Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa
File: 3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa (raw, json)
Hash identifier: NqnaoUff0mb/PaAApaFd35D+2QLuh2rweUqESvnuR9w=
Subject key identifier: 49:CC:AC:3E:BA:10:B4:E0:5E:F9:AD:22:44:73:50:3B:63:84:29:0A
Certificate issuer: /CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3
Certificate serial: 5ACA685BE86E011C8DC4F922B8B8B0B4AAA93540
Authority key identifier: FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa
Signing time: Sun 16 Jun 2024 00:39:42 +0000
ROA not before: Sun 16 Jun 2024 00:34:42 +0000
ROA not after: Sun 15 Jun 2025 00:39:42 +0000
asID: 140417
IP address blocks: 103.151.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:ca:68:5b:e8:6e:01:1c:8d:c4:f9:22:b8:b8:b0:b4:aa:a9:35:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3
Validity
Not Before: Jun 16 00:34:42 2024 GMT
Not After : Jun 15 00:39:42 2025 GMT
Subject: CN=49CCAC3EBA10B4E05EF9AD224473503B6384290A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6f:9f:35:8d:4b:7a:db:6f:8b:e4:9a:a8:58:
14:a1:95:90:dc:cb:70:04:c1:78:e6:c9:7f:25:44:
51:a7:54:c6:8a:dd:b3:76:4d:eb:02:28:f4:53:63:
2a:6d:9a:4f:e5:0b:d1:98:c6:27:43:53:38:69:66:
69:23:57:80:67:03:b9:26:20:11:b4:96:72:47:95:
15:0f:d5:60:33:95:82:ca:a0:fd:ba:5e:31:e4:10:
3e:1e:bb:28:0f:a4:ef:7b:ad:f5:f2:27:2d:7e:a3:
5b:cd:36:36:9f:34:f7:b1:08:20:41:46:2f:e4:f4:
46:4b:7f:83:ba:7f:b7:0b:da:74:9e:57:39:be:b6:
f9:5f:b7:03:d0:ad:2e:09:68:65:19:bd:84:4b:10:
51:33:c2:e9:e8:7f:21:dd:57:8a:27:8d:77:13:73:
98:ef:67:5c:14:33:f8:17:18:41:63:2c:9a:26:f1:
80:f2:5f:05:38:0d:7d:46:c0:bd:c4:11:92:79:07:
aa:69:14:eb:c5:b9:46:21:04:8b:82:e3:d1:83:38:
0b:a6:90:2c:de:6b:c4:5c:28:84:c9:d8:05:b2:df:
fa:51:e0:82:ef:ca:a9:b6:c2:ba:e0:1b:59:57:d1:
14:7a:f7:6a:36:13:41:22:47:02:ef:29:89:71:27:
61:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CC:AC:3E:BA:10:B4:E0:5E:F9:AD:22:44:73:50:3B:63:84:29:0A
X509v3 Authority Key Identifier:
keyid:FC:D5:B5:62:FA:ED:9B:9D:67:F9:DE:5D:B7:05:78:BF:DB:00:57:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD5B562FAED9B9D67F9DE5DB70578BFDB0057B3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d47026a9-0c9a-4d79-ad67-2c9dbd366d0b/0/3130332e3135312e3134302e302f32332d3234203d3e20313430343137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.151.140.0/23
Signature Algorithm: sha256WithRSAEncryption
20:14:83:38:61:07:4c:e6:d8:24:14:f0:94:63:b5:e9:cd:85:
0b:38:f6:54:62:7e:ef:40:08:6a:52:aa:5f:56:a9:b4:38:67:
a3:1d:5e:1e:fe:26:ff:43:06:0a:c4:c5:f3:c4:38:6b:3e:37:
0e:85:7a:0b:5e:e5:97:67:88:90:55:ea:4c:49:20:63:89:a6:
e6:5d:6e:13:ce:d6:87:82:b2:4e:a0:bf:b1:9b:60:32:cc:37:
9d:69:dd:62:eb:16:79:d1:fa:8d:90:d2:17:ae:f6:f1:e4:39:
ae:f8:01:3d:08:a2:d8:41:b3:4d:3c:a2:7e:2d:3a:65:47:80:
f0:e3:f6:58:d2:df:73:a3:b2:ef:d8:f2:ef:71:d0:76:d9:b5:
45:b4:89:96:23:8c:1b:c5:d9:a3:c1:e9:7c:ec:dc:2a:d2:33:
39:bf:b6:0f:50:6d:55:ab:c1:e6:07:0d:c6:40:a6:bb:3b:4c:
c9:41:5c:db:d6:b7:f5:e9:31:b0:91:c8:65:25:6c:25:60:0f:
d9:67:54:a6:44:47:d5:93:d6:91:f0:6e:99:ef:2e:86:2d:63:
76:70:1e:e8:4d:86:c5:ad:1c:81:d8:bf:c7:30:40:67:ce:5c:
be:80:9b:3c:4a:66:25:f6:c6:99:45:86:32:4c:5d:64:fb:08:
81:0b:19:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:50:49 2025 by rpki-client