Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32332e3131362e302f32332d3234203d3e203538333835.roa
File: 3130332e32332e3131362e302f32332d3234203d3e203538333835.roa (raw, json)
Hash identifier: 5UewkM1pAbLnP65YZLTVxzSYU/L1g1J84e5HTrwnd3M=
Subject key identifier: AB:3A:94:15:A3:8E:E0:C6:8B:62:F2:D2:B4:46:43:E2:60:EE:BE:49
Certificate issuer: /CN=B891A45840F824B9F116CBEAA3574A68343F5538
Certificate serial: 2DC168F76E652978463D5A4B25E60BF541A0CAC2
Authority key identifier: B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32332e3131362e302f32332d3234203d3e203538333835.roa
Signing time: Mon 23 Dec 2024 17:01:03 +0000
ROA not before: Mon 23 Dec 2024 16:56:03 +0000
ROA not after: Mon 22 Dec 2025 17:01:03 +0000
asID: 58385
IP address blocks: 103.23.116.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:c1:68:f7:6e:65:29:78:46:3d:5a:4b:25:e6:0b:f5:41:a0:ca:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B891A45840F824B9F116CBEAA3574A68343F5538
Validity
Not Before: Dec 23 16:56:03 2024 GMT
Not After : Dec 22 17:01:03 2025 GMT
Subject: CN=AB3A9415A38EE0C68B62F2D2B44643E260EEBE49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:63:1d:6f:08:0a:9c:e8:52:00:15:97:be:42:
5c:06:7c:ef:6e:c4:a9:ff:e4:a7:d6:48:2b:54:e2:
fb:01:3e:56:64:f4:d0:86:af:dc:07:cc:b4:4e:4c:
fd:ab:18:e1:b0:64:fa:1b:bf:25:1b:3e:36:ff:cc:
5c:79:77:9f:0a:da:23:85:48:50:1a:f3:5b:26:df:
65:bc:38:0b:d4:ce:62:98:6d:ea:7d:86:b0:51:c3:
a7:0d:9c:60:c7:01:87:20:1b:20:2c:8d:60:c2:6e:
8c:b3:30:06:9c:6e:df:1f:77:8b:fa:14:99:5e:d1:
6d:22:d9:f7:b6:5d:76:dc:58:f7:c6:32:bb:73:f1:
13:02:45:44:01:32:50:ec:1a:e6:63:27:6f:63:62:
74:ad:c1:f0:ee:0a:d8:a4:2d:00:0c:64:4f:f7:4a:
44:a1:7c:e8:46:cb:56:d4:69:87:48:d2:2f:46:2e:
5d:4a:5a:82:52:59:2c:79:90:66:f2:97:25:2d:84:
46:d6:4e:b7:b7:9e:a1:ac:f4:d5:ac:08:eb:2e:c3:
65:a2:72:3d:b8:69:7a:dc:f6:ff:26:d2:9a:47:3c:
61:9b:f4:0e:77:0b:81:6e:ec:a3:0f:f2:9a:9f:9b:
53:99:47:87:ca:6f:fb:b3:a6:ce:8e:a0:b2:0e:3b:
ac:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:3A:94:15:A3:8E:E0:C6:8B:62:F2:D2:B4:46:43:E2:60:EE:BE:49
X509v3 Authority Key Identifier:
keyid:B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32332e3131362e302f32332d3234203d3e203538333835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.23.116.0/23
Signature Algorithm: sha256WithRSAEncryption
85:a7:11:19:93:cb:b3:6e:21:46:94:8e:c7:bd:a8:99:cf:eb:
31:5a:f7:b7:c4:4c:9b:dc:1a:2b:18:bb:8e:3e:2e:76:15:be:
e4:1b:41:7d:b1:eb:b8:89:5c:dc:ca:4d:58:13:a5:57:f9:27:
94:86:db:35:3a:65:51:1e:00:da:86:9d:7b:41:01:dc:1a:e0:
bf:0a:1d:91:a6:12:4d:e7:22:2a:e6:7f:0f:53:da:85:ad:29:
de:11:67:2e:ac:8e:3d:f8:d9:97:25:86:ef:1d:1c:f8:28:f4:
d4:7d:bf:7b:b4:95:94:e1:e1:3e:fc:c2:b2:c6:c0:21:86:66:
30:bc:58:6a:ed:96:e8:68:89:7c:27:d6:e0:da:2d:d2:02:97:
74:2f:8c:7c:b2:14:a5:85:46:a5:46:a1:51:f9:8e:ed:03:b2:
84:c9:3a:08:15:6e:06:0f:1b:2f:8a:a9:f7:7e:94:40:72:d3:
c8:73:13:f0:19:53:fe:36:ba:2f:4b:5d:bc:f2:3d:0f:5a:22:
9f:1e:11:62:79:b1:65:4d:62:35:db:0c:9a:fa:65:6f:e5:e0:
06:f1:2b:05:d1:65:f6:79:51:4b:f5:b6:2a:d1:fa:55:81:65:
49:6c:be:84:a1:0d:46:b5:e8:2e:6c:de:01:0a:e2:36:8d:22:
72:6c:c6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:41 2025 by rpki-client