Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32342d3234203d3e203436303233.roa
File: 3130332e3130362e37362e302f32342d3234203d3e203436303233.roa (raw, json)
Hash identifier: rou4lQQn7ojgWvv4wv09Ssy99ZSAyWazNJbw+IJaxNs=
Subject key identifier: 6D:AC:6B:A4:45:CC:A5:CC:06:44:F8:06:DF:42:96:69:E7:D9:1F:BE
Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B
Certificate serial: 7C53478DF1F3E3EECFBFF5600C162BC80A5895E7
Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32342d3234203d3e203436303233.roa
Signing time: Tue 05 Nov 2024 08:32:20 +0000
ROA not before: Tue 05 Nov 2024 08:27:20 +0000
ROA not after: Tue 04 Nov 2025 08:32:20 +0000
asID: 46023
IP address blocks: 103.106.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:53:47:8d:f1:f3:e3:ee:cf:bf:f5:60:0c:16:2b:c8:0a:58:95:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B
Validity
Not Before: Nov 5 08:27:20 2024 GMT
Not After : Nov 4 08:32:20 2025 GMT
Subject: CN=6DAC6BA445CCA5CC0644F806DF429669E7D91FBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:28:e7:c1:b1:bf:4a:3e:2c:ff:78:02:f4:ac:
35:e2:59:3b:d2:1d:1f:b0:ac:7e:97:d5:25:4d:1b:
6b:b4:91:30:49:42:f4:d1:e6:eb:74:f7:7a:d2:45:
46:af:5b:88:fb:24:03:56:f1:ed:8d:7d:f1:b3:09:
1c:e3:ff:35:02:2b:88:b8:06:60:83:49:47:73:bf:
76:d2:bf:8a:ae:46:ae:f0:04:92:3a:6b:e8:1a:c8:
ed:a4:1f:21:2e:c7:52:b2:73:b9:cf:3d:7c:67:c1:
e0:46:83:36:30:a3:9e:5a:39:a0:71:20:6a:fc:1f:
53:fc:92:05:63:d4:d8:92:64:fb:fc:bc:9b:fc:56:
ce:b8:61:0a:62:35:81:20:9a:36:86:88:f0:4c:5d:
82:73:90:09:8a:6e:ad:89:cf:0d:00:50:3f:cd:20:
8a:0e:f0:4b:8e:81:30:76:1e:b4:89:89:2b:08:f6:
42:57:b9:7f:6a:c3:ef:b4:51:a5:8e:1e:24:5a:a8:
1e:27:e9:24:60:54:5a:8f:92:93:74:60:62:0f:3a:
a3:84:46:3e:17:d0:69:cc:b1:fe:9a:9a:de:d4:61:
06:26:02:61:28:c7:ec:3f:20:21:42:b8:19:99:67:
66:f0:c0:20:48:96:b8:45:96:98:af:fa:99:85:61:
f4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AC:6B:A4:45:CC:A5:CC:06:44:F8:06:DF:42:96:69:E7:D9:1F:BE
X509v3 Authority Key Identifier:
keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32342d3234203d3e203436303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.106.76.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:37:7d:a2:ae:ba:0d:20:15:33:10:a7:03:eb:c8:a7:e2:7d:
36:e7:9c:d2:9a:ec:3f:78:2f:1e:19:ec:bf:b0:57:42:aa:74:
6d:0c:0e:36:32:b6:71:f8:be:9e:67:e1:d2:99:9b:c8:21:34:
eb:b7:79:02:c9:6e:dd:6f:e8:aa:e8:2a:49:84:c9:c8:65:98:
77:e7:d4:87:d9:79:0a:1a:76:f4:ab:8e:c9:0b:d1:a9:6e:ad:
10:70:e1:0d:13:fa:3a:45:e2:1a:75:4b:68:e0:27:35:7f:da:
89:c5:45:41:1f:48:0a:ca:96:31:67:75:89:73:b8:86:57:98:
cc:9f:fa:d5:86:13:f0:a8:f9:3a:21:9e:93:0e:ed:68:88:bf:
7f:7e:b7:02:e9:ab:e3:f0:08:7c:26:c6:a5:3e:b0:75:8b:03:
13:03:e5:f9:66:31:c5:bf:c1:f9:3e:07:c9:4e:bf:da:9e:63:
52:8d:b9:91:66:25:c2:02:ca:a9:44:f0:94:9b:fe:a7:bc:f2:
b9:c8:0e:50:f9:bb:b4:c4:5a:92:58:a9:c6:7b:40:e9:f7:21:
f6:bd:48:3f:49:9d:bc:30:85:a7:6f:79:7f:7a:8c:d3:cf:6d:
fc:76:4e:1e:8a:99:20:c1:c0:10:16:05:7a:3c:24:13:1b:ae:
76:04:40:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:07:02 2025 by rpki-client