Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa
File: 3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa (raw, json)
Hash identifier: 9EURxrNrlf7XNa4qBRBWmt6iAklp2ZexfAnaMIzL06c=
Subject key identifier: CE:6B:30:49:53:C4:B1:D2:0B:F3:97:DD:71:D6:26:1E:9F:5E:A9:02
Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE
Certificate serial: 75EC1F1B95BECAD80E40769B9E028D456FC0F4D4
Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa
Signing time: Sun 01 Dec 2024 09:00:01 +0000
ROA not before: Sun 01 Dec 2024 08:55:01 +0000
ROA not after: Sun 30 Nov 2025 09:00:01 +0000
asID: 135439
IP address blocks: 103.214.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:ec:1f:1b:95:be:ca:d8:0e:40:76:9b:9e:02:8d:45:6f:c0:f4:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE
Validity
Not Before: Dec 1 08:55:01 2024 GMT
Not After : Nov 30 09:00:01 2025 GMT
Subject: CN=CE6B304953C4B1D20BF397DD71D6261E9F5EA902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:77:bc:3c:90:f1:90:92:88:f2:19:b0:b3:89:
55:fa:ff:71:6a:cb:f3:5b:17:e7:99:87:1c:eb:dc:
69:7a:09:7d:8a:04:e0:09:77:7f:2c:f3:50:23:55:
90:f6:fd:8a:6f:5c:51:73:da:f6:d8:3e:ef:40:c4:
99:97:21:29:59:84:db:83:7f:b4:97:2d:1d:37:60:
d1:03:99:a2:40:79:23:4e:e9:49:9b:4d:00:fc:ab:
03:45:d5:0b:fe:11:55:d2:17:21:66:b4:54:13:fa:
7b:3c:49:07:ff:1a:61:35:2e:4c:89:dd:c8:53:45:
b0:27:c5:35:57:48:60:80:f9:24:4c:e2:2e:e4:53:
ae:60:dd:fa:d7:93:5e:7c:23:c0:7d:81:40:a1:d6:
f9:69:8a:14:6f:91:46:09:ca:66:22:65:01:20:29:
77:de:96:c9:a0:28:79:fa:42:ad:f5:8e:83:ce:21:
03:ce:78:16:c0:91:6e:33:b2:37:74:8a:1b:e7:a4:
9e:2b:aa:89:c5:f7:43:19:55:d3:ab:f6:41:83:3a:
e6:ab:d5:34:3e:87:a2:ba:11:be:87:48:5d:b3:d2:
e9:47:ea:21:a9:71:2b:e6:b2:51:87:d1:39:35:13:
ad:d4:40:42:22:96:c3:df:4a:d4:6c:b1:72:c2:fb:
07:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:6B:30:49:53:C4:B1:D2:0B:F3:97:DD:71:D6:26:1E:9F:5E:A9:02
X509v3 Authority Key Identifier:
keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.238.0/24
Signature Algorithm: sha256WithRSAEncryption
30:4c:1e:16:ea:9c:cc:f1:67:c3:b5:16:b2:9a:86:72:3c:a3:
ae:11:87:78:88:3a:41:e9:e5:b9:4c:ca:01:65:1f:b7:97:d2:
06:bd:79:55:0d:82:9b:c2:7d:09:02:e0:ba:23:1b:0d:1c:bb:
3b:90:8f:e1:40:6f:d3:bf:02:1f:d5:16:e6:d1:05:98:85:d0:
a9:f7:58:61:a8:5e:ac:1b:1a:ed:73:11:0d:ce:b5:19:56:b9:
41:8b:ea:b9:e7:9d:3d:f4:94:40:2c:32:c7:de:72:19:a1:e8:
5c:e3:0f:16:fc:c6:5e:bb:32:5f:b9:c8:d0:51:0f:68:0f:6a:
d0:6c:80:f2:d3:3a:80:ca:ba:36:ed:b3:d6:fe:ff:e8:62:30:
77:52:8a:7f:cb:58:cb:08:75:52:ab:87:76:4c:4b:e3:45:94:
f9:4a:e8:60:da:77:68:7a:d6:21:d5:a9:1e:18:95:14:92:51:
6f:5e:eb:d3:65:7d:17:16:dc:52:dd:f0:d0:8d:82:4b:d0:e5:
f5:15:e9:24:ab:79:3f:4a:30:b2:83:cd:96:4a:79:b9:a4:a0:
4a:70:be:7a:67:ec:e8:e1:a9:fa:00:1f:00:09:48:9d:5b:53:
6f:c3:1f:44:0a:66:de:ce:de:a1:2c:0b:43:e9:81:ff:fa:fa:
b2:49:94:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:15:40 2025 by rpki-client