Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c65b84f2-9804-4670-8bbc-c33271b59259/0/3130332e35312e3230342e302f32342d3234203d3e203435333035.roa
File: 3130332e35312e3230342e302f32342d3234203d3e203435333035.roa (raw, json)
Hash identifier: KcWonMBSbsGevHNJZJsCL19ath775WUNuMlG1UGoR5s=
Subject key identifier: C0:0F:EE:88:CE:F9:0F:8B:29:AB:29:A6:85:FB:67:C8:8F:E5:96:C1
Certificate issuer: /CN=63E067663A09E3E84F1C5B1C31DEABFF2A4A7C07
Certificate serial: 40A6B8787D735F06B3143E650C3AB40237D58547
Authority key identifier: 63:E0:67:66:3A:09:E3:E8:4F:1C:5B:1C:31:DE:AB:FF:2A:4A:7C:07
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63E067663A09E3E84F1C5B1C31DEABFF2A4A7C07.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c65b84f2-9804-4670-8bbc-c33271b59259/0/3130332e35312e3230342e302f32342d3234203d3e203435333035.roa
Signing time: Tue 29 Oct 2024 04:00:01 +0000
ROA not before: Tue 29 Oct 2024 03:55:01 +0000
ROA not after: Tue 28 Oct 2025 04:00:01 +0000
asID: 45305
IP address blocks: 103.51.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:a6:b8:78:7d:73:5f:06:b3:14:3e:65:0c:3a:b4:02:37:d5:85:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63E067663A09E3E84F1C5B1C31DEABFF2A4A7C07
Validity
Not Before: Oct 29 03:55:01 2024 GMT
Not After : Oct 28 04:00:01 2025 GMT
Subject: CN=C00FEE88CEF90F8B29AB29A685FB67C88FE596C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:af:31:32:25:c3:f8:6c:63:0c:d0:bb:fc:06:
7c:25:4f:68:dc:b7:9e:6e:b9:34:a2:22:6d:60:46:
9a:55:5a:4e:19:2c:34:00:ab:e0:34:60:d0:3b:f6:
b0:58:69:bb:6c:2e:f9:33:75:59:f3:6b:29:96:d7:
31:27:09:e6:0b:4e:96:00:f2:de:3e:22:fb:d4:26:
7f:d1:64:a4:f1:ba:b3:2b:c3:d3:a6:cd:a9:d2:aa:
2e:ef:39:e2:40:e2:64:fe:53:dd:64:5a:fe:97:4a:
e4:98:9b:ed:4a:79:48:98:b8:45:10:99:d7:6e:33:
c3:a2:72:63:bb:01:cf:54:d2:03:17:11:6e:7e:16:
59:a3:0b:94:0a:25:1c:91:72:58:12:82:97:f1:fb:
85:cc:1d:d8:da:f6:66:94:fa:67:91:2f:28:f5:d8:
f1:2e:6b:0e:aa:02:50:b2:f6:eb:73:cc:17:85:5f:
f8:a7:8e:63:76:80:62:93:e1:3c:30:22:f2:62:af:
ce:d3:b2:a0:a5:e1:27:8d:2d:a1:ed:ec:d1:14:44:
4d:b8:06:5d:f9:c4:df:15:2f:61:ac:65:a2:ab:58:
6c:75:55:42:66:f7:67:da:69:81:0d:a6:3d:5a:89:
89:ac:45:a4:c0:53:45:6a:e3:74:c5:02:b9:52:52:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0F:EE:88:CE:F9:0F:8B:29:AB:29:A6:85:FB:67:C8:8F:E5:96:C1
X509v3 Authority Key Identifier:
keyid:63:E0:67:66:3A:09:E3:E8:4F:1C:5B:1C:31:DE:AB:FF:2A:4A:7C:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c65b84f2-9804-4670-8bbc-c33271b59259/0/63E067663A09E3E84F1C5B1C31DEABFF2A4A7C07.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63E067663A09E3E84F1C5B1C31DEABFF2A4A7C07.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c65b84f2-9804-4670-8bbc-c33271b59259/0/3130332e35312e3230342e302f32342d3234203d3e203435333035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.51.204.0/24
Signature Algorithm: sha256WithRSAEncryption
52:54:6d:c8:3a:81:12:5a:d2:58:e8:22:15:bb:41:38:2d:e0:
f7:03:4b:ee:69:01:0a:c9:c9:bf:f8:96:39:fa:5e:d2:91:23:
05:53:f1:5e:39:d1:0a:68:3a:9b:ec:de:a7:85:0f:a8:41:58:
38:74:ce:9c:d7:ce:bc:3f:97:73:80:7f:0a:ec:a9:dc:26:c5:
a5:f1:25:9b:8a:8d:84:2c:b1:33:fe:71:a4:00:4e:16:bb:3e:
47:4a:8f:0d:35:e0:4d:44:c4:4f:66:3c:72:74:04:ff:8b:87:
43:66:80:09:49:f3:7f:04:92:93:5b:71:c6:8b:08:9b:0e:d2:
df:1e:b4:06:72:6d:a7:67:ec:5b:7b:ee:2a:a3:3f:58:b3:36:
9e:90:05:28:57:e4:47:a3:d2:c0:5c:da:45:3b:a0:16:97:2a:
09:7d:86:8a:a5:49:36:45:0c:97:28:04:41:1c:a8:13:06:b1:
52:ed:d6:4c:59:27:7a:c7:5a:3f:37:6a:3b:f2:23:d4:93:ac:
d3:6a:f9:73:b9:91:45:e5:de:e4:3c:53:59:17:fb:73:48:7e:
47:e0:01:56:8d:4d:9c:37:0c:99:21:bc:78:2a:26:58:73:c5:
7a:7d:26:f6:77:2f:35:f3:b4:66:a6:e7:47:e0:b4:da:08:4f:
fd:60:a0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:37:42 2025 by rpki-client