Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32332d3233203d3e20313531353134.roa
File: 3130332e3232372e342e302f32332d3233203d3e20313531353134.roa (raw, json)
Hash identifier: ITLyFu1Ls0Ci12l43DmrSkBj5B2lVNQ/8Ynx9TiHrL0=
Subject key identifier: 03:8C:CA:B1:73:01:53:A1:1A:A1:46:9E:CC:C0:7C:FD:34:A9:A5:0C
Certificate issuer: /CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609
Certificate serial: 278ED0E5E3E5FADC23BA47E0E1CF3340610BA43A
Authority key identifier: 83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32332d3233203d3e20313531353134.roa
Signing time: Mon 30 Sep 2024 04:00:35 +0000
ROA not before: Mon 30 Sep 2024 03:55:35 +0000
ROA not after: Mon 29 Sep 2025 04:00:35 +0000
asID: 151514
IP address blocks: 103.227.4.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:8e:d0:e5:e3:e5:fa:dc:23:ba:47:e0:e1:cf:33:40:61:0b:a4:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609
Validity
Not Before: Sep 30 03:55:35 2024 GMT
Not After : Sep 29 04:00:35 2025 GMT
Subject: CN=038CCAB1730153A11AA1469ECCC07CFD34A9A50C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:15:88:79:fe:fd:9d:98:b0:4f:a0:0e:5f:d3:
68:ff:6f:af:7c:6e:7f:5a:c8:a6:1c:48:cf:fb:4d:
07:60:2e:55:08:0c:31:53:54:9f:ef:0a:a7:42:b6:
94:95:3b:65:5a:5b:8c:53:01:d7:e1:9e:80:73:8b:
8e:23:1e:b2:22:86:a7:a3:a0:e4:73:74:cc:70:74:
30:f1:e2:be:5c:6f:2f:3f:1b:b4:a7:bd:32:5a:3e:
7c:5d:77:18:88:58:e2:7d:6c:d8:ff:6d:88:02:75:
2d:9f:fd:24:49:de:2f:94:06:de:c0:63:13:5f:e4:
22:fb:c6:09:cd:06:a6:b3:4f:6b:d7:8e:a4:6d:5a:
a7:0e:31:2b:0d:41:b8:67:f0:2a:0b:43:7c:9f:15:
68:c5:7f:10:ba:ba:a8:65:c3:0f:98:4d:24:be:7d:
9e:b2:b5:6f:d3:c4:3d:30:ba:4d:21:eb:5b:9f:ea:
8c:98:83:5a:3a:a2:a4:e6:6b:a2:67:7c:5a:76:56:
6e:0f:1d:e8:41:c2:6b:fd:28:39:b1:1d:46:06:8a:
1a:80:29:13:c9:1f:a7:6b:66:91:1f:5c:39:4c:f2:
b4:e7:f2:6b:0c:0a:dd:88:65:19:ab:90:b1:e8:e0:
00:1c:26:be:97:51:0e:dc:32:83:12:f6:4a:22:dd:
67:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8C:CA:B1:73:01:53:A1:1A:A1:46:9E:CC:C0:7C:FD:34:A9:A5:0C
X509v3 Authority Key Identifier:
keyid:83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32332d3233203d3e20313531353134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.227.4.0/23
Signature Algorithm: sha256WithRSAEncryption
68:22:7b:83:d5:3f:8d:ba:c6:82:2f:80:65:1a:95:7f:a3:4d:
15:ca:70:5d:1f:2b:d0:00:ea:92:f8:92:41:d8:05:d8:86:54:
01:ec:51:fe:e9:e1:b5:dd:66:f2:af:ec:80:f5:29:5d:4b:13:
12:f4:48:6c:31:cc:84:d6:5d:d1:67:f3:a8:19:bf:43:56:06:
62:24:57:09:e0:a5:14:37:cb:f4:d0:a1:90:c8:91:c4:a1:8a:
cd:ea:02:dc:7f:ed:9f:8f:c8:ff:53:f8:88:6b:ab:60:36:ad:
b9:cc:5a:42:25:59:87:a6:96:d4:d1:dc:9b:d5:6a:e3:54:36:
c8:1c:e4:95:fb:99:cb:59:66:10:f3:5d:0a:6d:62:9a:db:27:
52:41:f2:db:74:89:8b:ea:22:a8:b1:f7:91:34:95:e5:d5:32:
a4:00:be:0c:61:39:77:4b:28:e0:72:6c:a1:3e:f5:0e:b4:d4:
55:ad:c9:ad:00:1b:da:f6:cd:15:9e:4e:0e:44:54:50:b2:08:
ab:11:0c:20:7c:bc:7a:51:db:fa:9c:39:89:a4:47:96:0e:d0:
4c:d9:96:44:a5:42:96:0b:3c:91:1f:24:cf:9d:bd:68:34:77:
c3:01:51:c5:cd:90:0f:c2:c5:1f:28:a2:98:cf:6c:07:3c:2f:
2b:0b:94:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:53:11 2025 by rpki-client