Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa
File: 3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa (raw, json)
Hash identifier: UhTnOZ0eR4pV0pc2TNTMXOcqZMm3I9KiGgwKvyJXQRE=
Subject key identifier: 32:F5:59:8E:F3:73:DB:81:CF:E1:31:EC:68:74:65:C1:C4:8A:DB:DF
Certificate issuer: /CN=42467B1885830A9908EAE67935311639B090AA77
Certificate serial: 27BB751814A8F2D1767A4ECB9CAE8446370C3833
Authority key identifier: 42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa
Signing time: Fri 20 Sep 2024 02:00:01 +0000
ROA not before: Fri 20 Sep 2024 01:55:01 +0000
ROA not after: Fri 19 Sep 2025 02:00:01 +0000
asID: 151577
IP address blocks: 103.76.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:bb:75:18:14:a8:f2:d1:76:7a:4e:cb:9c:ae:84:46:37:0c:38:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42467B1885830A9908EAE67935311639B090AA77
Validity
Not Before: Sep 20 01:55:01 2024 GMT
Not After : Sep 19 02:00:01 2025 GMT
Subject: CN=32F5598EF373DB81CFE131EC687465C1C48ADBDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9e:17:91:e8:01:e0:2a:c1:40:64:c6:c3:8b:
b4:71:f0:df:37:4a:40:46:9d:89:a7:5d:03:2e:14:
af:46:27:4a:6e:b3:84:a2:80:ca:2a:fc:70:69:ad:
1f:ed:ae:af:87:28:70:b4:9d:f0:c3:9a:59:3e:70:
5e:77:4d:85:38:13:b8:cd:34:b5:66:f4:6c:aa:98:
77:0c:08:12:87:94:e0:5e:dd:a4:5e:eb:82:3d:81:
c1:83:cb:ac:d0:2a:96:00:92:2e:3f:6c:7e:dd:7d:
39:e8:79:56:5c:fd:0e:79:c2:2f:d9:b6:3a:6c:e6:
9a:26:c4:0d:96:f3:73:12:b3:37:dc:c5:c5:34:91:
27:d9:b8:81:21:45:eb:88:f6:94:1a:7c:27:51:3b:
c5:49:d6:25:3c:51:6a:e3:cf:8f:77:c1:3d:65:8b:
48:b8:29:a4:84:7f:73:0f:49:d3:7c:5c:44:ef:f6:
bc:15:86:54:8d:94:cf:5e:40:80:32:7e:4f:ab:99:
e0:a6:ce:d0:eb:be:53:43:40:f3:ae:80:92:0a:ef:
ce:f6:b7:21:98:d3:8d:a7:e1:1b:50:5c:80:f0:0a:
26:53:2c:cc:87:f0:7c:c1:c9:d0:31:c3:3b:30:b2:
1b:be:86:71:38:72:b1:36:f3:84:9b:35:39:a2:9e:
5a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:F5:59:8E:F3:73:DB:81:CF:E1:31:EC:68:74:65:C1:C4:8A:DB:DF
X509v3 Authority Key Identifier:
keyid:42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/3130332e37362e3130372e302f32342d3234203d3e20313531353737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.76.107.0/24
Signature Algorithm: sha256WithRSAEncryption
18:77:b3:92:b4:cb:c2:e5:3c:dc:8e:14:02:31:23:88:c1:a7:
5c:30:4b:1c:62:4b:aa:30:b0:7d:b7:4a:a6:ba:3e:1a:33:ff:
f2:a5:c6:6a:e7:91:cd:e0:5b:2a:28:2f:a2:55:a2:75:fa:53:
a5:36:60:a9:b8:7f:ce:4d:75:be:51:09:38:9b:f4:15:45:2a:
49:e4:ea:b3:ca:73:0f:6f:e8:45:46:d6:83:3e:d7:2d:d7:a3:
43:86:37:2e:18:2a:89:49:75:b8:4c:6e:08:d1:00:c2:63:58:
1f:89:b1:1b:b2:d2:bf:e9:2c:c9:2f:ec:26:af:58:ad:8a:48:
10:14:5c:65:1d:35:13:57:01:28:d8:3a:e7:64:b4:76:42:9f:
18:01:6f:47:6d:32:96:1d:88:f2:66:77:1e:74:be:f8:18:83:
1a:a6:4a:0a:4b:37:0f:95:2d:92:b5:93:77:38:4d:ba:a7:f9:
07:b5:fd:7b:44:e0:da:6b:35:5c:65:f5:f8:9c:ce:bb:21:6c:
a1:e8:34:01:9a:13:7d:35:3e:d5:e6:04:8f:71:a9:90:2e:82:
a1:b3:af:ef:25:00:6a:f3:a0:ac:d8:bb:4a:97:b8:20:98:84:
da:75:88:9c:ff:7b:de:16:50:23:5a:f4:ad:57:fc:fe:4a:0a:
06:24:c1:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:11:00 2025 by rpki-client