-client