Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa
File: 3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa (raw, json)
Hash identifier: L7LqVXyoSRg8DgNZpOS04vg4NVwWiWJGcA0KRd2HUBQ=
Subject key identifier: 08:6B:6F:D5:D0:CA:AF:71:68:2C:43:33:7C:70:F8:4F:A7:8A:B5:58
Certificate issuer: /CN=9FB9D7ED833E1CA6E4053773AC164214889108CB
Certificate serial: 3CF8175760C083EDF88C008C9B620FC431383936
Authority key identifier: 9F:B9:D7:ED:83:3E:1C:A6:E4:05:37:73:AC:16:42:14:88:91:08:CB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FB9D7ED833E1CA6E4053773AC164214889108CB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa
Signing time: Wed 16 Oct 2024 15:00:01 +0000
ROA not before: Wed 16 Oct 2024 14:55:01 +0000
ROA not after: Wed 15 Oct 2025 15:00:01 +0000
asID: 140003
IP address blocks: 103.148.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:f8:17:57:60:c0:83:ed:f8:8c:00:8c:9b:62:0f:c4:31:38:39:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9FB9D7ED833E1CA6E4053773AC164214889108CB
Validity
Not Before: Oct 16 14:55:01 2024 GMT
Not After : Oct 15 15:00:01 2025 GMT
Subject: CN=086B6FD5D0CAAF71682C43337C70F84FA78AB558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b6:f2:89:9a:0d:78:f8:41:fb:1c:f8:e7:dd:
7a:16:88:76:bf:9a:78:34:a1:17:d2:4c:a4:d2:34:
68:68:82:c8:80:40:d6:e1:6b:11:10:71:8c:ec:47:
90:3f:bd:8b:8a:ed:c9:70:1b:8b:ca:34:e3:1f:1b:
12:d5:d4:d1:75:b6:d4:c9:d8:cd:94:e4:d5:ed:ab:
50:31:e9:d4:fe:b4:dc:2f:6c:f5:e8:8f:66:45:7e:
af:cf:36:34:b5:e9:3e:37:45:0b:a1:5c:4a:bb:3b:
0e:fd:f8:65:b6:4b:af:5f:62:27:0e:d5:5e:c8:7c:
3d:54:48:4a:a9:f2:6f:2c:60:7b:e4:aa:f0:9f:3f:
dd:ac:9a:98:5e:99:27:a3:01:1a:53:a2:86:d9:a5:
75:ca:74:2f:3a:9e:64:02:29:bb:a5:b6:56:2b:28:
57:af:fa:dd:74:72:c9:94:9f:25:3d:ec:77:9b:d8:
17:c7:84:18:0d:56:a1:e3:06:12:5d:be:0c:89:c3:
8a:fc:8d:6f:a1:2a:44:75:08:2c:d2:b2:b3:45:96:
da:22:98:c1:b8:d7:0b:63:4e:d8:1c:75:ef:e5:25:
4a:a0:4e:e3:fa:df:45:71:c0:79:6b:33:d6:7a:b2:
9e:cd:44:55:b6:13:b7:9d:7d:60:30:9e:c5:a8:e9:
63:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:6B:6F:D5:D0:CA:AF:71:68:2C:43:33:7C:70:F8:4F:A7:8A:B5:58
X509v3 Authority Key Identifier:
keyid:9F:B9:D7:ED:83:3E:1C:A6:E4:05:37:73:AC:16:42:14:88:91:08:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/9FB9D7ED833E1CA6E4053773AC164214889108CB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FB9D7ED833E1CA6E4053773AC164214889108CB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bcb9ba7f-efd1-4994-a2a3-77993338b242/0/3130332e3134382e3139342e302f32342d3234203d3e20313430303033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.194.0/24
Signature Algorithm: sha256WithRSAEncryption
35:9a:ab:53:86:ea:cc:76:1b:4f:b2:53:9d:9c:37:db:97:7b:
da:04:3d:81:e3:bb:ae:cd:b1:74:ab:a3:4e:18:db:77:4c:51:
c7:45:b1:a5:c4:69:d1:36:2f:f6:30:50:07:f2:05:6e:75:01:
f7:da:05:ab:ca:af:4a:5c:ba:b3:0e:d6:8a:ae:95:98:fa:48:
c8:24:9d:39:51:a7:31:24:f6:9a:8d:e3:93:16:71:7e:96:ec:
ed:86:a1:65:10:a9:5d:c1:ff:42:48:be:1d:8a:3a:c2:2a:f4:
23:79:c5:53:ca:92:f1:ed:5c:3b:9a:bb:42:ed:e0:05:b0:47:
51:38:6b:3b:5e:a7:cf:8d:59:53:fa:16:fb:51:31:5e:0f:4b:
48:0c:07:ee:f5:1d:bf:ce:26:6f:1c:64:1b:71:2c:a5:d8:86:
c9:fa:ca:fd:6f:8a:03:d6:15:4d:0a:b2:b4:2b:e5:99:13:98:
72:de:78:ef:44:54:2f:79:42:c9:68:b2:52:e5:2f:f3:53:b8:
09:39:3d:c6:34:e1:48:3b:ba:b1:d2:81:d6:48:99:d1:fd:59:
58:4e:f0:83:96:7c:3f:8a:66:73:4e:ee:df:e5:f9:a6:15:7b:
e0:d9:f0:43:f6:07:62:b3:5a:f9:3f:fb:b1:45:ea:03:ad:79:
af:09:c0:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:52:02 2025 by rpki-client