Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa
File: 3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa (raw, json)
Hash identifier: eQag8HLHZu1kiCQwBVORmEZkcS9c5Ry+vEgpFVk0Re8=
Subject key identifier: 06:8F:22:18:DC:2B:02:23:76:01:C7:65:18:D1:0E:4B:98:FF:62:D0
Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53
Certificate serial: 5A74ED7DCB4621D6687167B672941A4266BC453E
Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa
Signing time: Fri 12 Jul 2024 09:00:02 +0000
ROA not before: Fri 12 Jul 2024 08:55:02 +0000
ROA not after: Fri 11 Jul 2025 09:00:02 +0000
asID: 140407
IP address blocks: 103.151.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:74:ed:7d:cb:46:21:d6:68:71:67:b6:72:94:1a:42:66:bc:45:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53
Validity
Not Before: Jul 12 08:55:02 2024 GMT
Not After : Jul 11 09:00:02 2025 GMT
Subject: CN=068F2218DC2B02237601C76518D10E4B98FF62D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f9:bd:bc:14:9c:93:f2:01:fd:57:04:dd:8a:
d4:31:90:f1:ad:d5:d9:4e:fc:5e:40:6d:a4:44:f3:
5d:90:a5:de:88:81:5a:7f:67:de:2e:08:3d:1a:4d:
34:f0:33:f5:8b:e4:57:5c:c0:dd:0a:5b:27:f7:2f:
df:bb:5f:4a:37:70:90:92:60:89:30:81:17:ab:71:
94:b4:56:e9:c9:73:69:33:60:3d:f8:e7:26:dd:2c:
0f:b0:55:29:af:5f:7f:9a:29:b0:32:0e:01:81:5f:
c8:9c:d4:a8:9a:80:b3:33:da:6f:1f:09:0c:16:e6:
79:3b:ca:21:6d:d7:0d:fc:34:a6:af:7d:ea:c1:01:
c4:14:39:1a:35:f7:67:43:9e:bb:29:06:3b:70:ab:
54:3b:19:74:7f:0d:e5:fc:ba:90:94:bd:b2:92:70:
b3:aa:da:e3:3c:d8:c7:b5:66:09:46:4f:03:6f:d4:
2c:d4:ea:fb:48:75:dc:73:b1:ec:d5:25:27:db:90:
7e:88:72:85:e3:e1:4c:48:c1:2e:be:ff:4e:31:8c:
1a:42:8a:48:35:52:41:d8:ae:18:05:44:e7:39:80:
7d:e6:44:68:af:c9:fd:2c:53:a0:eb:2d:e1:56:a7:
67:25:72:88:3f:27:6b:34:c3:7a:ec:5b:d0:f4:da:
20:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:8F:22:18:DC:2B:02:23:76:01:C7:65:18:D1:0E:4B:98:FF:62:D0
X509v3 Authority Key Identifier:
keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/3130332e3135312e33332e302f32342d3234203d3e20313430343037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.151.33.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:8b:29:3c:30:d4:14:e2:de:56:eb:46:9f:71:7b:58:ae:90:
8e:d6:ca:a5:0b:8a:12:02:03:12:58:1c:02:1f:d6:9a:2c:be:
b9:fa:b8:c1:2b:05:df:b7:6e:c6:03:a5:87:2f:6f:ef:25:61:
a3:27:0a:c2:cd:ab:8c:1e:6f:02:29:da:8f:a2:1e:41:02:d5:
50:4b:79:e2:19:2a:3d:5d:b0:e2:aa:5c:5f:e4:45:aa:52:4d:
bc:90:7f:18:fd:1c:34:f7:1e:de:17:ac:1d:4d:77:c4:6e:4f:
b9:ec:91:be:b0:1d:27:fb:57:df:8a:f8:a1:63:d2:f2:64:91:
db:03:04:7f:66:ec:07:87:1d:33:ba:9c:a3:d6:24:2b:58:cd:
dd:a9:02:8a:fa:87:8c:6f:44:c0:a6:ff:08:58:2b:b2:fa:66:
a7:3b:4a:fb:53:b0:5f:ec:b0:a7:0e:55:05:59:cb:7c:b4:07:
e6:81:48:c8:21:c4:d4:e8:69:04:dd:e0:47:0e:22:37:94:41:
75:93:33:ef:97:78:c2:35:53:cf:33:b7:32:6e:26:3f:f1:f1:
75:78:a2:6c:7b:31:8b:4c:b1:02:5e:2b:00:45:9d:93:5c:d4:
c0:17:f2:ae:f0:6f:de:98:04:b5:bb:f0:1b:14:d9:4e:a1:22:
0d:fd:a1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:41 2025 by rpki-client