Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234342e302f32322d3234203d3e203535363636.roa
File: 3130332e31372e3234342e302f32322d3234203d3e203535363636.roa (raw, json)
Hash identifier: gu2eLJYOhzvMAWqCTll0Z1vHSzpodGweSdH5sGIIl3o=
Subject key identifier: 02:66:10:A3:9E:5C:7C:99:FB:AC:39:3B:34:D4:E2:40:A5:0D:DE:9A
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 03AAAD9FA027524E472ACACF6DA52219FDAF12C3
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234342e302f32322d3234203d3e203535363636.roa
Signing time: Mon 01 Jul 2024 01:06:11 +0000
ROA not before: Mon 01 Jul 2024 01:01:11 +0000
ROA not after: Mon 30 Jun 2025 01:06:11 +0000
asID: 55666
IP address blocks: 103.17.244.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:aa:ad:9f:a0:27:52:4e:47:2a:ca:cf:6d:a5:22:19:fd:af:12:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Jul 1 01:01:11 2024 GMT
Not After : Jun 30 01:06:11 2025 GMT
Subject: CN=026610A39E5C7C99FBAC393B34D4E240A50DDE9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a8:ec:0a:57:b9:75:fe:27:1a:85:56:bf:31:
ad:37:68:43:32:ac:04:f6:d2:cc:e3:93:b7:09:99:
13:d5:18:2f:c6:f7:1f:b1:dd:fc:cf:60:a2:fe:a0:
cb:88:06:b9:2e:f2:2e:05:01:be:59:1b:dd:03:b1:
7e:9a:ff:b0:c9:32:d3:0b:69:a7:5d:a7:c3:1d:be:
ea:08:a3:54:c6:0d:31:4c:8b:d6:63:55:96:e8:97:
6f:cd:fb:9b:25:1b:59:3a:73:56:78:e2:73:f5:1a:
80:ee:a2:b0:01:8b:52:36:55:8c:e3:98:6f:1d:45:
32:53:fe:dc:9d:62:4d:fb:cc:17:6b:2b:26:2a:13:
9e:55:d5:60:5d:03:1b:41:42:4b:45:9f:b5:63:09:
31:29:b8:f2:34:a6:4e:0a:95:ed:d4:a5:8c:66:47:
c2:78:53:0b:ce:0d:b3:ef:ea:27:4d:0c:13:f6:f3:
fe:7c:a4:5e:2a:44:51:a4:af:8e:b7:11:bc:b9:3e:
f3:9c:97:bb:51:0d:46:1f:25:8a:57:f6:c5:a4:b3:
ae:59:2b:1a:75:71:18:e8:be:d5:0e:91:82:80:85:
0a:82:36:d2:5c:47:d9:92:61:e1:1a:70:81:26:c0:
b4:eb:fe:07:26:3a:b5:af:fe:8b:69:b7:94:6b:08:
47:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:66:10:A3:9E:5C:7C:99:FB:AC:39:3B:34:D4:E2:40:A5:0D:DE:9A
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234342e302f32322d3234203d3e203535363636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.244.0/22
Signature Algorithm: sha256WithRSAEncryption
53:7f:3c:eb:7b:57:41:d1:8c:b3:92:5a:0b:14:27:b9:c2:63:
a4:ff:3b:04:93:ac:b4:a3:f7:6e:f3:8e:49:d7:c9:55:93:e3:
3e:62:e1:8d:67:16:5c:1b:87:59:dd:ae:50:db:87:c0:44:6e:
c6:32:20:d0:c1:72:73:63:ad:b8:6f:0a:4c:06:76:db:f9:01:
61:9f:9b:86:4b:96:ea:d2:4f:a6:e0:6c:23:56:f9:ea:b1:5b:
76:fe:67:d3:c0:85:3b:c8:c5:b4:dc:7c:b8:08:b5:82:87:b6:
4b:a0:28:04:f2:bd:a2:75:98:de:fb:39:66:cf:97:a9:16:e0:
11:a1:fe:81:cb:cf:e3:47:4f:96:19:eb:f1:53:c9:27:d9:12:
c2:19:6a:02:33:6a:a4:9b:27:bb:52:59:39:b9:d6:69:ce:f2:
1c:2c:0c:2a:8f:16:a1:16:a2:21:45:b1:75:84:c2:d9:1f:89:
d8:cb:f2:8e:37:42:42:f8:6b:77:d2:06:bc:4a:f4:bd:a7:5a:
d3:a6:6d:d7:b9:6d:8c:6d:bd:8b:37:b1:87:1e:63:5d:21:52:
f3:13:2d:2e:52:c5:c6:5d:4d:07:59:87:65:68:90:0b:e2:56:
97:6e:1b:bd:3d:d3:b4:c1:cb:77:63:3c:6e:36:ea:67:f4:dd:
3b:cb:e7:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:36:56 2025 by rpki-client