Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa
File: 3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa (raw, json)
Hash identifier: zz0q4evVyiGmnkeJgjKZ6+3+IQRQHcK60NcY4NiLuVA=
Subject key identifier: E0:17:62:31:A1:2B:04:83:FB:25:12:0F:CB:81:77:C3:0B:80:0C:5C
Certificate issuer: /CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088
Certificate serial: 0C4CF7013867AAE1BE3CA5416132B5E7B801A52A
Authority key identifier: 3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa
Signing time: Sat 15 Jun 2024 12:00:01 +0000
ROA not before: Sat 15 Jun 2024 11:55:01 +0000
ROA not after: Sat 14 Jun 2025 12:00:01 +0000
asID: 136820
IP address blocks: 103.98.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:4c:f7:01:38:67:aa:e1:be:3c:a5:41:61:32:b5:e7:b8:01:a5:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088
Validity
Not Before: Jun 15 11:55:01 2024 GMT
Not After : Jun 14 12:00:01 2025 GMT
Subject: CN=E0176231A12B0483FB25120FCB8177C30B800C5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:83:80:03:6a:38:e2:77:3f:f6:00:03:cc:dd:
85:7c:32:0b:35:b6:53:cf:31:4d:21:e0:fb:30:59:
1a:d4:05:f1:04:7f:a7:9e:b6:65:b9:98:78:6a:01:
b1:6c:a6:0a:13:5c:5b:9d:b5:9e:ce:45:cf:32:2f:
6d:af:e9:38:4a:fb:4b:96:ec:22:fd:54:95:0f:1a:
24:eb:e5:df:78:bf:09:86:28:12:08:ec:ee:dd:81:
63:6b:7d:ef:fa:2b:f6:a8:6f:bf:f0:69:67:69:73:
9d:f5:d4:1a:16:21:b5:b3:5c:5d:08:71:fe:c7:8d:
db:dd:a4:7e:28:d2:da:26:08:a5:5d:4e:6b:d2:14:
40:34:4e:6b:43:91:99:ee:cc:36:cf:89:31:08:ce:
4c:ef:e6:9f:18:6b:90:34:1a:08:45:be:ee:91:98:
1d:fc:03:20:cb:22:6a:a1:3c:cd:80:16:4c:31:ef:
66:56:5d:37:0e:d9:4d:81:21:dc:26:7c:11:85:ae:
60:0d:98:6e:d4:6b:26:45:9f:c5:36:89:50:ec:c2:
57:26:66:ad:2c:a5:9e:3b:31:04:e5:df:59:a0:ba:
80:ad:63:29:0b:67:97:f2:59:e0:32:61:dd:ca:10:
9b:ff:ef:5e:30:64:02:b0:2a:4a:41:a7:79:c7:cb:
5c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:17:62:31:A1:2B:04:83:FB:25:12:0F:CB:81:77:C3:0B:80:0C:5C
X509v3 Authority Key Identifier:
keyid:3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.98.119.0/24
Signature Algorithm: sha256WithRSAEncryption
49:dd:8a:d5:a1:24:4e:62:cf:eb:80:e1:ce:71:de:37:84:1d:
d7:2a:61:75:ce:2b:36:5f:54:69:2b:83:e4:87:5d:a1:9b:36:
a4:86:1f:c2:aa:bc:6b:d0:5d:ee:47:87:e1:ab:2a:5c:0f:c5:
0a:00:b5:24:f9:c8:39:ea:14:0c:82:7d:25:5e:8b:6c:e5:eb:
b3:a8:11:7d:fe:17:28:ad:2f:bc:1d:1d:d1:58:06:13:f6:08:
20:04:58:fc:bb:da:26:6c:b9:9b:de:9c:13:2b:fa:93:7e:74:
bf:12:eb:44:fe:3e:76:c4:80:78:70:bc:7f:19:d1:de:15:c7:
95:a9:14:63:d8:b4:fb:1f:fd:73:53:63:50:85:3f:75:15:88:
0c:4e:54:d1:f1:ff:c7:d1:fc:29:9d:87:39:16:7a:d6:7b:f4:
ff:eb:26:d1:55:ef:30:db:af:59:fb:b8:ec:62:09:7c:12:d5:
c1:49:7a:7e:91:df:4e:25:8a:1d:35:32:83:45:cf:bd:cf:1f:
bd:5e:72:9d:85:b4:a3:26:b2:e3:36:12:74:ec:08:31:e8:e4:
1d:cc:9a:af:39:92:75:aa:2c:16:4f:30:0f:fb:d4:ab:6f:c5:
af:00:fa:14:28:16:70:b4:f5:39:bc:6a:5e:75:76:f9:8c:05:
7c:50:cc:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:46 2025 by rpki-client