Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa
File: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (raw, json)
Hash identifier: RZP1u67IkDY1VxYw8axwNJaL5jYZcoL8kOhW1c7O+Eg=
Subject key identifier: 1B:A4:31:A5:B0:2E:23:1F:C8:C6:2B:03:0F:C5:B0:FC:6D:D2:2C:5A
Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Certificate serial: 76901D42D92DE3CBAC3805740AB1753C4145AD01
Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa
Signing time: Fri 22 Nov 2024 10:02:38 +0000
ROA not before: Fri 22 Nov 2024 09:57:38 +0000
ROA not after: Fri 21 Nov 2025 10:02:38 +0000
asID: 140023
IP address blocks: 103.149.120.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:90:1d:42:d9:2d:e3:cb:ac:38:05:74:0a:b1:75:3c:41:45:ad:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Validity
Not Before: Nov 22 09:57:38 2024 GMT
Not After : Nov 21 10:02:38 2025 GMT
Subject: CN=1BA431A5B02E231FC8C62B030FC5B0FC6DD22C5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f3:2e:8c:a1:94:ce:f1:5a:04:95:e6:55:0c:
31:5d:da:03:71:c8:4d:96:e8:71:c5:86:72:84:58:
b9:f4:8d:ec:0d:84:85:18:60:5c:ff:03:aa:48:bc:
69:c0:9d:4a:b7:ef:f5:63:9f:04:73:74:f1:a9:47:
3f:21:b2:50:6a:eb:25:1f:8e:bc:0a:fa:8b:3e:42:
b8:ba:f3:48:af:fb:ff:77:21:55:f7:1d:dc:8c:40:
d2:1e:a8:97:59:51:37:d8:a4:43:34:52:35:65:90:
5b:e5:89:61:21:d7:b3:f6:d5:fb:40:2d:67:3b:6d:
84:d9:e1:d7:b0:0e:51:d9:cf:76:98:e9:f4:e1:48:
9e:a7:2a:78:80:c6:6a:2a:a7:30:57:3a:25:46:bb:
0d:37:11:a8:a8:72:b9:7c:42:3b:5f:86:af:b5:e2:
6c:c5:29:06:fa:72:5a:37:22:13:8e:d4:ff:bd:77:
d1:2a:42:93:9b:56:ff:04:e4:3a:c4:39:80:20:77:
30:26:84:17:78:8e:b7:58:1a:65:ea:cb:26:43:ab:
da:65:2d:7e:1c:62:9b:65:04:99:c5:75:e7:e9:d4:
a3:f8:0a:48:b1:17:cf:d4:56:a0:f2:9d:03:a4:b4:
c2:09:f2:a0:b6:8a:11:73:2e:5d:c7:96:7c:bd:1a:
93:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A4:31:A5:B0:2E:23:1F:C8:C6:2B:03:0F:C5:B0:FC:6D:D2:2C:5A
X509v3 Authority Key Identifier:
keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.120.0/23
Signature Algorithm: sha256WithRSAEncryption
09:32:4c:b9:82:3e:bc:84:b9:d0:80:21:9b:10:7c:23:c7:93:
a6:0a:03:bf:fc:3d:8f:a2:61:50:a6:1b:87:86:7c:80:89:62:
bb:68:64:41:6e:86:bb:cd:67:d8:e3:bb:c7:27:dd:d1:cc:fc:
5b:d0:5f:e6:4d:de:78:66:e4:7f:52:60:ff:d7:b5:05:d0:ea:
51:91:c0:e0:11:60:43:af:dc:83:10:e8:47:9b:f5:22:26:10:
58:80:f1:5d:3c:cd:50:fa:d0:e3:78:1d:7d:33:64:58:a9:3c:
65:92:89:6c:18:37:f2:f9:5f:a5:fd:a4:e7:bf:54:d9:bc:a4:
98:53:88:c5:9a:48:cc:6e:5d:b5:70:07:81:46:f2:bd:9b:9a:
b7:41:11:30:a3:9b:37:a0:4d:9c:a2:4d:86:f4:47:e5:f7:71:
4c:db:49:3e:57:e7:aa:98:2f:5e:30:43:d1:31:24:d9:48:fb:
9d:f2:69:66:d9:a4:c3:b9:8f:ad:ed:dc:46:3d:5c:75:79:c8:
fa:b9:10:70:d3:78:28:9d:be:cf:62:96:45:71:4c:aa:28:d8:
21:8c:94:4e:fb:73:84:53:f1:9e:dd:5f:d1:e1:51:df:11:a8:
aa:91:59:96:6e:45:ee:4b:5a:9a:47:26:2c:3d:c9:c9:e4:27:
cc:8a:8a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:50 2025 by rpki-client