Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa
File: 3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa (raw, json)
Hash identifier: rgZhMMMnE/8X/ajx3/StMU1scrnbaZrzmmCgG9/im6M=
Subject key identifier: 3B:2D:1B:AA:CE:3D:79:AE:BA:E5:29:B0:01:6C:14:AC:FE:9F:2E:B7
Certificate issuer: /CN=A708865394D992A01D1736F0AB500E24889B7F34
Certificate serial: 52CCF555118C0D6BC3850FC68ADD4E0A6DD412C9
Authority key identifier: A7:08:86:53:94:D9:92:A0:1D:17:36:F0:AB:50:0E:24:88:9B:7F:34
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa
Signing time: Fri 28 Jun 2024 02:00:52 +0000
ROA not before: Fri 28 Jun 2024 01:55:52 +0000
ROA not after: Fri 27 Jun 2025 02:00:52 +0000
asID: 136052
IP address blocks: 103.242.10.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:cc:f5:55:11:8c:0d:6b:c3:85:0f:c6:8a:dd:4e:0a:6d:d4:12:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A708865394D992A01D1736F0AB500E24889B7F34
Validity
Not Before: Jun 28 01:55:52 2024 GMT
Not After : Jun 27 02:00:52 2025 GMT
Subject: CN=3B2D1BAACE3D79AEBAE529B0016C14ACFE9F2EB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4e:2e:f8:9c:ec:d3:de:93:9d:9a:10:dd:24:
65:fa:57:75:d9:63:e2:8c:83:53:60:28:10:92:28:
09:ed:85:6a:ad:8f:86:d5:a7:5f:cc:b6:63:b6:f5:
6f:a3:05:e7:f9:37:df:56:55:6e:45:31:ca:27:c4:
ae:8a:2f:f2:4a:e2:56:15:70:a9:26:bf:6a:f5:b7:
66:fd:b0:f4:3d:0b:eb:34:9d:08:62:f3:4d:8f:02:
05:c9:4c:16:29:7e:ef:e7:74:98:c8:4b:f2:28:e9:
f8:fe:a2:e9:77:02:d1:70:ca:f4:0b:72:82:48:92:
b9:8d:94:46:0e:77:a9:9e:fb:96:8e:7d:25:70:f0:
b6:43:2e:c3:d4:fe:0d:52:8e:42:45:72:44:2c:20:
ae:64:90:79:b6:e5:96:df:8b:72:3c:ae:de:43:7b:
bb:3f:c1:ee:d6:8c:f6:c6:0f:38:0f:87:1d:a0:58:
22:b8:7f:0d:46:72:40:36:fe:a9:39:8e:9e:7d:42:
5f:44:6c:56:6a:98:a1:43:91:d4:9d:f9:4f:53:fb:
03:c1:7b:cf:9c:ca:45:54:4a:36:be:48:fa:33:9e:
96:77:49:71:21:39:45:0c:ab:ff:4d:45:13:69:0d:
ab:4d:8a:c6:43:6c:b0:2c:19:d1:5d:7b:2a:ae:a2:
e0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2D:1B:AA:CE:3D:79:AE:BA:E5:29:B0:01:6C:14:AC:FE:9F:2E:B7
X509v3 Authority Key Identifier:
keyid:A7:08:86:53:94:D9:92:A0:1D:17:36:F0:AB:50:0E:24:88:9B:7F:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.242.10.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:e5:9e:88:57:bb:8a:e5:c8:a2:19:c1:e0:a6:09:0a:bf:03:
6d:52:49:41:e0:26:2f:9a:49:b2:af:c8:0c:2d:b5:c7:88:8e:
b6:08:24:13:63:f1:99:1d:58:da:53:78:a0:53:e6:80:ad:8f:
75:20:d5:ec:db:4d:1a:71:91:59:2e:17:4d:04:b1:f6:92:5e:
eb:19:bd:4f:80:51:ba:1a:cf:d4:ac:6c:42:46:af:51:6b:9a:
2a:cf:7a:3c:93:e6:55:82:03:ea:39:00:40:61:b8:b5:8e:5d:
56:68:dc:c4:f5:cf:fe:59:c9:76:35:03:8c:6f:2d:62:74:f8:
18:cb:b8:60:44:2e:00:26:97:5a:01:df:4f:cd:63:82:fc:44:
c1:d6:8a:01:54:3d:f0:e4:3e:7a:72:e1:9a:c1:a4:c7:a4:d2:
35:9c:ab:22:6b:f0:ee:36:c8:2e:81:47:d8:9e:9c:c0:2b:b8:
ea:9b:b0:2f:bb:a9:14:3e:e9:23:a2:fc:a1:43:4c:69:75:2c:
5e:6e:61:9f:a4:ba:4c:86:b7:89:50:fa:e4:da:28:8d:01:b4:
66:95:9c:56:02:6c:9c:7a:79:6e:b2:b6:ce:f5:98:a1:8e:3f:
5a:2c:db:7c:10:f8:56:b5:5c:70:2f:d1:92:f6:05:f9:df:1b:
ee:e2:2a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:16:45 2025 by rpki-client