Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/3130332e33392e35302e302f32332d3233203d3e203633353031.roa
File: 3130332e33392e35302e302f32332d3233203d3e203633353031.roa (raw, json)
Hash identifier: OU3nHib94s48uA3g9X8DWTlyuO1snSUoniGNoRGcx48=
Subject key identifier: 91:74:18:AF:B2:7D:B6:C6:14:98:EF:B4:89:03:5A:63:44:53:9C:84
Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1
Certificate serial: 436A7B0CE6186DBF45ACC5B0BEFB946BD512B92B
Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/3130332e33392e35302e302f32332d3233203d3e203633353031.roa
Signing time: Sun 23 Jun 2024 18:00:02 +0000
ROA not before: Sun 23 Jun 2024 17:55:02 +0000
ROA not after: Sun 22 Jun 2025 18:00:02 +0000
asID: 63501
IP address blocks: 103.39.50.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:6a:7b:0c:e6:18:6d:bf:45:ac:c5:b0:be:fb:94:6b:d5:12:b9:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1
Validity
Not Before: Jun 23 17:55:02 2024 GMT
Not After : Jun 22 18:00:02 2025 GMT
Subject: CN=917418AFB27DB6C61498EFB489035A6344539C84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c8:cc:9f:83:59:6d:af:c1:5d:29:40:7c:8b:
06:08:ef:f9:85:72:85:9b:4e:fb:15:6a:2d:cf:ac:
b2:b7:fa:0b:7f:c4:a6:7b:3f:60:23:99:a4:4d:24:
d4:06:5f:5e:33:2f:8d:92:75:9b:ed:fc:a4:22:61:
4c:fa:9f:1c:9a:ed:13:a9:bd:47:64:16:cf:07:94:
f6:80:29:b8:9c:6c:da:b9:b1:91:5d:17:f9:7d:64:
51:25:11:e5:66:69:37:7f:54:9e:01:0c:02:b6:61:
02:77:e2:da:e0:a5:67:07:e2:1b:eb:d5:5c:4e:0f:
b6:05:e2:90:08:52:64:d2:8b:8b:f7:79:0f:df:01:
94:d3:3a:7c:71:ae:96:3b:41:75:fa:84:97:f4:fb:
19:14:f0:d0:36:ba:0d:5d:f5:07:b9:2e:55:3f:ea:
de:e3:7c:c9:84:6a:57:f3:38:6d:64:bc:fb:99:5b:
03:2f:f5:1e:92:a0:63:48:47:1a:db:27:09:f8:ce:
08:c8:84:6b:d0:39:6f:91:1a:56:36:a0:a4:e0:ae:
31:f8:ba:0e:16:22:01:24:35:73:7b:cf:6d:5c:94:
0a:fc:95:7a:85:e0:9d:46:3f:cb:80:6c:8c:ed:1e:
9d:d6:5f:2d:56:23:af:b1:ea:2a:3a:e3:7e:f0:30:
53:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:74:18:AF:B2:7D:B6:C6:14:98:EF:B4:89:03:5A:63:44:53:9C:84
X509v3 Authority Key Identifier:
keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/3130332e33392e35302e302f32332d3233203d3e203633353031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.39.50.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:ac:7b:cc:6f:f7:84:f1:50:8d:3b:ad:56:42:78:93:d2:8c:
9b:a7:3a:a6:84:7e:46:82:64:9c:3b:2a:4e:ed:87:61:27:4d:
d8:46:eb:37:6b:52:01:4a:1d:c7:e5:23:79:4a:fd:51:28:52:
6f:5a:e0:67:f2:2b:db:04:48:46:8e:f4:ac:34:a5:7f:b0:cf:
26:1d:ac:3c:ab:25:d3:b0:da:c6:2a:12:82:c5:a2:a6:87:c5:
6d:f4:f4:66:f8:7d:57:7b:d6:ea:7c:e3:d7:86:6f:70:11:c9:
01:69:88:10:ec:5e:c6:5a:2d:cb:3d:da:21:d1:b7:5d:e5:2a:
96:8a:7d:b3:e4:80:c3:5f:34:07:fd:56:5d:50:13:60:ad:c1:
c3:7b:fc:ca:96:63:37:d2:c5:05:87:ad:09:ff:64:61:02:ab:
67:3c:d5:38:3c:15:06:13:22:8d:d5:66:20:65:a1:ae:bb:6f:
10:92:d0:46:53:c3:cd:bf:b1:7c:ce:30:56:2b:66:55:ca:b1:
b3:01:18:1c:4f:29:77:bd:3d:e4:c9:26:8b:91:19:25:9d:b7:
d9:eb:83:98:2f:de:d4:16:b7:74:9c:6d:89:3d:fe:62:8b:e9:
be:e9:06:4f:74:61:ec:be:a0:ae:30:7d:82:82:c1:13:5a:2a:
29:15:10:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:05:46 2025 by rpki-client