Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33392e302f32342d3234203d3e203338353030.roa
File: 3130332e3234342e33392e302f32342d3234203d3e203338353030.roa (raw, json)
Hash identifier: kmzkO4Zysl02z2GLnKAdGhK6A7UAIsm1OzMaIkZeuFg=
Subject key identifier: FC:56:33:C5:13:60:12:27:87:27:98:B0:41:09:6D:9B:3A:AF:8A:57
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 4E636BA11FB91237D4A216EC4D2D00F203E76943
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33392e302f32342d3234203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:40 +0000
ROA not before: Mon 01 Jul 2024 00:59:40 +0000
ROA not after: Mon 30 Jun 2025 01:04:40 +0000
asID: 38500
IP address blocks: 103.244.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:63:6b:a1:1f:b9:12:37:d4:a2:16:ec:4d:2d:00:f2:03:e7:69:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:40 2024 GMT
Not After : Jun 30 01:04:40 2025 GMT
Subject: CN=FC5633C513601227872798B041096D9B3AAF8A57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a8:48:5c:8d:09:df:5f:22:69:bb:17:53:c3:
a8:0e:77:d8:3b:3c:e5:6f:7c:46:5e:ce:32:32:28:
06:6d:d7:56:6b:4e:50:ca:83:c6:f4:f8:ab:bf:fd:
3c:9d:4f:a1:c0:96:3f:30:13:16:8b:56:96:9d:23:
0e:fa:cf:26:6e:66:e7:34:71:90:43:55:ce:d8:d7:
c6:4b:0b:6e:3d:34:5d:e6:3a:ae:60:a1:88:a4:93:
51:f5:e6:23:e9:04:67:2a:47:ce:5c:a2:51:26:5f:
3b:ca:36:ac:50:13:47:ca:1c:4b:6e:0f:2a:60:00:
c5:d5:e1:7e:cb:8f:a1:09:34:ab:6d:b9:54:0c:ea:
8a:39:74:f2:78:46:b5:5e:74:11:d8:b6:99:c6:1e:
74:51:1b:0a:e7:f8:73:2a:13:53:b9:ed:4e:d1:49:
0b:43:b0:00:0c:75:4d:98:60:8a:0b:b7:ab:2f:48:
1f:b7:bc:a8:98:30:37:46:7a:76:a3:ca:e3:54:7b:
04:88:ff:ee:c2:e6:9f:24:07:ce:1f:55:38:87:24:
28:d7:55:e6:03:db:65:12:cd:e2:3c:9d:1a:9d:6b:
d2:11:29:31:6b:b1:37:6f:66:23:cd:38:37:25:8e:
84:8f:b4:87:07:53:bb:d3:b7:1c:7e:f2:2a:4a:13:
ae:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:56:33:C5:13:60:12:27:87:27:98:B0:41:09:6D:9B:3A:AF:8A:57
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33392e302f32342d3234203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.244.39.0/24
Signature Algorithm: sha256WithRSAEncryption
88:65:bb:51:28:56:e6:fc:40:71:2a:5b:16:1b:9d:02:ce:8a:
59:ed:23:4b:72:61:86:18:7d:a8:93:1c:fd:f9:06:20:ec:60:
06:00:29:4f:d5:58:db:1a:62:3c:14:1a:f7:af:89:90:2f:9e:
a0:21:54:18:85:57:95:4c:f7:11:74:33:cf:96:67:4c:1b:74:
39:6c:76:8b:a9:0a:db:ef:55:fa:c3:d0:20:7c:d9:98:94:e8:
ee:bc:ec:31:69:f7:15:83:ba:a7:73:7f:eb:69:99:24:52:46:
c8:79:7f:e6:d8:2f:44:c0:77:ab:38:9e:36:ed:a3:d6:09:a3:
39:7c:71:e3:81:44:d7:46:42:91:86:e8:3f:b9:89:05:a4:dd:
23:22:db:87:24:f4:62:cc:13:9e:76:f6:02:bd:45:2a:04:b1:
55:c8:ac:c3:a2:77:38:e0:1d:fb:be:44:7a:56:97:47:46:d0:
98:40:95:61:e2:5c:27:d0:af:4d:00:ae:43:a2:fb:9b:26:24:
11:d7:70:d4:32:01:2e:b2:dd:42:c2:74:db:1d:a3:de:40:64:
b5:96:09:68:1a:71:9c:44:f9:05:42:e7:1a:70:bc:8b:39:39:
f5:fe:89:9b:e1:5c:75:3d:5a:c8:1e:69:94:db:4f:06:31:3a:
c4:9c:e2:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:21:32 2025 by rpki-client