Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa
File: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (raw, json)
Hash identifier: 7CE9BXOCk+npQ95V1OHYui5nCFjD3JZ2DBCvcvu4/Kk=
Subject key identifier: BD:C1:7A:EA:94:17:AA:19:7C:04:63:6A:A7:95:E3:AB:DC:4B:63:D1
Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4
Certificate serial: 3E9033312E7B894EB0700822E3ABB4167582C8E4
Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa
Signing time: Tue 21 Jan 2025 03:02:34 +0000
ROA not before: Tue 21 Jan 2025 02:57:34 +0000
ROA not after: Tue 20 Jan 2026 03:02:34 +0000
asID: 149663
IP address blocks: 103.184.120.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:90:33:31:2e:7b:89:4e:b0:70:08:22:e3:ab:b4:16:75:82:c8:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C70A343932991281F91796DB87B011987603BBF4
Validity
Not Before: Jan 21 02:57:34 2025 GMT
Not After : Jan 20 03:02:34 2026 GMT
Subject: CN=BDC17AEA9417AA197C04636AA795E3ABDC4B63D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:48:8f:af:f0:f7:17:c0:24:57:2b:f5:b5:
36:35:e3:7a:09:5c:8f:d1:d6:54:45:18:c2:88:93:
d3:c5:e6:98:62:c8:e0:b7:9c:5c:76:39:83:60:cf:
bd:54:4a:3d:25:88:15:64:6f:68:6b:f1:1f:bd:1f:
c9:96:6d:d8:03:56:2d:f7:78:7b:ed:2e:e5:0b:53:
a6:1c:19:94:c4:3e:b4:5e:30:64:5d:2a:25:7a:2f:
9b:15:da:22:52:39:a8:b0:5c:63:b9:94:51:bf:5e:
6d:c4:6b:2c:ee:82:0c:d8:90:6d:89:fe:0b:f1:57:
ef:64:bc:b1:15:d3:b7:c5:ee:25:f8:3c:44:09:89:
40:50:1f:3e:37:e4:21:4c:37:3f:af:70:cf:fc:4c:
5e:6f:aa:f2:da:19:2e:0e:fc:32:04:ec:2e:87:ae:
e8:67:21:3a:0c:5d:5c:3e:4a:07:44:d8:b6:fe:35:
84:7b:7c:e3:07:63:9a:ba:0c:17:cb:3b:fc:4a:42:
27:c0:93:d3:69:8d:50:7f:d9:25:d9:64:84:67:45:
65:cb:43:c8:e5:a9:6b:b5:42:7e:10:3b:9d:9c:e8:
a2:f3:ff:cd:d9:9e:30:56:0e:6b:6f:46:57:1e:0b:
f1:0f:b9:d1:06:02:aa:d7:50:8e:4a:d7:65:96:27:
40:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C1:7A:EA:94:17:AA:19:7C:04:63:6A:A7:95:E3:AB:DC:4B:63:D1
X509v3 Authority Key Identifier:
keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.120.0/23
Signature Algorithm: sha256WithRSAEncryption
07:9a:a7:e0:05:1c:b5:20:5b:b1:07:eb:1c:b5:00:a8:b9:e3:
45:e9:fd:7a:82:ce:91:99:9c:9f:a6:cd:fc:31:bf:9e:95:50:
53:7d:f6:86:40:40:50:88:fc:54:f0:16:a8:ee:cc:2e:27:18:
f2:e6:d5:be:23:62:b7:18:a9:32:02:81:cc:d8:de:c5:eb:f8:
71:b6:b6:80:e1:65:cf:2d:b0:67:19:0e:59:1e:f3:ae:dd:3e:
0b:36:40:89:e3:8d:09:5b:98:7f:95:92:b9:78:48:99:f9:53:
2c:ec:17:36:a5:07:2c:d5:f3:69:89:92:0e:6d:c0:7a:9d:b8:
f8:cf:d8:55:7a:b7:cc:bc:e3:71:79:d5:55:96:73:56:1d:86:
45:86:30:45:d2:5b:ad:73:6f:8f:73:99:ce:c9:47:c8:19:c5:
4c:f7:c0:6a:5f:0e:bb:08:27:60:52:9a:61:56:d6:ec:56:58:
08:55:44:fd:b4:1d:2a:54:a7:f7:44:64:7b:cd:a2:04:c1:8b:
7c:2c:2a:7e:a4:2d:69:92:69:97:58:c3:47:32:a9:44:f3:f4:
43:be:f5:2b:78:2a:30:fb:53:aa:04:94:49:ba:c8:41:d6:9d:
34:90:8d:01:fb:21:e1:3d:2c:bc:a7:78:f6:ee:d4:d2:fe:c1:
e2:9b:1a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:54:20 2025 by rpki-client