Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa
File: 3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa (raw, json)
Hash identifier: iNjcB0kWnopXWaRjUuHXoGmYpnB3R6bix+q7nd5LKus=
Subject key identifier: 98:4F:77:3F:3E:66:C3:65:32:A0:FE:CE:4A:15:4E:D8:C9:53:29:7A
Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23
Certificate serial: 4F3B8050A60A3198FB76FB5E2AC9E750BCB4C1AF
Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa
Signing time: Mon 01 Jul 2024 01:04:50 +0000
ROA not before: Mon 01 Jul 2024 00:59:50 +0000
ROA not after: Mon 30 Jun 2025 01:04:50 +0000
asID: 136869
IP address blocks: 103.104.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:3b:80:50:a6:0a:31:98:fb:76:fb:5e:2a:c9:e7:50:bc:b4:c1:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23
Validity
Not Before: Jul 1 00:59:50 2024 GMT
Not After : Jun 30 01:04:50 2025 GMT
Subject: CN=984F773F3E66C36532A0FECE4A154ED8C953297A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:27:c6:77:4c:a2:10:4d:6a:f2:90:5c:fb:f0:
b9:9f:3b:9d:a2:40:0e:3d:bf:d0:8e:12:47:c1:f6:
7c:d2:85:d3:1b:e2:39:cd:a7:e4:53:63:07:e3:b4:
3a:79:bb:a8:2f:15:6b:be:c5:fb:57:2d:e2:19:b8:
14:6e:46:c8:f6:95:2a:8f:87:6c:7f:1f:2b:0b:e0:
f1:75:97:2b:22:77:18:73:74:21:ea:2e:3a:5d:6b:
d0:0d:2b:c6:1d:ba:70:d3:36:12:68:68:68:23:ff:
5a:46:7a:6c:86:30:f5:50:c6:29:f2:43:b4:ab:32:
c7:c6:b5:11:2f:27:a1:01:7f:b2:6b:92:8b:7f:1f:
ee:17:b3:82:2f:29:83:ad:fd:7e:a7:5a:03:bb:ba:
ab:c0:4f:59:3d:24:a0:01:2a:14:fb:1a:08:1b:a9:
75:8d:86:4e:6b:a6:68:5f:a6:25:02:74:0f:a2:6b:
d8:b5:55:1d:98:ab:4a:58:0a:a4:46:74:8f:14:30:
14:e1:29:23:32:3e:d4:da:ee:78:fd:70:87:8b:0f:
40:b2:7d:45:50:26:56:c8:33:34:23:a2:8e:22:cd:
39:c0:66:29:8b:f3:61:1a:f7:f9:33:f4:bc:24:b7:
d3:35:ec:77:5a:4e:ec:7b:62:82:67:92:a1:87:31:
21:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:4F:77:3F:3E:66:C3:65:32:A0:FE:CE:4A:15:4E:D8:C9:53:29:7A
X509v3 Authority Key Identifier:
keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.104.205.0/24
Signature Algorithm: sha256WithRSAEncryption
64:98:36:1c:88:ae:36:be:0c:e3:56:d6:a2:7a:0e:22:75:76:
bb:4c:79:de:33:e5:e6:0d:ed:02:6b:bb:c1:a1:0e:e1:45:19:
58:4b:a3:51:8c:5b:9c:9d:c8:5a:ae:91:f7:1a:10:56:a4:f8:
19:46:52:dd:3c:23:13:fd:e1:f0:92:c8:bb:a4:4f:76:7c:c5:
20:84:7d:e2:e3:19:2c:f8:19:ca:18:e9:d2:65:4f:e9:68:68:
a7:65:97:0a:66:7b:4c:2c:45:9c:10:e4:96:56:5e:00:cc:56:
78:81:02:8b:f3:1b:1c:b2:8d:f9:db:81:b8:57:c6:26:02:4b:
eb:20:40:5e:0c:97:8f:a6:64:ec:02:33:91:c5:15:1e:6c:66:
95:a7:cd:a3:46:14:a3:3d:db:f5:5e:09:9b:76:1d:84:3d:41:
87:65:54:24:1c:19:b5:8e:1e:4f:97:2d:34:85:c4:4d:58:45:
ca:02:aa:d3:cc:73:1f:53:8b:fe:26:28:99:6a:fc:a3:76:08:
e2:30:d5:cd:f0:21:4a:be:41:46:21:18:3a:3f:65:d0:4b:b4:
5b:18:f2:cd:58:36:c6:a5:26:7e:81:d1:94:5a:13:a4:cb:9e:
91:90:41:f0:ab:ca:e1:d7:75:9d:3f:f1:e7:ba:48:bd:c7:55:
6c:23:24:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:46:50 2025 by rpki-client