Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e2034383030.roa
File: 3130332e3132302e3233332e302f32342d3234203d3e2034383030.roa (raw, json)
Hash identifier: 9MtyVzSA4VMwDCupiOyuohqq8njDtlZpU7JiCPF6EBI=
Subject key identifier: 89:C4:6A:35:11:10:BF:74:5F:80:89:FC:2A:1D:75:55:0D:E3:35:C2
Certificate issuer: /CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51
Certificate serial: 7A481D877BB2E0F3DF58EC5AC16DE3527DD8B892
Authority key identifier: 33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e2034383030.roa
Signing time: Thu 18 Jul 2024 04:49:44 +0000
ROA not before: Thu 18 Jul 2024 04:44:44 +0000
ROA not after: Thu 17 Jul 2025 04:49:44 +0000
asID: 4800
IP address blocks: 103.120.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:48:1d:87:7b:b2:e0:f3:df:58:ec:5a:c1:6d:e3:52:7d:d8:b8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51
Validity
Not Before: Jul 18 04:44:44 2024 GMT
Not After : Jul 17 04:49:44 2025 GMT
Subject: CN=89C46A351110BF745F8089FC2A1D75550DE335C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:91:e8:11:04:02:01:d5:e8:17:fe:11:d8:05:
96:2a:09:e7:ab:fc:b2:9a:7e:1b:8d:36:dc:3f:c9:
dc:68:b9:47:5c:0e:d8:3a:4a:73:bc:28:94:63:5d:
a4:b8:31:a8:e7:90:f0:ab:e2:ec:ab:62:39:df:2c:
e2:d7:2c:de:46:fe:bf:5f:ae:8a:50:2c:ec:1e:95:
37:0e:ea:a8:4d:e6:22:96:9e:d6:f0:71:44:11:5e:
ac:3d:a5:8c:5e:d9:51:15:d8:fd:f8:e1:ae:a4:e5:
a7:29:88:c7:3a:bb:3e:91:28:b6:a0:8f:5d:91:a8:
8c:ef:67:57:42:c4:b9:9a:29:56:ff:74:ca:39:bd:
a9:d7:5d:a1:72:e6:85:bc:3e:ad:dc:5a:a1:9e:4d:
00:94:0a:33:4e:70:3b:d8:4a:73:06:0f:a7:b2:47:
0a:7a:b4:c7:54:a3:97:8f:44:b0:02:93:61:6c:f5:
4d:8a:33:f4:ca:72:8b:bf:58:ed:59:7b:44:45:a5:
ae:b8:d9:ef:5f:f2:e5:c8:81:31:a0:12:df:b4:43:
d5:13:51:cd:3b:eb:f9:8d:db:2d:94:e9:56:1c:a2:
23:6e:cc:58:54:11:d6:bd:c6:17:34:e8:50:95:17:
09:11:fb:de:62:ed:29:ec:b7:36:b4:22:fe:1e:fc:
24:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C4:6A:35:11:10:BF:74:5F:80:89:FC:2A:1D:75:55:0D:E3:35:C2
X509v3 Authority Key Identifier:
keyid:33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e2034383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.120.233.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:58:90:64:d5:0d:67:88:35:1f:28:04:04:3f:de:11:35:03:
79:a3:75:e2:05:84:1b:3a:4f:b6:ad:65:cd:0d:32:96:9b:80:
ce:02:7c:3d:dc:be:22:c8:b5:ab:99:9f:0b:be:52:b8:0e:21:
71:db:14:d1:d7:da:53:39:b4:ba:b6:61:d7:9c:2f:92:13:90:
e5:65:30:ec:92:1c:b7:0c:c9:fb:07:77:c5:6b:76:b9:93:54:
ce:45:c2:b7:9d:dc:fa:c2:7a:9e:01:fc:6a:c7:41:be:dc:6c:
30:88:84:dd:f9:52:be:c2:d6:ee:29:1a:64:61:65:b8:46:26:
a2:ca:2e:dd:13:86:5a:e8:5b:9d:24:f9:c9:ad:00:09:0a:c2:
75:be:2b:07:a6:6e:eb:15:46:d7:f7:cc:c3:8c:8d:8c:29:09:
f5:0f:c6:a1:ca:88:b4:6a:4a:4a:77:c0:00:ce:0b:1e:fb:c1:
82:0a:d3:97:c7:3a:3b:44:89:3c:62:79:f6:92:8d:d8:0e:05:
63:98:8b:17:d2:d9:13:ee:a8:36:94:05:f0:13:16:55:d9:7b:
a0:d3:1c:33:b9:34:96:49:62:d9:49:a3:ad:84:a2:a6:8a:b6:
d9:bc:fc:cf:2e:a0:03:4d:c7:14:8b:91:07:ab:6a:13:91:c5:
6d:34:a1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:44:32 2025 by rpki-client