Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa
File: 3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa (raw, json)
Hash identifier: 2Tm0gdcz+myuN01m+Uce2N/XVde2LN8VW21KDbbagQI=
Subject key identifier: CC:3D:CF:2D:38:F0:D7:63:FD:E1:AC:08:89:79:BA:0A:F6:CE:DF:F6
Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A
Certificate serial: 54ED108A3B00E0434AAE84B721317915244A4FF4
Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa
Signing time: Thu 08 Aug 2024 08:01:08 +0000
ROA not before: Thu 08 Aug 2024 07:56:08 +0000
ROA not after: Thu 07 Aug 2025 08:01:08 +0000
asID: 132668
IP address blocks: 103.19.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:ed:10:8a:3b:00:e0:43:4a:ae:84:b7:21:31:79:15:24:4a:4f:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A
Validity
Not Before: Aug 8 07:56:08 2024 GMT
Not After : Aug 7 08:01:08 2025 GMT
Subject: CN=CC3DCF2D38F0D763FDE1AC088979BA0AF6CEDFF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:db:4e:5c:bf:29:09:ed:4f:0f:1e:aa:de:cd:
73:f1:b5:04:da:38:f8:c2:7a:4c:6e:e9:e7:44:68:
b4:4a:df:80:ea:27:c3:22:e1:19:e6:4d:71:cd:4b:
87:69:23:de:7c:0d:67:82:6d:8e:a2:67:0e:6c:31:
53:2b:85:c1:2b:86:7e:18:60:30:6e:59:d4:a2:cb:
32:50:83:6d:2a:0c:3d:44:3e:8b:20:c5:b5:7b:41:
dc:cd:98:83:e7:77:c1:0f:d3:9b:52:9b:1f:74:d6:
bb:2d:ae:6f:87:06:1a:03:f5:02:e0:21:4f:d2:d1:
54:8b:94:70:21:ab:04:21:b7:1c:c2:60:d4:34:15:
37:4c:d3:3b:c0:c6:c6:b9:cd:19:4f:99:55:52:96:
24:88:69:c1:10:34:81:c1:0a:c1:a6:9e:79:25:19:
7f:f7:a6:3f:6d:a2:fc:c3:58:59:18:12:f1:0b:f9:
68:f4:fe:dd:a9:82:3a:c4:4e:0e:1a:aa:30:be:f4:
79:b0:78:7c:1b:31:75:2d:28:97:0f:33:e5:97:27:
4c:b9:9c:a3:f8:35:d4:eb:4a:84:c8:5d:57:07:b4:
c5:15:01:0e:09:be:28:cf:20:3a:30:98:b7:f5:f7:
c6:80:b3:4d:9d:df:4a:bc:e0:e0:fe:4e:20:02:3d:
62:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:3D:CF:2D:38:F0:D7:63:FD:E1:AC:08:89:79:BA:0A:F6:CE:DF:F6
X509v3 Authority Key Identifier:
keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.19.228.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a7:d9:df:34:4c:f4:4d:26:c1:61:a8:64:91:ed:9c:84:50:
aa:a2:b1:39:ed:1f:28:2b:d8:23:7d:08:50:5a:95:85:e0:9b:
5f:3b:9c:94:85:97:4e:e6:ab:f8:ca:98:98:8f:bb:bb:2c:ac:
93:8c:c2:c6:5e:09:15:76:e4:ad:9d:77:db:dd:1a:23:c9:3f:
b9:1b:c5:e4:38:04:0b:13:6c:4c:f4:9b:7c:53:cc:56:a4:71:
ec:f4:7c:8a:f9:6f:21:59:26:77:e0:9f:bf:03:1a:45:98:b0:
04:99:b7:e9:79:34:33:30:b8:bd:5f:11:e9:53:24:43:dd:37:
22:96:46:3b:42:e6:5c:b0:47:06:34:8d:1a:8b:42:84:41:6f:
4a:56:15:1d:d5:94:ac:ef:0a:f7:34:2c:08:ed:4e:8f:70:49:
f9:9f:f7:3d:83:10:df:d4:05:5f:a4:8d:e1:2a:2e:48:c5:ad:
26:81:e0:b4:60:c0:fb:4f:7c:f8:1d:f7:f6:cb:86:71:e2:cc:
ef:28:9d:b3:90:fc:b7:d4:d9:94:41:82:e7:c5:c2:58:b6:0c:
5b:e4:e5:57:97:c3:f5:b1:5c:c7:92:74:15:af:f0:22:e1:1e:
f6:6a:28:25:97:73:d1:05:09:36:07:f5:c7:0d:0b:9f:7b:dd:
d3:b1:60:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:48:42 2025 by rpki-client