Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa
File: 3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa (raw, json)
Hash identifier: XecTj5rW5vjVGioZGbTrF2RL8Bz7nq18kBIEMdfx7K8=
Subject key identifier: 9D:D1:67:44:54:84:3D:3F:FC:40:57:B1:74:9F:9E:08:50:42:C5:8A
Certificate issuer: /CN=BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981
Certificate serial: 272752A2D6FFA058C6CD577D256FA008359B5341
Authority key identifier: BB:69:F1:3D:2C:ED:C5:F3:48:CE:A1:C1:BB:F6:E1:DC:24:B1:D9:81
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa
Signing time: Thu 14 Nov 2024 11:02:11 +0000
ROA not before: Thu 14 Nov 2024 10:57:11 +0000
ROA not after: Thu 13 Nov 2025 11:02:11 +0000
asID: 136052
IP address blocks: 103.146.202.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:27:52:a2:d6:ff:a0:58:c6:cd:57:7d:25:6f:a0:08:35:9b:53:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981
Validity
Not Before: Nov 14 10:57:11 2024 GMT
Not After : Nov 13 11:02:11 2025 GMT
Subject: CN=9DD1674454843D3FFC4057B1749F9E085042C58A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7a:3f:00:ab:76:91:60:b0:f2:65:5f:bd:65:
38:a8:2f:b0:5f:dc:08:87:eb:a4:b1:35:9b:51:38:
c2:6c:eb:81:83:55:25:58:37:8b:46:f4:99:81:8a:
c8:dc:91:d8:28:8c:84:df:82:ee:d4:11:93:da:44:
aa:e9:ad:27:15:13:9b:ae:61:8f:82:91:4f:5f:24:
08:a3:6c:a7:58:d8:74:49:9e:8c:cc:db:c8:25:77:
5f:b5:5e:d5:2e:3f:e0:c1:3f:54:20:ff:9d:d9:3b:
1a:f4:3a:e0:f3:b9:69:6d:d8:45:e1:7c:ea:98:c1:
02:be:32:bd:0d:cc:05:cd:e7:45:f1:59:c2:f5:dd:
95:19:06:8f:a1:76:50:8a:22:92:2b:1b:64:87:13:
33:41:84:7e:7b:7b:76:85:bc:c2:97:45:f7:cd:90:
de:ef:58:a8:b5:7e:9a:c3:f2:70:02:0d:f8:da:cc:
92:ab:a0:8d:7d:48:fd:1a:db:13:3c:3c:5d:97:ac:
6c:56:24:d0:7b:b2:99:46:ec:aa:2f:89:b5:42:0a:
cd:e4:6e:06:8a:90:ac:cd:34:50:42:5f:4f:53:5a:
57:9f:82:15:86:39:bf:3d:17:40:b7:15:ca:4a:52:
73:e4:a9:ff:25:61:1c:82:59:56:e8:12:e5:72:b5:
58:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D1:67:44:54:84:3D:3F:FC:40:57:B1:74:9F:9E:08:50:42:C5:8A
X509v3 Authority Key Identifier:
keyid:BB:69:F1:3D:2C:ED:C5:F3:48:CE:A1:C1:BB:F6:E1:DC:24:B1:D9:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.146.202.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:25:c4:8d:23:75:76:a6:a1:5e:f9:1c:36:9f:be:75:1d:00:
ae:46:dc:15:73:6f:3a:70:d6:a9:bd:2a:44:bb:23:4c:66:bc:
3e:2d:9b:a3:4b:86:73:e2:e2:88:14:96:d3:20:a2:0a:84:33:
46:a3:cc:93:12:61:54:83:b2:62:dc:92:be:67:52:f8:5c:6e:
7a:f6:00:56:9e:78:82:6c:38:86:cf:8d:0c:7d:14:8a:60:7b:
ca:e7:8f:ec:08:36:d4:37:34:7e:00:9b:1a:66:32:b9:20:da:
5c:c5:86:d3:97:b6:61:b6:a4:5f:1d:f5:fb:de:2a:c4:d0:f2:
98:33:db:ab:42:a5:89:73:4a:27:57:81:57:ae:76:1a:82:85:
30:15:ce:48:13:12:15:1b:a1:3c:d6:a0:b2:d3:03:d1:24:1f:
d1:0e:6b:07:e1:fb:f7:9a:62:43:4d:68:6a:a5:bd:d0:54:2f:
47:2a:3a:76:01:9d:1a:e5:b4:73:79:6b:0d:9c:0e:63:1a:04:
68:c1:5c:7c:01:c1:c0:96:05:70:b1:91:2e:90:63:66:ce:b5:
ca:b1:4f:ca:9d:28:15:11:60:43:07:c9:9d:9d:cb:43:c0:f7:
bf:5e:3d:47:3f:40:9b:50:9a:40:26:ee:31:df:58:0e:90:8e:
ba:36:0a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:08:04 2025 by rpki-client