Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32362e302f32342d3234203d3e20313431363038.roa
File: 3130332e3135382e32362e302f32342d3234203d3e20313431363038.roa (raw, json)
Hash identifier: 5OCcdYMHQx3eaRp8N1KakhheYA1LVXtba8lQ3iS+KJc=
Subject key identifier: 00:30:C2:B6:B0:44:51:E3:36:67:4E:09:48:41:47:2A:03:CE:F0:E8
Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B
Certificate serial: 18815AD3AA498573D03860E8C364A64A0A4DEC5A
Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32362e302f32342d3234203d3e20313431363038.roa
Signing time: Thu 06 Jun 2024 03:00:01 +0000
ROA not before: Thu 06 Jun 2024 02:55:01 +0000
ROA not after: Thu 05 Jun 2025 03:00:01 +0000
asID: 141608
IP address blocks: 103.158.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:81:5a:d3:aa:49:85:73:d0:38:60:e8:c3:64:a6:4a:0a:4d:ec:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B
Validity
Not Before: Jun 6 02:55:01 2024 GMT
Not After : Jun 5 03:00:01 2025 GMT
Subject: CN=0030C2B6B04451E336674E094841472A03CEF0E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c3:3c:51:28:d0:b5:3b:d4:d0:54:9f:aa:f0:
c6:f6:42:c5:c4:12:13:ca:68:2b:69:a6:43:82:8c:
15:31:a0:8d:01:1e:c2:79:64:6b:51:dc:ca:c0:a1:
92:df:39:83:1d:a0:98:21:40:11:4e:6d:7d:f2:3c:
0a:65:57:f8:05:e6:a3:2e:a8:64:f4:69:5e:6f:ea:
88:65:b6:ef:1e:a1:4a:85:49:ad:d2:f6:9f:bd:c2:
cf:b2:ed:ae:cb:01:be:6b:a6:13:e6:26:05:ca:2a:
31:cb:85:d5:74:e0:54:ee:d3:7d:88:96:cb:33:ca:
e5:ec:4c:ba:ef:18:16:b8:49:c7:7d:3c:37:4c:2e:
39:bc:de:27:0c:fe:46:69:89:c6:01:4a:cf:bf:88:
d4:3f:89:25:8c:6e:db:48:92:36:37:62:5f:f9:ae:
97:9d:2d:c3:30:b3:fc:5f:5c:c6:7e:75:33:6c:10:
d7:c1:68:6e:b3:03:24:2b:45:e4:f9:13:98:37:46:
8f:5f:88:87:67:8a:b3:67:74:bf:0d:eb:5b:a0:6e:
b0:ac:67:b2:f6:96:74:fb:7b:97:ce:53:fe:4d:f2:
21:25:61:25:a6:6a:78:75:c8:da:bf:bf:86:ed:6f:
51:ee:b4:99:5a:b0:73:de:e5:06:45:ee:25:66:7f:
e4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:30:C2:B6:B0:44:51:E3:36:67:4E:09:48:41:47:2A:03:CE:F0:E8
X509v3 Authority Key Identifier:
keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/3130332e3135382e32362e302f32342d3234203d3e20313431363038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.26.0/24
Signature Algorithm: sha256WithRSAEncryption
47:fe:22:ba:65:f9:43:a9:c1:1b:35:6d:65:e5:a5:df:98:39:
8e:e3:d0:13:24:cf:4e:ca:73:81:21:06:03:65:67:03:e6:5f:
c2:33:c4:c5:a8:1b:0f:6b:c3:27:5f:3a:66:10:9e:a5:14:f6:
5a:53:d7:92:18:b6:c1:fe:ea:00:92:61:03:62:10:9d:bb:0a:
33:f6:d8:33:47:5d:89:c9:b3:3e:7f:c9:33:01:7a:af:d2:ee:
c1:6e:25:88:7d:a9:21:cf:e8:42:f2:f5:be:3e:5b:d4:b8:68:
92:e2:e8:ff:39:05:ce:62:35:d0:aa:c6:1e:87:7c:46:0c:ae:
34:88:b7:75:83:bb:e5:fd:fc:c1:f7:cb:49:e9:bf:e2:3e:ab:
93:a9:1f:22:fd:f7:ca:e4:42:c0:db:98:1b:76:cc:41:28:ef:
64:53:ec:12:11:ae:77:49:58:d4:60:e3:00:63:5c:f0:9e:ea:
aa:74:98:04:8a:71:c3:bd:c7:56:77:6a:ce:82:8b:57:74:49:
3b:2a:fb:9c:dc:4e:41:70:b5:ad:6b:25:e8:e4:9c:1a:77:8c:
52:a4:c2:47:8d:0e:15:1e:7d:c7:fd:1d:2b:f5:fe:9a:f7:ed:
33:d3:52:52:6d:f5:c2:f8:2d:10:95:51:01:9e:01:90:ff:72:
f3:cc:f2:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:46:09 2025 by rpki-client