Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3130332e33302e3134342e302f32322d3234203d3e203436303530.roa
File: 3130332e33302e3134342e302f32322d3234203d3e203436303530.roa (raw, json)
Hash identifier: Ect2ZTg7f92BY0SZ7MDChpSHiOXgr96F/7kTPjRYg7g=
Subject key identifier: 54:C2:63:2A:07:5D:C1:05:EE:6F:6A:03:CC:88:E8:A8:77:99:21:52
Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06
Certificate serial: 2638B5D3E9D2E6B39B0AD856BD19139C7E708DC2
Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3130332e33302e3134342e302f32322d3234203d3e203436303530.roa
Signing time: Fri 09 Aug 2024 07:02:22 +0000
ROA not before: Fri 09 Aug 2024 06:57:22 +0000
ROA not after: Fri 08 Aug 2025 07:02:22 +0000
asID: 46050
IP address blocks: 103.30.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:38:b5:d3:e9:d2:e6:b3:9b:0a:d8:56:bd:19:13:9c:7e:70:8d:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06
Validity
Not Before: Aug 9 06:57:22 2024 GMT
Not After : Aug 8 07:02:22 2025 GMT
Subject: CN=54C2632A075DC105EE6F6A03CC88E8A877992152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:23:76:39:19:86:ae:39:ed:f5:b8:17:9c:6f:
1c:b0:35:73:c5:2d:c1:c1:76:81:30:72:0d:6b:47:
7a:a2:60:58:0c:92:62:dd:23:25:85:15:2b:b6:2b:
27:5a:06:e8:96:52:3a:57:31:af:fe:31:78:e8:cf:
e3:79:11:e3:56:53:0e:73:89:c1:03:b8:c0:4d:6c:
d5:0e:50:d1:22:fc:7d:b1:a9:cc:d4:86:d9:41:41:
52:3a:78:e7:e1:9e:b4:5b:3f:99:f6:14:2d:6c:65:
59:e9:9d:fa:4d:00:ef:eb:94:34:7d:0f:53:03:92:
9e:ef:92:33:de:ad:a4:d2:15:db:5d:f9:93:65:70:
ba:67:dd:e9:5d:95:f1:22:9e:f2:5c:d1:b7:5d:a1:
dc:2c:36:29:24:91:cc:01:2e:af:11:19:63:f5:75:
30:58:21:cf:a0:6f:ac:5f:4a:fb:2c:40:0a:31:49:
18:b1:c7:61:05:17:b7:b5:63:41:aa:1b:cd:10:c4:
e6:a8:32:a2:23:10:49:a1:29:20:2d:2d:09:8b:21:
17:d9:fd:fe:9e:95:28:b7:70:4c:97:3c:e7:ac:0f:
4d:c5:e5:65:45:f0:e7:e0:33:98:7f:77:15:b1:22:
83:cf:30:cc:68:7a:3d:42:58:d1:03:e6:65:ac:2f:
5a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:C2:63:2A:07:5D:C1:05:EE:6F:6A:03:CC:88:E8:A8:77:99:21:52
X509v3 Authority Key Identifier:
keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/3130332e33302e3134342e302f32322d3234203d3e203436303530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.30.144.0/22
Signature Algorithm: sha256WithRSAEncryption
93:70:e1:17:a9:f3:8e:e4:d7:ee:10:2f:dd:89:f6:30:c1:24:
a6:44:4b:af:61:e4:df:a0:b9:5f:d0:ab:51:40:28:c7:e6:ad:
98:cd:10:bb:81:3b:0a:05:b6:3b:f6:52:67:0c:c1:dd:90:23:
aa:01:70:9d:42:9b:75:13:9b:90:af:7d:84:f8:f7:43:c1:c1:
1d:e7:99:07:65:c7:ec:17:ea:73:16:f7:20:10:9b:df:96:0f:
39:76:51:76:25:19:91:3a:40:ae:aa:95:32:3b:d9:b2:40:ca:
ab:f0:48:59:a5:52:a4:1c:9b:a5:d3:4b:a5:98:de:8c:80:fc:
e9:57:32:9c:0c:31:5f:3f:1c:a3:e1:b7:aa:ce:f3:9a:1c:7e:
08:73:2e:50:85:75:f9:b7:91:84:0c:27:0f:68:ea:56:85:76:
41:bc:f7:6f:b1:8b:e8:69:4b:35:69:9e:6c:40:15:66:4a:2c:
18:d0:8b:ea:f0:cc:0c:c0:e4:07:e3:5d:26:81:a2:33:7a:9b:
87:03:a1:2c:58:a6:03:af:6b:72:63:1a:cd:a2:93:11:1a:0d:
59:3e:63:4e:f2:8a:f2:f4:25:0a:4e:92:f2:81:54:fe:56:5d:
dd:fd:42:77:b6:7d:00:9a:fc:1f:0c:2b:23:b9:46:de:40:59:
69:06:70:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:46:46 2025 by rpki-client