Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa
File: 3130332e3232372e342e302f32342d3234203d3e20313531353134.roa (raw, json)
Hash identifier: TQUOGgnpygpm3E58lKQ0df5PgwIbrwKhVW+LboJlm4g=
Subject key identifier: 34:75:DB:96:83:7E:AF:4A:9D:53:DE:0F:27:0A:65:3F:EF:3C:5E:52
Certificate issuer: /CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609
Certificate serial: 5FA58A7DB355D860427D36D0122E1758DE5FF632
Authority key identifier: 83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa
Signing time: Mon 30 Sep 2024 04:00:35 +0000
ROA not before: Mon 30 Sep 2024 03:55:35 +0000
ROA not after: Mon 29 Sep 2025 04:00:35 +0000
asID: 151514
IP address blocks: 103.227.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:a5:8a:7d:b3:55:d8:60:42:7d:36:d0:12:2e:17:58:de:5f:f6:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83FA427FFAE02D80047A8B5F44D938E2CA6DB609
Validity
Not Before: Sep 30 03:55:35 2024 GMT
Not After : Sep 29 04:00:35 2025 GMT
Subject: CN=3475DB96837EAF4A9D53DE0F270A653FEF3C5E52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ea:f8:0c:0a:55:33:3d:3f:30:fb:52:eb:b2:
f4:1a:15:4b:ed:90:17:82:30:bf:ab:1b:e6:69:87:
3e:45:61:12:87:bf:50:d3:ef:41:80:a7:9b:44:65:
54:4b:14:e4:fa:79:4a:42:a9:be:62:27:42:dc:b0:
da:78:95:ca:d7:3b:d5:80:7f:88:47:d6:a3:9d:0f:
12:10:64:3a:ea:9b:e1:6c:6c:fe:66:29:c4:98:05:
f5:d3:56:8f:50:95:43:e2:1a:37:e0:96:8a:76:ab:
56:65:e0:cd:d5:e9:56:ea:db:e2:5a:8f:20:fd:9a:
a9:3e:28:2b:4d:9d:73:14:e3:f7:c7:e6:23:e0:7d:
44:5b:4f:09:6c:dd:24:c7:dd:16:a1:dd:70:d5:d6:
3a:0f:cb:9d:41:99:44:9c:33:51:c0:f7:ff:ba:50:
cc:45:33:f7:97:0d:01:d8:0d:23:40:c3:0b:72:8d:
a7:3a:40:f1:c8:6a:87:1f:94:c6:bd:3f:c4:b6:ef:
39:eb:7d:de:70:f8:6b:2c:13:28:10:26:53:84:03:
00:fa:e8:ce:94:dd:bb:ec:2a:13:01:7e:f5:6b:28:
1b:58:fe:10:45:cd:6c:fb:21:08:5b:82:fb:05:82:
3b:2c:2e:bf:74:07:30:61:19:03:4e:dc:a2:09:4e:
61:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:75:DB:96:83:7E:AF:4A:9D:53:DE:0F:27:0A:65:3F:EF:3C:5E:52
X509v3 Authority Key Identifier:
keyid:83:FA:42:7F:FA:E0:2D:80:04:7A:8B:5F:44:D9:38:E2:CA:6D:B6:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83FA427FFAE02D80047A8B5F44D938E2CA6DB609.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae7b9476-7e38-4c50-a624-b2443c70bb4d/0/3130332e3232372e342e302f32342d3234203d3e20313531353134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.227.4.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:bd:8d:2b:29:bb:77:42:0c:d6:3f:da:80:57:f8:09:cd:ab:
f4:c4:21:d9:7d:bb:46:e7:75:48:fd:0b:2f:61:92:3f:30:aa:
07:fd:b9:91:51:55:7b:d5:f9:49:00:59:8b:2d:67:bd:05:8f:
84:ec:17:c9:bb:e5:77:fc:4a:30:de:a9:1a:9e:86:e5:b1:a0:
41:2e:77:9f:a8:25:7b:cb:13:f0:bf:2f:0a:5c:e9:00:00:9a:
27:53:bd:98:d1:af:6a:cd:17:39:89:23:e1:66:21:3a:81:bb:
05:41:8b:d7:41:35:c5:c9:d9:db:65:ea:af:d7:a4:2a:56:aa:
a4:b5:54:0f:7b:2c:10:9b:99:7d:02:08:27:4e:d6:af:f9:63:
b8:f6:ea:6d:df:a5:5a:1a:55:c9:9b:7a:cc:99:86:48:1f:0d:
88:35:37:74:a6:49:07:9c:99:23:17:b9:d8:a2:16:9e:30:5e:
48:0d:e9:0d:65:51:7a:a4:dd:9d:88:6f:f1:cf:01:8c:80:2c:
22:e5:26:5a:12:12:45:df:c4:cf:9e:41:1a:23:21:b7:5e:c4:
c1:14:ba:d3:23:04:de:fc:e7:84:73:d2:83:0b:92:c2:93:34:
14:2a:44:e4:a0:2a:bd:f2:f8:d2:a8:f7:63:37:c7:a3:01:9b:
64:92:21:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:55:05 2025 by rpki-client