Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135312e302f32342d3234203d3e20313431363536.roa
File: 3130332e3136322e3135312e302f32342d3234203d3e20313431363536.roa (raw, json)
Hash identifier: u880hi+D7DiVMZTtM0R2zluDGsZisp33kG58HiXq4yE=
Subject key identifier: DF:0A:2C:48:C7:A7:E2:B6:B8:B7:EF:FC:86:3E:1B:C2:66:75:0B:F0
Certificate issuer: /CN=14043163A8BFF50600F16410DE27B7A0DEEC1E61
Certificate serial: 21C42CCA714482828AEDC00A67717B028123AE08
Authority key identifier: 14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135312e302f32342d3234203d3e20313431363536.roa
Signing time: Fri 04 Oct 2024 17:00:01 +0000
ROA not before: Fri 04 Oct 2024 16:55:01 +0000
ROA not after: Fri 03 Oct 2025 17:00:01 +0000
asID: 141656
IP address blocks: 103.162.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:c4:2c:ca:71:44:82:82:8a:ed:c0:0a:67:71:7b:02:81:23:ae:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14043163A8BFF50600F16410DE27B7A0DEEC1E61
Validity
Not Before: Oct 4 16:55:01 2024 GMT
Not After : Oct 3 17:00:01 2025 GMT
Subject: CN=DF0A2C48C7A7E2B6B8B7EFFC863E1BC266750BF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:87:b7:68:ce:39:d2:0e:37:4f:e1:6e:5e:23:
14:f5:3f:17:c5:b3:51:07:6f:94:8b:05:73:dc:d2:
f7:ca:c1:b5:73:02:50:ed:f8:a6:ae:bd:ad:9e:a7:
89:25:a5:96:d6:f7:33:a3:87:c4:50:c0:bb:57:84:
7e:78:f4:61:64:df:f9:a0:81:89:be:c8:5f:e6:c8:
59:fb:b6:51:1b:e7:4f:7a:b8:9c:25:2e:76:6e:ea:
61:b2:37:e9:58:31:ed:b9:98:60:88:d1:2f:28:6d:
05:59:1c:75:2a:96:63:71:6e:98:23:13:84:a6:5d:
7a:ce:87:b5:f9:25:2f:c7:34:07:5c:8b:ad:d2:a1:
72:85:a1:9b:33:90:e0:0a:27:3f:56:91:29:bd:cf:
74:97:e6:bc:0a:c5:a5:77:8f:c8:f4:24:d0:50:53:
b2:5a:d1:38:e9:9e:e5:95:86:7c:8d:aa:56:1e:d0:
7a:42:f5:e7:30:e8:e6:9f:16:0b:2c:a2:41:5a:b4:
c9:12:6a:19:38:23:57:66:aa:ac:6b:9d:b8:6b:af:
5f:e3:c7:f1:c7:ae:23:1c:ae:64:14:83:fd:02:80:
ea:e0:82:1a:bb:19:73:1d:53:25:be:4b:b1:c4:ce:
7d:e2:9b:c3:8e:cd:73:31:fe:86:69:8c:aa:ad:98:
47:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:0A:2C:48:C7:A7:E2:B6:B8:B7:EF:FC:86:3E:1B:C2:66:75:0B:F0
X509v3 Authority Key Identifier:
keyid:14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135312e302f32342d3234203d3e20313431363536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.151.0/24
Signature Algorithm: sha256WithRSAEncryption
75:f7:56:8f:14:80:d4:9d:67:ed:1c:ab:c3:02:92:09:bd:7f:
c7:81:6c:f4:15:79:ce:d1:41:f2:e7:d7:13:86:a9:6d:e9:03:
5a:ca:52:75:23:ab:ae:80:52:b9:73:3e:bd:00:2f:d8:db:e7:
cd:c4:74:e5:6a:bb:01:c2:a1:2c:45:1a:24:37:8d:68:0e:91:
2f:1a:64:12:ac:e1:1b:60:c9:de:91:1c:06:08:28:a7:06:89:
86:cd:68:70:8c:c1:36:da:44:cc:05:20:f7:66:a1:1d:d7:11:
f0:5f:00:8c:5e:7b:23:ce:33:d9:84:ee:30:e4:4c:8a:dd:fd:
0b:e8:1a:6e:8a:54:10:c3:ef:e7:c8:c2:13:8e:1e:2b:07:df:
29:16:48:ec:05:03:80:21:ab:9b:31:66:ad:89:bd:80:61:1c:
37:66:46:3b:dc:49:3d:e5:5c:32:58:01:da:9b:24:17:29:1f:
b6:fd:f8:b5:0d:10:c8:6a:0d:5d:fc:8a:4e:57:98:e6:ca:36:
2a:8b:be:df:4f:e8:59:31:73:53:06:3b:b8:7c:14:b6:67:6e:
db:16:77:5a:61:68:68:58:62:46:ff:16:39:e0:97:2c:40:ff:
1e:13:c8:42:ef:ee:9b:83:b2:9b:ec:e5:bd:2c:f4:e5:d2:86:
2e:67:c3:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:22:35 2025 by rpki-client