Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/3130332e3133392e3230372e302f32342d3234203d3e20313530353133.roa
File: 3130332e3133392e3230372e302f32342d3234203d3e20313530353133.roa (raw, json)
Hash identifier: j6euL0Vp2FBJXahOIaUhC8x72rtC7wYxKwq9D/ZeZp8=
Subject key identifier: E1:79:BE:DB:EC:2D:4C:55:5C:76:6E:11:85:0E:DB:CF:09:70:55:08
Certificate issuer: /CN=A01B6715A5B29F23D33C70B4E59135B0FA2231F5
Certificate serial: 40ACDF15DA544A7699E452F4A57D13EF5AD46B0E
Authority key identifier: A0:1B:67:15:A5:B2:9F:23:D3:3C:70:B4:E5:91:35:B0:FA:22:31:F5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/3130332e3133392e3230372e302f32342d3234203d3e20313530353133.roa
Signing time: Mon 20 Jan 2025 09:00:06 +0000
ROA not before: Mon 20 Jan 2025 08:55:06 +0000
ROA not after: Mon 19 Jan 2026 09:00:06 +0000
asID: 150513
IP address blocks: 103.139.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:ac:df:15:da:54:4a:76:99:e4:52:f4:a5:7d:13:ef:5a:d4:6b:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A01B6715A5B29F23D33C70B4E59135B0FA2231F5
Validity
Not Before: Jan 20 08:55:06 2025 GMT
Not After : Jan 19 09:00:06 2026 GMT
Subject: CN=E179BEDBEC2D4C555C766E11850EDBCF09705508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:31:3a:17:83:89:36:50:b9:ed:6a:c6:b6:72:
a1:7f:37:34:dc:04:20:b0:7d:4c:76:ad:e1:f0:c8:
0d:e3:92:ad:92:7b:d9:ff:8f:99:81:27:90:c7:85:
c6:01:a4:58:bb:68:64:90:b3:0b:f1:b0:2a:30:73:
aa:b8:cf:05:9b:e8:b0:3c:4b:ef:b0:9d:9a:b4:ac:
cd:22:0d:ea:5c:f2:26:ff:ab:78:97:74:a9:17:87:
c3:35:60:01:d6:e7:22:84:0a:29:e2:09:0b:de:26:
09:23:3a:e3:a2:1c:9a:35:57:64:76:95:14:80:51:
ec:12:fa:32:3a:a1:fb:e9:a1:f7:97:38:2a:1b:d4:
57:29:69:38:2c:ab:79:be:e1:b6:ba:0f:86:65:bd:
83:e4:32:de:61:23:f8:ba:34:70:a7:e6:23:7f:88:
6a:c6:b9:b1:e6:0c:68:f1:13:6d:80:38:24:e1:82:
01:68:cb:65:34:83:43:ad:d2:a0:43:da:21:3d:3a:
ca:5d:23:2a:bb:57:36:85:b4:04:2c:66:43:e0:80:
17:10:e8:cb:21:f2:b9:4c:73:d0:22:08:4a:4a:d4:
ad:a9:94:04:76:23:3b:a5:83:d0:3a:3f:74:7c:56:
af:49:85:9d:c0:25:23:7b:ca:00:ab:04:43:40:2d:
e1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:79:BE:DB:EC:2D:4C:55:5C:76:6E:11:85:0E:DB:CF:09:70:55:08
X509v3 Authority Key Identifier:
keyid:A0:1B:67:15:A5:B2:9F:23:D3:3C:70:B4:E5:91:35:B0:FA:22:31:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/3130332e3133392e3230372e302f32342d3234203d3e20313530353133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.139.207.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:38:d1:48:d4:c1:a8:76:52:51:eb:6c:19:94:31:82:02:a4:
16:e4:11:ea:7c:75:07:ab:95:e7:58:66:f4:d2:ed:10:18:89:
9a:9f:fe:73:97:e9:79:a3:14:ec:7d:c9:78:a8:75:69:78:89:
79:65:1d:14:ce:63:c4:c7:e9:1d:b0:0a:57:fe:bc:22:24:91:
02:de:c2:c5:d7:c0:7d:96:85:96:64:7a:35:4f:51:06:59:ab:
33:2d:bf:a7:8b:8e:8f:53:e8:ed:a7:21:5d:13:ad:9c:d4:9c:
ee:5a:42:b3:04:cc:3f:fe:60:94:60:1e:e9:e6:a6:13:fc:7f:
39:b0:57:7a:c7:b6:46:c7:30:3b:26:16:69:25:46:42:88:ca:
05:30:91:e8:1d:1d:26:91:96:fa:34:7b:d8:4f:f9:6c:29:c1:
f2:6f:42:04:bb:49:e1:fd:15:41:be:a3:62:01:b2:1c:90:66:
c6:fd:6d:a9:ff:42:e6:57:23:17:c3:40:04:74:a1:11:2c:2d:
de:e7:42:93:3b:ae:ef:23:e2:76:22:60:09:12:32:b8:17:28:
fd:a3:87:ea:22:2c:47:9b:33:29:d0:01:a0:b2:b1:71:c9:6f:
6f:c9:bb:cf:89:77:e7:04:88:1c:37:46:92:04:73:ec:5e:2c:
ab:7f:e1:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:41:46 2025 by rpki-client