Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa
File: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (raw, json)
Hash identifier: yOR4ha1iNJToiWgXnk0oG7heqETlfk80W41Jvd2P1xg=
Subject key identifier: C3:F7:98:48:67:58:26:60:BB:41:54:E7:2E:C9:2A:B6:9A:15:C1:5C
Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Certificate serial: 08EF4FC030A4DB614BE709F8E80710A237A92C6E
Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa
Signing time: Thu 12 Dec 2024 08:02:35 +0000
ROA not before: Thu 12 Dec 2024 07:57:35 +0000
ROA not after: Thu 11 Dec 2025 08:02:35 +0000
asID: 7713
IP address blocks: 103.149.120.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:ef:4f:c0:30:a4:db:61:4b:e7:09:f8:e8:07:10:a2:37:a9:2c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Validity
Not Before: Dec 12 07:57:35 2024 GMT
Not After : Dec 11 08:02:35 2025 GMT
Subject: CN=C3F7984867582660BB4154E72EC92AB69A15C15C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e5:f3:77:9b:81:9f:1c:96:a4:42:f0:e8:4a:
05:5f:c8:8f:08:07:9b:12:39:2c:09:e1:a1:51:dc:
e1:75:e1:00:82:aa:28:70:30:ab:4c:8a:a1:de:aa:
ea:8d:9e:89:02:84:bf:48:52:80:13:6e:f3:84:3a:
68:a5:de:30:ba:e8:db:27:46:4b:01:fd:f4:94:3c:
2b:be:57:9b:7a:be:fe:f4:38:9e:6b:69:33:51:fc:
1c:ab:22:59:ab:42:fc:12:47:c4:4c:5d:70:03:ec:
46:d2:00:0b:c6:88:76:a2:90:6a:80:07:02:8f:c2:
a2:74:75:cc:c5:07:d4:46:2c:af:e6:b2:88:63:ec:
59:b9:4e:c1:cf:52:98:6b:80:f6:2c:58:7d:10:48:
83:a1:26:b0:1e:4e:1e:cc:93:2c:c9:0b:8a:6a:29:
11:aa:3e:8c:60:4f:2e:04:ee:05:d3:ed:b8:91:c0:
bc:cd:d3:48:a6:d3:57:eb:8c:29:7d:7c:6c:d4:05:
d1:53:ba:0e:ab:e1:d2:e3:e4:9b:b9:5e:d5:0b:76:
3f:17:67:20:c4:ab:85:c3:d5:6f:b4:9a:28:b5:a2:
2d:ae:15:b4:52:28:e6:6e:8d:4a:11:28:95:6a:9e:
9b:0f:38:57:ea:8a:8a:c3:43:99:8c:ab:51:80:45:
b8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F7:98:48:67:58:26:60:BB:41:54:E7:2E:C9:2A:B6:9A:15:C1:5C
X509v3 Authority Key Identifier:
keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.120.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:ae:04:5a:3a:93:bb:85:9e:4f:12:41:db:8b:63:45:d2:bb:
98:05:7c:8c:31:09:76:32:50:e5:e6:f4:6d:10:67:29:f3:2c:
5e:b0:09:53:89:66:f1:21:2e:f4:4a:fd:94:21:7b:9e:71:34:
96:f8:db:5f:11:17:fd:0f:3b:79:01:87:1b:00:f2:14:aa:c9:
63:09:6d:a1:c5:b1:bc:f8:a3:db:24:56:5d:fe:55:02:ff:28:
76:06:ee:e8:87:b8:96:4f:47:df:3b:99:78:67:f5:12:e2:07:
c9:c9:be:a3:04:53:53:82:08:53:57:dd:6e:ac:48:f0:cc:92:
f8:67:17:d7:2b:3b:4c:80:48:d6:a4:f7:e8:4b:fb:9c:c2:2f:
2f:7b:25:c1:d0:44:56:42:1b:4e:58:6a:53:74:c9:f9:85:2d:
c5:63:c9:59:be:ed:a5:9c:aa:53:3b:01:ae:5f:f7:7b:17:a2:
f4:87:ad:bc:d5:e0:15:b3:03:6f:b5:42:f1:62:05:9a:df:a2:
fe:1e:4f:06:da:0c:a5:ec:d9:13:ca:47:e4:fd:4d:c8:b9:30:
0b:ac:24:0b:dd:e7:c7:df:e5:d6:6a:27:37:63:3b:6f:77:ca:
5e:8b:d2:f7:d7:65:eb:46:a4:b3:29:a3:75:dd:5b:9f:23:6f:
6e:e7:87:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:17 2025 by rpki-client