Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131322e302f32332d3233203d3e20313431363032.roa
File: 3130332e3135392e3131322e302f32332d3233203d3e20313431363032.roa (raw, json)
Hash identifier: Zh9yKUya68h/gfZdY5OLv/CmqrIF4OCK15Be8++2oOg=
Subject key identifier: 4F:45:90:5B:F1:F8:B7:1C:AB:CB:46:88:CB:8F:A8:34:BD:76:BB:B6
Certificate issuer: /CN=A00E9E21EE9327F05930AF9DD5847A98BCE26C66
Certificate serial: 0C22EADBC9A829D9E4F782FF457D6ECF483FE123
Authority key identifier: A0:0E:9E:21:EE:93:27:F0:59:30:AF:9D:D5:84:7A:98:BC:E2:6C:66
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131322e302f32332d3233203d3e20313431363032.roa
Signing time: Fri 21 Jun 2024 10:01:19 +0000
ROA not before: Fri 21 Jun 2024 09:56:19 +0000
ROA not after: Fri 20 Jun 2025 10:01:19 +0000
asID: 141602
IP address blocks: 103.159.112.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:22:ea:db:c9:a8:29:d9:e4:f7:82:ff:45:7d:6e:cf:48:3f:e1:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A00E9E21EE9327F05930AF9DD5847A98BCE26C66
Validity
Not Before: Jun 21 09:56:19 2024 GMT
Not After : Jun 20 10:01:19 2025 GMT
Subject: CN=4F45905BF1F8B71CABCB4688CB8FA834BD76BBB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:7d:2c:c5:77:e7:0e:3b:a9:7f:ef:e0:99:
8c:c1:11:80:78:bb:5d:f4:af:51:8e:37:78:69:e5:
a5:69:ac:05:c6:29:49:1b:0c:7b:46:e1:3d:4e:95:
34:ff:2e:b6:42:24:df:b5:e5:69:ec:fd:9c:b0:c4:
61:86:fd:e5:b0:82:41:bb:4d:68:86:06:45:23:dc:
47:b2:bb:04:38:40:cd:91:8c:e6:65:98:69:de:48:
31:81:c5:e5:4f:24:49:57:d1:42:84:f5:58:aa:f7:
07:5a:bd:3e:6d:b7:18:c8:b4:85:f9:1c:77:20:af:
c5:3a:e8:d1:cd:c2:e2:6a:9a:02:c4:8c:6d:77:68:
88:a5:0e:29:36:21:36:b8:92:c7:9b:83:75:ff:e0:
a4:33:a9:5c:39:d7:68:75:42:c0:dc:51:8b:8d:59:
65:a5:78:53:1c:82:27:98:86:dc:a4:af:1c:f7:91:
99:81:9b:b3:8f:db:80:e5:e5:d7:d8:03:5f:8e:56:
c3:8a:d6:f9:a3:40:37:f6:72:71:78:56:19:b2:6e:
79:f7:75:c0:92:3d:4d:b2:a2:21:2a:e4:e2:35:08:
81:81:8a:f1:a3:fe:3e:15:a6:46:d4:20:b5:22:11:
b2:92:46:47:27:2e:41:d9:c8:d4:29:83:15:a7:32:
32:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:45:90:5B:F1:F8:B7:1C:AB:CB:46:88:CB:8F:A8:34:BD:76:BB:B6
X509v3 Authority Key Identifier:
keyid:A0:0E:9E:21:EE:93:27:F0:59:30:AF:9D:D5:84:7A:98:BC:E2:6C:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A00E9E21EE9327F05930AF9DD5847A98BCE26C66.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a198f7f8-e715-4b79-af32-2e51541a34ff/0/3130332e3135392e3131322e302f32332d3233203d3e20313431363032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.159.112.0/23
Signature Algorithm: sha256WithRSAEncryption
96:a2:9e:a0:60:c2:1f:e4:f5:ef:7b:3e:d3:66:89:49:e4:9c:
68:90:fc:c9:74:33:6a:02:f6:05:72:82:1f:40:c0:56:15:cf:
86:c8:97:25:b0:6c:ec:48:5a:6a:62:aa:57:fa:cb:2f:0a:1b:
1c:a4:ad:fb:89:76:e3:88:98:6c:e9:b1:94:0f:a0:47:30:3b:
fa:d0:d0:dd:1c:6a:e6:27:f8:82:18:e0:1f:2c:f8:9e:59:13:
71:cf:ca:cc:19:75:34:51:16:d6:23:69:a0:f2:47:17:e4:8b:
42:33:92:91:0b:7d:42:3f:f8:72:fd:1f:6f:94:04:7b:fe:74:
39:13:60:29:9b:bd:34:2a:d2:3c:0a:0a:c3:6e:7e:7b:d4:4e:
19:a9:89:31:8d:8d:b8:68:b6:e8:d4:a0:26:c3:b3:1b:07:06:
db:4c:56:28:1f:a6:b8:ae:da:ea:2c:ec:36:16:05:02:17:aa:
cf:72:62:4f:ef:ca:d4:7d:be:9e:6f:b5:85:12:88:1b:b3:20:
23:47:c4:7b:28:da:f2:96:09:67:2d:0e:92:40:af:34:c3:8a:
05:81:71:a5:0f:11:d5:72:7b:27:13:6d:10:d8:a2:cd:18:3a:
b8:85:10:dd:87:0d:ae:99:95:67:ea:11:49:44:bc:c7:ca:b2:
8b:25:69:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:13:37 2025 by rpki-client