Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa
File: 3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa (raw, json)
Hash identifier: zP2/xMyoKaZs6fiqSMcfKqk4R7UXbhBp7PEh6lL8fdI=
Subject key identifier: 0F:4C:D7:C3:AC:85:28:6D:26:F8:36:C1:55:70:ED:EE:4C:FB:7F:DE
Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE
Certificate serial: 07AABAD1202F9B09FB2369C7C4F3221C29D49A95
Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa
Signing time: Sun 01 Dec 2024 09:00:01 +0000
ROA not before: Sun 01 Dec 2024 08:55:01 +0000
ROA not after: Sun 30 Nov 2025 09:00:01 +0000
asID: 135439
IP address blocks: 103.214.236.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:aa:ba:d1:20:2f:9b:09:fb:23:69:c7:c4:f3:22:1c:29:d4:9a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE
Validity
Not Before: Dec 1 08:55:01 2024 GMT
Not After : Nov 30 09:00:01 2025 GMT
Subject: CN=0F4CD7C3AC85286D26F836C15570EDEE4CFB7FDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a0:37:ac:c3:e3:65:72:cc:f8:46:52:90:aa:
68:ff:60:3b:17:d4:17:44:ce:7e:2a:e3:43:14:58:
b0:bd:aa:fc:fd:26:98:1f:78:e8:77:06:dc:bd:9d:
46:63:4c:79:21:fb:39:11:08:60:19:8c:64:7a:d4:
8f:c9:da:96:7f:99:8c:37:fc:75:bb:62:d3:b0:63:
9b:32:b6:60:41:55:26:f5:cc:a0:79:0c:16:d2:04:
91:e9:f2:6c:71:d7:b2:86:89:26:37:d5:d6:76:2d:
19:32:8e:d0:3d:77:fc:65:81:59:d9:e8:e8:14:45:
70:20:fe:ab:8c:cc:a8:29:65:93:bb:8c:fb:37:7b:
71:52:4f:2b:fc:bc:86:3b:d5:dd:d6:ea:5b:80:76:
ce:be:74:32:5f:49:b8:dd:10:58:cf:db:5b:a5:9b:
ba:f9:fc:01:c0:46:93:99:82:d6:3a:f2:17:d4:2e:
7b:e8:e2:68:7d:0d:a6:fb:8d:29:ba:46:06:ff:69:
07:89:f0:7e:6e:2c:b3:6b:97:9d:55:16:73:ba:93:
04:3b:94:fa:48:ef:c3:07:6d:c9:d2:8a:95:21:0f:
8c:da:c7:4e:3f:53:63:1d:79:01:75:be:92:4d:d0:
62:00:6d:06:95:97:8a:77:31:a7:9f:d2:29:9b:cd:
1e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:4C:D7:C3:AC:85:28:6D:26:F8:36:C1:55:70:ED:EE:4C:FB:7F:DE
X509v3 Authority Key Identifier:
keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.236.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:1d:46:18:c5:e0:90:66:cd:fe:dd:5e:a8:38:d3:4c:24:36:
3b:e4:e9:30:e6:91:b5:0f:64:7c:41:e5:6b:84:9c:fc:63:df:
73:89:6b:f1:a2:eb:4e:93:22:fc:2c:e1:71:02:f5:e5:83:60:
e9:f0:eb:98:19:2b:cc:72:3d:97:6a:f6:9d:15:22:08:ce:4c:
9c:c6:26:9c:3e:c2:52:4f:b8:a0:34:f5:8e:f1:6f:3d:3e:b0:
af:66:a5:b4:21:f5:bf:f4:20:13:af:23:6c:2b:67:63:d5:3b:
4c:43:8d:0f:b3:13:22:88:fa:ff:58:1a:f7:cc:26:47:08:33:
24:38:b3:1d:3b:33:e3:51:c9:25:5f:b2:7f:c3:d8:a1:82:0b:
9b:4b:70:74:84:7d:94:de:13:b8:c9:9c:59:4c:dc:3e:93:cd:
fe:cf:18:c5:24:f6:9e:88:b7:99:fd:0a:6f:92:63:70:35:e4:
ab:d8:b6:ae:15:42:b0:a9:7a:c8:26:3e:48:7b:8a:75:0e:f6:
ff:34:69:5e:71:30:bd:ad:b9:ea:17:6c:0d:cd:ca:ac:b3:3b:
fc:56:98:6d:1c:84:f2:e2:ea:19:e8:ba:92:9f:71:36:c7:d7:
2e:fc:b2:19:1c:ef:18:61:e1:cb:c2:29:e6:1e:0c:0f:d0:23:
9a:e5:8b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:46 2025 by rpki-client