Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/adbd3a50-832e-4127-94e1-48ace164cf26/0/3130332e35392e3136312e302f32342d3234203d3e20313530343933.roa
File: 3130332e35392e3136312e302f32342d3234203d3e20313530343933.roa (raw, json)
Hash identifier: oWlm0WfD06WgR8Wc0A4tmY3iI4b153Ug7nkdQTc8oqc=
Subject key identifier: 93:6F:14:C7:3F:94:CF:4E:CB:4D:7B:BC:AA:6B:8E:36:74:30:F7:B1
Certificate issuer: /CN=9481EF5008E46F3618B42A0945A1522D5C041511
Certificate serial: 70DDF3786BBC15BC53442515D9C35CA9F6F6D24B
Authority key identifier: 94:81:EF:50:08:E4:6F:36:18:B4:2A:09:45:A1:52:2D:5C:04:15:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9481EF5008E46F3618B42A0945A1522D5C041511.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/adbd3a50-832e-4127-94e1-48ace164cf26/0/3130332e35392e3136312e302f32342d3234203d3e20313530343933.roa
Signing time: Thu 05 Dec 2024 06:00:03 +0000
ROA not before: Thu 05 Dec 2024 05:55:03 +0000
ROA not after: Thu 04 Dec 2025 06:00:03 +0000
asID: 150493
IP address blocks: 103.59.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:dd:f3:78:6b:bc:15:bc:53:44:25:15:d9:c3:5c:a9:f6:f6:d2:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9481EF5008E46F3618B42A0945A1522D5C041511
Validity
Not Before: Dec 5 05:55:03 2024 GMT
Not After : Dec 4 06:00:03 2025 GMT
Subject: CN=936F14C73F94CF4ECB4D7BBCAA6B8E367430F7B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3f:a7:c2:25:18:50:26:c4:16:69:34:b0:b4:
44:cc:6e:18:29:65:e9:02:3c:f4:98:41:de:cd:21:
3a:50:d8:26:d4:4f:aa:5c:34:d2:f9:30:14:bf:67:
a5:75:1f:f4:de:83:f9:6d:ad:3e:f4:44:a2:13:19:
05:c4:fe:b5:eb:7e:5d:1c:34:67:b7:13:61:33:05:
63:32:0c:ea:f4:45:66:83:ef:78:bc:20:6d:bf:a9:
76:f3:59:01:46:b5:76:c2:d7:21:39:9e:2b:03:bf:
58:a6:f1:69:f4:26:56:a4:fb:ac:d8:c7:b9:27:1c:
fe:3a:29:6f:77:70:58:27:af:8c:92:c4:24:b6:77:
ec:6d:09:be:ce:86:49:4e:2e:21:e6:26:e9:ef:63:
f7:06:d6:07:63:99:ef:82:c9:6a:82:47:c9:f6:7b:
c3:74:90:80:11:df:e8:11:7e:06:ef:39:72:ba:61:
c1:3c:6e:a6:68:06:fb:2b:b6:5a:c0:25:d2:62:7a:
ab:1a:57:a8:dd:b5:4d:f5:c8:b0:2a:0c:b8:e2:11:
7f:6e:57:bf:5b:2d:1d:97:12:6d:90:7d:da:a7:8e:
84:ec:d6:74:09:43:fb:04:07:10:42:a7:88:71:42:
2f:0d:64:5b:4f:22:01:65:ce:91:1e:91:c3:06:97:
2e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6F:14:C7:3F:94:CF:4E:CB:4D:7B:BC:AA:6B:8E:36:74:30:F7:B1
X509v3 Authority Key Identifier:
keyid:94:81:EF:50:08:E4:6F:36:18:B4:2A:09:45:A1:52:2D:5C:04:15:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/adbd3a50-832e-4127-94e1-48ace164cf26/0/9481EF5008E46F3618B42A0945A1522D5C041511.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9481EF5008E46F3618B42A0945A1522D5C041511.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/adbd3a50-832e-4127-94e1-48ace164cf26/0/3130332e35392e3136312e302f32342d3234203d3e20313530343933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.59.161.0/24
Signature Algorithm: sha256WithRSAEncryption
62:90:15:c6:7f:31:1d:b0:1d:74:99:99:a4:d7:4b:21:a2:07:
86:14:f3:1d:45:47:9d:6f:33:49:26:69:70:eb:e1:f2:d8:bd:
41:de:90:f4:ec:b5:9b:be:ff:a1:e2:1b:69:91:c6:e9:25:86:
7e:43:c5:83:c0:df:c3:f3:60:a8:ea:d5:b6:8f:86:9a:2c:da:
85:50:6f:dc:87:84:a6:76:5f:d0:b7:ea:30:d0:6b:5f:1f:fb:
3d:8e:56:47:c7:58:24:89:70:32:b6:87:a2:d7:f8:e3:11:bb:
45:45:cb:43:45:16:48:71:89:49:7b:2a:48:fd:38:75:a8:5c:
5c:fa:7d:73:60:ac:b9:31:77:1c:7c:0b:a4:b9:c9:34:c6:8b:
3c:a8:ae:ed:46:50:7d:ce:ef:7b:e1:64:69:cc:8a:8a:57:d9:
4f:08:c6:5f:04:b8:e2:c0:ce:40:ee:15:21:e3:23:17:5e:69:
ac:a7:75:ff:c9:42:51:4e:d5:12:6d:1d:1a:50:16:3a:44:f0:
f4:e9:ff:b3:5b:91:02:d4:7f:8c:06:86:91:57:4a:23:8a:87:
c7:77:80:43:44:56:f3:ed:76:d5:29:38:3f:ec:9f:9f:ed:9c:
f3:62:74:68:b3:8c:ca:47:52:81:9a:2c:c2:e2:30:71:dc:b8:
32:cd:18:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:07 2025 by rpki-client