Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa
File: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (raw, json)
Hash identifier: IogGCBWgp3JrkSQOYf566gL9gQvFCS2GUVGyd4wX/SE=
Subject key identifier: F7:32:42:CA:85:8E:53:80:53:F6:6E:12:5E:79:14:CA:53:BB:50:9D
Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50
Certificate serial: 7D95B7A82B685CF19BE0A07A4308CEAC1992A95B
Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa
Signing time: Sun 29 Sep 2024 03:00:00 +0000
ROA not before: Sun 29 Sep 2024 02:55:00 +0000
ROA not after: Sun 28 Sep 2025 03:00:00 +0000
asID: 141975
IP address blocks: 103.167.70.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:95:b7:a8:2b:68:5c:f1:9b:e0:a0:7a:43:08:ce:ac:19:92:a9:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50
Validity
Not Before: Sep 29 02:55:00 2024 GMT
Not After : Sep 28 03:00:00 2025 GMT
Subject: CN=F73242CA858E538053F66E125E7914CA53BB509D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:41:f3:1b:1c:25:02:0f:0c:6d:f1:c2:f1:41:
82:79:65:53:0b:aa:fc:23:f4:bb:5a:f7:f5:a7:f1:
68:ed:bc:fd:3e:66:32:2f:e4:2a:9a:38:46:3f:6a:
87:df:8a:51:b1:ac:6f:cb:94:f1:32:44:c3:2d:35:
2b:4d:c0:0f:52:fc:8b:34:f1:4e:c7:39:b9:67:ed:
b5:5f:c5:ca:3c:9b:dc:03:4c:9f:e7:07:53:98:c6:
a2:a7:ad:a0:63:5d:96:0d:8b:e6:b0:1a:f8:da:03:
ee:fb:61:14:cc:53:9f:1a:95:b6:24:40:1d:55:d1:
80:f3:21:26:03:4a:ef:07:30:80:61:9a:82:05:c8:
4d:6f:e1:cb:9c:66:f5:bc:50:ed:1d:f9:78:f3:53:
8e:af:0f:c3:5f:f8:4c:0f:65:cd:56:c6:05:22:6a:
40:35:f0:5c:04:63:21:ef:bc:de:24:61:5f:a9:9f:
00:1a:85:3b:7c:dd:44:a8:ae:c7:d5:93:c9:a5:1b:
f4:0c:32:52:c6:32:ea:46:85:41:e0:08:f1:a7:91:
72:0c:a5:76:8f:97:9c:70:b9:48:22:6c:be:77:2a:
03:26:82:f1:e6:c5:64:ce:05:59:84:70:cc:81:8a:
9c:15:a3:ba:5f:77:62:67:42:dd:19:dc:39:27:77:
98:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:32:42:CA:85:8E:53:80:53:F6:6E:12:5E:79:14:CA:53:BB:50:9D
X509v3 Authority Key Identifier:
keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.167.70.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:95:df:72:41:11:e4:f4:4d:87:fe:ec:d5:63:e2:c7:a6:94:
12:30:00:4c:6b:f7:b7:70:21:e8:52:e8:67:93:7d:07:ed:b6:
b6:3a:85:af:71:6d:a6:28:f7:7e:ae:2d:88:b8:4b:74:87:3f:
95:c5:d1:75:73:1f:40:0d:29:ea:cb:b2:86:3c:3d:91:9a:57:
bf:b4:6f:45:14:66:89:f2:84:ce:3f:d3:0e:9f:a3:a4:ce:1f:
71:65:10:4e:62:ce:51:f1:f4:4a:30:85:7b:95:04:9f:f0:c8:
6b:7c:cf:0a:4d:9e:71:8b:b2:f5:f5:90:fa:5f:1a:59:47:ce:
6d:79:fc:b6:98:a5:1b:28:0d:5d:d7:c9:81:0c:37:e2:dc:1a:
e0:59:21:fd:e0:44:7a:2b:08:f4:8a:75:c3:98:b0:f7:60:04:
9d:fb:f7:eb:6c:ca:71:44:d8:a0:e9:8b:b7:9e:48:4d:c8:27:
10:ff:b1:2f:2f:59:d0:e4:f1:b8:0d:bc:3d:d7:c7:94:46:6b:
f9:cf:e2:b3:c2:49:5d:a2:a0:41:7d:ac:86:3a:96:00:6e:4d:
95:ec:93:85:35:ec:8d:58:31:29:89:ab:ab:c4:8b:8a:db:7b:
9a:5c:8a:9b:13:09:a1:ff:fe:c7:3f:67:b8:a8:33:dc:48:f6:
67:b7:7a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:36:30 2025 by rpki-client