Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa
File: 3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa (raw, json)
Hash identifier: Pto1t/zWo/BTAn7DwBNKU7vR/ZyYh0xSxibr/QoeoHg=
Subject key identifier: 00:A0:07:1C:03:AA:37:5D:29:0B:14:DE:7A:BB:12:5B:85:EC:80:ED
Certificate issuer: /CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7
Certificate serial: 1B9B3AF8239163F3585D43D67EBD07FA73817E14
Authority key identifier: 6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa
Signing time: Tue 01 Oct 2024 01:00:01 +0000
ROA not before: Tue 01 Oct 2024 00:55:01 +0000
ROA not after: Tue 30 Sep 2025 01:00:01 +0000
asID: 45701
IP address blocks: 103.156.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:9b:3a:f8:23:91:63:f3:58:5d:43:d6:7e:bd:07:fa:73:81:7e:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7
Validity
Not Before: Oct 1 00:55:01 2024 GMT
Not After : Sep 30 01:00:01 2025 GMT
Subject: CN=00A0071C03AA375D290B14DE7ABB125B85EC80ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8c:17:ea:9b:19:02:42:40:78:6a:86:cc:de:
29:6a:62:cc:05:fa:95:2d:85:ed:58:b3:a7:48:7c:
c6:2e:df:a2:5e:12:15:c8:7c:e7:d1:4a:10:1a:07:
0a:6f:be:a1:af:4d:0c:54:48:63:a2:8a:b9:cb:07:
4c:8e:c2:b0:04:0b:40:c2:1d:5b:b3:28:55:3e:de:
04:0d:0c:07:b7:3d:33:86:8d:f1:9c:16:0f:27:0e:
09:35:f3:fe:8d:e7:65:b6:ff:be:ee:2b:60:79:80:
ce:9a:39:c8:6a:3a:e6:0e:1d:bb:f4:db:b4:fb:9a:
e8:ad:5a:73:25:c6:d1:b2:72:4c:6e:78:38:43:76:
5f:eb:d2:ec:33:72:2e:23:cb:a5:b0:b1:9c:1a:15:
07:5b:5e:31:54:72:09:3f:90:af:7b:cb:0a:80:38:
41:03:6d:e4:34:06:18:a7:ac:3b:fe:1b:b2:0f:74:
1c:4b:ba:fe:dc:8a:33:9c:3c:3e:fc:aa:23:f8:09:
24:b3:ac:87:2a:09:ae:4b:61:fe:8f:74:82:fc:10:
34:1e:8a:ae:80:7f:00:56:97:f7:ae:47:25:25:01:
a3:8b:47:b5:17:05:0c:95:3a:5d:d3:8f:c4:9b:5d:
2a:57:b6:82:11:f1:24:66:5a:28:8d:31:94:6c:f4:
37:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A0:07:1C:03:AA:37:5D:29:0B:14:DE:7A:BB:12:5B:85:EC:80:ED
X509v3 Authority Key Identifier:
keyid:6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.156.226.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:12:b5:47:de:67:63:6b:86:c3:7f:d4:5e:ce:19:7a:6f:b4:
f7:19:5e:fe:7b:75:3c:ab:41:2a:d6:cc:8f:c4:6a:69:21:ea:
4f:59:20:48:16:ec:75:5b:60:b2:2d:65:ee:ee:04:03:b1:af:
96:0f:11:f7:d4:3d:ad:04:d9:89:37:4f:f9:a6:40:80:cf:a4:
1e:05:c9:ec:f8:20:bc:16:d8:5f:35:58:a5:3d:bf:4b:18:4b:
e1:2a:04:09:2a:d9:09:56:6d:0f:cc:6d:fb:1d:c1:9c:85:04:
bb:32:04:bd:d6:f9:df:e5:d9:06:61:6a:3d:31:d3:66:b0:42:
80:5a:2a:92:06:7d:e2:e8:f4:52:9c:f9:bc:27:b5:25:ad:54:
8d:cc:b4:06:f4:3e:e5:39:b1:38:5f:09:6c:80:15:7c:13:86:
30:dd:8e:14:d0:11:40:21:6b:00:bd:e8:bc:f8:4b:19:48:a5:
3a:46:68:2d:1b:57:e8:a7:a3:b0:67:1a:ff:e6:42:72:9b:d9:
57:c7:94:a0:94:d0:00:f4:56:0c:3e:af:fb:0e:3e:c9:84:fc:
2d:1a:0c:87:51:8e:13:f1:ba:aa:e9:cc:c0:38:e3:a5:59:f5:
3b:9a:de:97:6b:23:10:ab:e9:d9:1f:33:a2:98:1d:c1:8b:d0:
66:b6:15:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:47:58 2025 by rpki-client