Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa
File: 3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa (raw, json)
Hash identifier: xYvlr5pZjidZLbV3xWDKr9GCYRZmkQJEpxTWLCj2OY8=
Subject key identifier: E8:17:C3:CC:49:7A:E3:34:AA:69:C9:23:A3:A5:15:64:A5:DD:F4:58
Certificate issuer: /CN=FBF979FD5B6D1AF690338C406BB657208D98F3DE
Certificate serial: 4B9460E3CD23F1AFA41A5D66F0BC3EB9E95A9935
Authority key identifier: FB:F9:79:FD:5B:6D:1A:F6:90:33:8C:40:6B:B6:57:20:8D:98:F3:DE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBF979FD5B6D1AF690338C406BB657208D98F3DE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa
Signing time: Mon 01 Jul 2024 01:04:51 +0000
ROA not before: Mon 01 Jul 2024 00:59:51 +0000
ROA not after: Mon 30 Jun 2025 01:04:51 +0000
asID: 140019
IP address blocks: 103.149.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:94:60:e3:cd:23:f1:af:a4:1a:5d:66:f0:bc:3e:b9:e9:5a:99:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBF979FD5B6D1AF690338C406BB657208D98F3DE
Validity
Not Before: Jul 1 00:59:51 2024 GMT
Not After : Jun 30 01:04:51 2025 GMT
Subject: CN=E817C3CC497AE334AA69C923A3A51564A5DDF458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c1:c6:e3:92:c3:da:d2:4e:06:22:82:8e:91:
e5:b0:9f:eb:3c:2f:bc:f3:92:a8:f8:47:5e:75:d4:
f7:68:4f:df:af:e5:95:38:1c:b8:1b:82:53:65:87:
96:95:90:4a:fe:f0:83:11:78:25:98:86:60:fb:ff:
b2:6c:57:11:f6:70:bd:f5:42:d4:c9:25:69:18:76:
d2:6b:61:09:00:05:b0:ca:db:d4:69:0c:7b:19:69:
8f:f0:12:41:af:97:7e:4f:2a:ee:e1:e7:d1:59:ad:
35:46:8d:c9:43:03:f3:5d:18:cd:de:18:87:07:6d:
04:c0:4f:9a:86:5f:c3:3e:86:2b:e4:f1:8f:11:62:
ce:a1:c6:c0:53:5a:bf:db:3c:75:2d:90:80:c3:60:
7f:3d:72:3b:bc:96:9f:b3:35:07:69:c1:35:df:d8:
23:4e:35:60:81:ae:cb:a0:c2:fa:82:d1:f9:c2:08:
f3:8b:0b:fc:07:08:2d:5f:06:90:a0:0a:2c:c9:7f:
14:8b:b8:ba:de:24:02:85:2a:b7:2a:a8:51:62:bb:
88:2c:44:a1:af:90:96:40:2a:aa:db:79:a1:b9:c9:
e6:ed:d0:d2:2a:13:06:11:70:80:da:7b:fc:1e:c3:
2e:78:90:65:7a:09:32:e7:82:7c:0d:5a:7b:6c:b6:
4e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:17:C3:CC:49:7A:E3:34:AA:69:C9:23:A3:A5:15:64:A5:DD:F4:58
X509v3 Authority Key Identifier:
keyid:FB:F9:79:FD:5B:6D:1A:F6:90:33:8C:40:6B:B6:57:20:8D:98:F3:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/FBF979FD5B6D1AF690338C406BB657208D98F3DE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBF979FD5B6D1AF690338C406BB657208D98F3DE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b32d7627-47d7-4fd0-ae0f-63b873fe2c88/0/3130332e3134392e3131362e302f32342d3234203d3e20313430303139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.116.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:2d:a5:cd:b4:1e:fe:e3:51:65:99:43:66:1f:33:58:1c:8c:
85:d3:0e:09:7b:66:3b:47:8d:6a:3f:91:a2:65:fe:a6:04:9a:
b1:9d:b6:95:55:db:47:70:3a:5d:99:55:29:63:b1:56:dc:e0:
84:30:cf:8c:e3:ce:c0:9f:3e:c1:04:6c:ce:e0:08:12:78:25:
94:34:9a:bd:9a:da:6d:28:6a:23:c6:cd:85:7c:77:17:f3:2c:
0a:17:72:12:09:5a:13:90:01:72:06:2b:b2:77:60:1e:bd:af:
d2:9a:4d:ce:d1:b4:20:00:12:86:03:7c:b5:a9:13:51:1b:ab:
be:dc:b6:2f:38:42:84:41:dc:14:e7:40:f0:9e:ff:c8:34:5e:
4a:5e:42:0d:fa:01:2b:0c:42:f5:eb:87:66:cf:e5:f5:67:48:
3b:93:2e:8b:73:af:cc:f3:b3:cc:18:24:39:01:56:84:85:01:
60:55:7b:8c:f9:3e:7f:8d:71:68:94:e7:67:2b:e1:23:20:85:
81:cb:0d:77:4f:6b:02:4a:5e:d0:7a:87:c2:52:b1:8f:fc:ff:
26:f4:df:76:fd:e4:43:c2:9f:11:86:03:29:7b:93:3c:8f:1f:
80:93:ea:67:20:e3:a8:be:11:1d:56:63:6c:1d:9a:03:7e:aa:
71:77:75:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:35 2025 by rpki-client