Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32332d3233203d3e20313432333636.roa
File: 3130332e3137302e33302e302f32332d3233203d3e20313432333636.roa (raw, json)
Hash identifier: /5HPI/v4iubSCQroqnhPXE4GtPrs5UXNLGr3H1hdfDc=
Subject key identifier: E4:2F:10:40:BA:CE:28:2B:6B:F6:EA:DA:0C:21:9E:87:1D:02:E0:D5
Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C
Certificate serial: 412A0355D22CCA58758B01CC4E6F3C2C189F4D8E
Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32332d3233203d3e20313432333636.roa
Signing time: Sat 15 Jun 2024 10:00:01 +0000
ROA not before: Sat 15 Jun 2024 09:55:01 +0000
ROA not after: Sat 14 Jun 2025 10:00:01 +0000
asID: 142366
IP address blocks: 103.170.30.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:2a:03:55:d2:2c:ca:58:75:8b:01:cc:4e:6f:3c:2c:18:9f:4d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C
Validity
Not Before: Jun 15 09:55:01 2024 GMT
Not After : Jun 14 10:00:01 2025 GMT
Subject: CN=E42F1040BACE282B6BF6EADA0C219E871D02E0D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2e:f7:66:84:24:7c:af:7e:91:1f:f2:56:aa:
c6:31:57:ea:bc:99:ed:90:87:02:6c:d3:00:cd:3c:
e6:d4:3e:d9:93:22:d0:98:89:07:47:5f:d8:56:03:
65:90:fd:fc:c6:d7:ef:e6:68:6c:7b:7c:73:d8:44:
20:bf:4f:2e:f7:ed:c5:ad:01:25:17:7c:08:e9:37:
ec:3f:3e:16:09:46:25:0b:ba:cd:b8:69:d0:d7:6f:
61:3f:bf:dd:b6:89:9f:ae:d1:60:38:cc:4c:e2:6e:
e8:2a:66:20:d0:3c:d0:6f:9b:87:4e:55:f9:c7:09:
a2:ea:b6:a6:f5:9f:f1:b8:f3:85:b7:3a:75:3d:fa:
1e:8f:c4:8c:ef:a6:06:64:84:b6:25:01:7f:23:cf:
00:23:3e:5b:ca:d0:a4:70:cc:05:64:42:a2:4f:20:
5e:51:2d:0d:2a:5e:a3:57:d2:95:88:e5:65:7b:08:
93:b3:5f:87:34:f2:40:82:b8:4c:05:be:4e:d1:87:
5d:59:8f:66:8d:94:44:85:32:af:c7:6c:3a:f2:85:
20:71:7e:79:4b:92:f6:10:0d:c6:50:f9:fd:64:b9:
5e:9e:8e:95:e2:11:42:2e:5a:c5:61:17:eb:64:8b:
1e:ff:27:f4:b9:be:44:38:44:38:88:03:fd:fe:20:
bb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2F:10:40:BA:CE:28:2B:6B:F6:EA:DA:0C:21:9E:87:1D:02:E0:D5
X509v3 Authority Key Identifier:
keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/3130332e3137302e33302e302f32332d3233203d3e20313432333636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.170.30.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:98:d2:2e:88:ec:19:87:53:4a:0d:12:05:11:ca:60:d4:62:
c0:e1:c2:b0:d7:ac:16:9b:c5:cc:c2:8a:9b:79:fc:b7:79:8e:
57:45:05:f9:2a:84:33:33:de:28:74:73:6d:79:a1:b9:c9:79:
5f:6b:6d:62:e5:0e:48:c8:7a:de:f8:b9:5d:8c:8a:21:b6:01:
2c:96:14:1f:4c:37:c3:44:82:b8:c7:1f:93:b3:bc:db:13:01:
5f:4e:ce:e5:f6:38:d9:d9:9f:73:b2:24:b2:4a:8e:94:f7:25:
5a:1e:99:9c:03:11:95:02:38:fa:c1:57:c8:74:29:21:eb:8a:
43:51:90:ad:2b:8c:bd:36:6d:36:c3:25:13:b4:62:cf:84:06:
85:19:c9:7f:6c:a9:5a:91:98:4a:f1:35:6f:21:8c:77:21:ff:
c3:22:b4:fc:35:21:b3:b0:12:a0:c6:ec:96:8d:b0:3f:c7:a7:
c2:84:cd:9a:ac:4f:03:79:dd:92:8f:16:29:52:4b:c5:5e:eb:
5d:99:76:2c:88:2a:e8:a4:e4:72:5e:c7:d6:46:90:ff:43:c2:
c7:28:f7:b5:39:3a:60:8c:38:e1:b9:15:a5:bc:9f:3e:a8:2c:
1a:f9:54:65:2d:3f:17:50:ab:44:8c:45:12:c0:cc:4a:3b:16:
b1:c2:cb:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:36:43 2025 by rpki-client