Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134322e302f32342d3234203d3e20313336383534.roa
File: 3130332e3130322e3134322e302f32342d3234203d3e20313336383534.roa (raw, json)
Hash identifier: E9hexxYc1bqmjJVzYlcJ1n0jxfd6pWxzNygPPPDyMeU=
Subject key identifier: 62:E7:E9:6A:3B:F7:CD:68:18:B1:7C:C5:80:D0:4A:27:EE:E8:C0:F5
Certificate issuer: /CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754
Certificate serial: 5C053C91F6CCCD039868DCDB9F236AE133290897
Authority key identifier: 1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134322e302f32342d3234203d3e20313336383534.roa
Signing time: Tue 28 Jan 2025 10:00:02 +0000
ROA not before: Tue 28 Jan 2025 09:55:02 +0000
ROA not after: Tue 27 Jan 2026 10:00:02 +0000
asID: 136854
IP address blocks: 103.102.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:05:3c:91:f6:cc:cd:03:98:68:dc:db:9f:23:6a:e1:33:29:08:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754
Validity
Not Before: Jan 28 09:55:02 2025 GMT
Not After : Jan 27 10:00:02 2026 GMT
Subject: CN=62E7E96A3BF7CD6818B17CC580D04A27EEE8C0F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:43:8f:2d:93:5f:50:22:46:c8:c9:b5:e7:37:
c1:2e:73:2c:b2:56:82:a2:af:53:1b:b8:4b:fc:1c:
a3:bc:4e:81:c8:10:88:ab:f1:84:09:ae:48:b4:c9:
cc:b0:a9:4e:5f:42:f4:ed:77:f3:8b:84:1c:67:5f:
77:6a:8d:72:ea:38:c7:39:a1:83:c2:1e:6a:3e:cb:
69:78:fb:35:c0:f5:00:4e:fa:8a:f8:02:6a:8c:8c:
c7:30:27:53:ed:e5:67:3b:43:c5:32:29:76:b3:37:
8d:c6:52:0c:e1:ab:01:c8:3f:1d:c2:d9:57:9c:39:
7a:82:61:2b:82:73:de:24:ba:b3:09:54:32:9a:a3:
50:de:f4:92:08:a7:85:ed:46:e4:c5:c5:56:de:38:
da:44:02:2c:51:c2:0b:33:d7:a2:42:01:39:17:f6:
4a:88:2e:6c:bf:ea:41:97:bd:61:86:c6:cc:7e:88:
ae:59:00:55:92:31:69:a4:d2:ed:61:0b:de:17:a8:
8a:2e:e0:16:b8:e6:e7:82:bf:75:e7:a5:85:e6:f1:
f3:b9:31:8a:03:20:d7:92:d4:8a:8e:09:d8:9d:1d:
ed:25:af:33:47:e5:46:c9:90:2c:96:d5:a2:9d:5a:
07:97:1a:dc:7e:1b:80:96:b9:46:3a:fb:8b:3a:b4:
aa:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E7:E9:6A:3B:F7:CD:68:18:B1:7C:C5:80:D0:4A:27:EE:E8:C0:F5
X509v3 Authority Key Identifier:
keyid:1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134322e302f32342d3234203d3e20313336383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.142.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:64:ce:eb:1d:23:e3:92:78:cd:df:db:32:53:12:9e:9c:f0:
0f:68:9a:bb:bf:2a:c2:45:6e:01:94:48:24:03:38:8e:6e:48:
b1:85:5a:2e:c4:8a:5b:59:b9:63:27:a7:8f:90:61:92:03:04:
71:11:27:0c:8c:91:c2:12:fa:19:48:49:6b:90:c2:48:fd:3c:
49:43:e9:16:71:bb:c7:9f:ff:ff:04:e1:f7:3c:82:17:04:f7:
df:ce:d2:73:54:c1:95:c3:85:32:c1:9b:4b:9f:ea:b1:3b:95:
2d:87:90:25:5e:34:41:b8:d4:79:40:05:9e:31:45:96:ca:4c:
ee:de:42:42:c5:fc:f9:d1:5f:0a:6d:3a:b3:8d:f4:4b:c0:a6:
79:a3:d1:56:15:ed:1c:7a:cd:da:2a:15:36:03:8c:f9:ca:98:
38:a6:3e:01:bd:7e:c0:6b:6e:06:cd:55:ad:78:20:b5:9d:22:
e1:61:71:9c:1a:85:5c:4a:7c:c3:a4:f7:78:15:b0:7d:39:8c:
af:f7:37:4c:c8:fb:c8:d3:60:af:b5:cf:e9:09:f3:56:f0:c4:
22:25:16:f0:d8:32:95:f0:73:20:1d:42:a0:02:c5:d0:73:c3:
79:d7:2c:af:94:6c:09:41:06:a0:af:27:17:4b:3b:52:04:fc:
cb:7e:84:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:41:38 2025 by rpki-client