Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa
File: 3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa (raw, json)
Hash identifier: drDWXbS5Lt2BNjwhp2t9NFg/ubNQHhmV8ihSFb/W+xw=
Subject key identifier: 95:BD:72:76:FB:A3:BB:67:20:52:00:B9:59:5A:45:21:8B:53:8C:92
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 7B40C604AC567D19DD108F2E52CC02196FFCA29F
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa
Signing time: Sat 21 Dec 2024 18:00:46 +0000
ROA not before: Sat 21 Dec 2024 17:55:46 +0000
ROA not after: Sat 20 Dec 2025 18:00:46 +0000
asID: 149746
IP address blocks: 103.17.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:40:c6:04:ac:56:7d:19:dd:10:8f:2e:52:cc:02:19:6f:fc:a2:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Dec 21 17:55:46 2024 GMT
Not After : Dec 20 18:00:46 2025 GMT
Subject: CN=95BD7276FBA3BB67205200B9595A45218B538C92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:da:9b:fd:43:ae:91:22:9c:46:14:3c:a9:2f:
ac:32:6c:05:b8:39:d2:3a:5e:03:d9:7c:a7:4a:fc:
72:20:fd:3a:d6:ef:d3:e4:34:36:de:70:ec:f6:db:
a1:09:40:50:e1:06:2e:7e:6a:34:63:bd:36:fc:a9:
63:52:6b:94:27:1a:51:85:a1:1d:0d:63:25:a5:be:
81:f3:2e:9f:ab:fa:3f:ae:f7:c4:f5:b4:51:7a:18:
69:88:e2:bf:a5:7d:a1:c7:42:0e:a1:d8:d6:d1:ae:
cd:d5:01:63:3a:f0:ae:a4:46:74:63:60:27:e4:a9:
21:04:75:62:38:dc:10:5d:b3:43:40:0c:0c:5c:88:
ba:87:d2:eb:8c:88:67:9b:e2:8b:b6:20:6a:b9:81:
e6:0a:0f:6b:c3:69:9a:19:e8:89:0a:6f:2d:0b:3c:
9e:d1:82:c2:5f:01:7d:81:b0:61:51:c6:15:77:5e:
c9:b1:8d:e6:89:ed:71:34:1c:f8:33:6e:d2:5a:7c:
af:54:1a:2c:1d:34:70:b1:47:49:61:69:03:7a:ff:
00:76:66:f3:d3:75:78:38:92:6c:94:87:52:c4:24:
5c:9a:18:b3:2b:e1:c5:94:7d:89:9a:b6:0d:cf:e7:
ea:73:4c:10:6a:ef:c4:a3:30:3a:61:40:c9:9a:d8:
68:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BD:72:76:FB:A3:BB:67:20:52:00:B9:59:5A:45:21:8B:53:8C:92
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.245.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:61:46:c9:b6:15:59:96:1b:47:8f:39:6b:66:9c:2b:28:b2:
57:90:aa:80:e5:48:b9:d8:ce:cc:44:6f:a2:f2:25:a3:e7:40:
c4:8a:4f:89:df:af:0e:6e:27:9c:87:08:39:15:01:26:e7:de:
8c:ad:1e:d8:56:f3:c9:4c:cb:38:bb:32:ec:a3:41:86:c1:be:
3a:3f:6a:e1:75:5c:98:fa:e5:a8:93:8d:ef:dc:6c:09:66:84:
2f:1e:a2:08:6a:ab:a3:93:3b:09:20:91:0c:aa:1b:77:69:4e:
0f:6f:81:74:c6:e5:16:22:08:0f:d7:8a:90:16:23:a7:2a:ef:
4e:97:1f:bd:2d:de:e9:be:72:78:30:65:a8:47:b2:35:40:1a:
49:fe:94:97:15:1e:e8:c9:5a:f7:99:f3:cd:c5:c3:11:eb:4e:
54:dc:14:31:48:8e:0b:32:f7:94:6d:36:73:e9:6c:a1:47:a2:
f9:be:e4:8b:c7:21:e5:73:9a:82:66:06:fc:bc:15:8e:79:f0:
91:df:b5:69:91:d7:91:97:89:77:9d:85:fe:1f:f5:f8:24:6e:
b7:6e:e7:7e:d3:ca:f7:01:75:eb:b0:e2:05:c2:7a:56:3b:27:
05:97:b0:dc:e7:f0:be:be:ea:47:ac:0f:d6:20:7c:bd:c4:9c:
b9:35:d7:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:24 2025 by rpki-client