Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d53e4af5-aaf5-46ce-b119-d7e76dae20b8/0/3130332e3136392e362e302f32332d3234203d3e20313431313037.roa
File: 3130332e3136392e362e302f32332d3234203d3e20313431313037.roa (raw, json)
Hash identifier: LxMwNxJqtsDAew6t2HZWJN3elxDUrVZNuiLgSdrPlIM=
Subject key identifier: C6:5A:F9:7B:5B:6C:44:03:C8:F6:2E:E9:D9:51:5B:89:FD:00:A0:C6
Certificate issuer: /CN=D76CF64B32F23D8C4EBFA02811D0B08A78C612D0
Certificate serial: 532DD5D6978F2822C0EE5B44E9EFA172D16BCE6B
Authority key identifier: D7:6C:F6:4B:32:F2:3D:8C:4E:BF:A0:28:11:D0:B0:8A:78:C6:12:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D76CF64B32F23D8C4EBFA02811D0B08A78C612D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d53e4af5-aaf5-46ce-b119-d7e76dae20b8/0/3130332e3136392e362e302f32332d3234203d3e20313431313037.roa
Signing time: Wed 13 Nov 2024 05:00:00 +0000
ROA not before: Wed 13 Nov 2024 04:55:00 +0000
ROA not after: Wed 12 Nov 2025 05:00:00 +0000
asID: 141107
IP address blocks: 103.169.6.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:2d:d5:d6:97:8f:28:22:c0:ee:5b:44:e9:ef:a1:72:d1:6b:ce:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D76CF64B32F23D8C4EBFA02811D0B08A78C612D0
Validity
Not Before: Nov 13 04:55:00 2024 GMT
Not After : Nov 12 05:00:00 2025 GMT
Subject: CN=C65AF97B5B6C4403C8F62EE9D9515B89FD00A0C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9f:ec:46:0c:2f:9b:d6:8d:f6:a8:34:16:83:
0b:60:6c:c3:11:9f:0a:6a:3f:b7:e6:df:9e:27:06:
65:56:2c:c7:5b:db:6a:e2:c3:bc:b9:b1:30:d6:f3:
2e:63:0f:79:29:e2:51:6c:95:cb:37:4b:a2:ed:a1:
12:65:f6:52:49:38:20:2d:61:71:be:b2:c9:4d:50:
7c:e3:fe:cd:22:bb:0a:c6:e1:86:b3:b0:d3:7a:ca:
7e:e4:f6:41:1f:e1:7c:a7:23:ce:7c:0b:38:ef:96:
8c:52:9d:1f:19:59:81:85:c8:0d:c6:d7:09:b7:90:
8b:5c:f0:83:52:51:e7:aa:c7:15:e6:10:4f:89:1d:
43:78:a4:7a:a9:cc:07:0a:30:8a:4b:f8:e1:a6:75:
85:d7:35:b5:3f:88:bb:4c:5a:15:02:f1:c6:ca:4d:
22:bc:aa:3c:22:13:52:a0:02:2d:49:fb:33:52:4b:
e2:68:bc:66:d3:81:30:9f:c3:e1:ec:60:91:d7:1f:
3e:68:c7:bb:3d:6c:c6:81:66:95:df:83:41:62:1d:
45:24:a3:f5:67:b0:43:46:a9:d0:db:d4:07:48:36:
40:cd:82:ad:4e:79:33:20:50:69:c9:24:a5:0f:14:
aa:ac:7d:e5:48:e2:9f:5d:7d:39:13:52:a3:00:35:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:5A:F9:7B:5B:6C:44:03:C8:F6:2E:E9:D9:51:5B:89:FD:00:A0:C6
X509v3 Authority Key Identifier:
keyid:D7:6C:F6:4B:32:F2:3D:8C:4E:BF:A0:28:11:D0:B0:8A:78:C6:12:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d53e4af5-aaf5-46ce-b119-d7e76dae20b8/0/D76CF64B32F23D8C4EBFA02811D0B08A78C612D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D76CF64B32F23D8C4EBFA02811D0B08A78C612D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d53e4af5-aaf5-46ce-b119-d7e76dae20b8/0/3130332e3136392e362e302f32332d3234203d3e20313431313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.6.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:73:6a:76:cd:09:98:9d:10:6f:34:64:12:9c:4c:95:36:92:
d6:6b:0a:95:1a:98:cc:93:8f:20:98:ee:f3:d5:92:27:98:64:
01:a3:41:20:b9:01:d8:23:f4:43:39:2d:3f:ba:ed:12:84:67:
85:38:2c:0f:00:22:8c:d8:c9:d2:da:f8:2f:79:c5:15:53:44:
35:a9:5c:46:f0:ec:7a:c3:a3:2d:1d:59:b1:6b:88:90:bd:16:
12:f9:79:a3:16:dc:da:df:76:65:f2:02:e6:cf:14:12:9d:ec:
99:9a:51:36:b6:72:f8:18:d5:f7:7b:f7:4c:96:29:66:64:8b:
ae:fd:64:5a:73:9a:0b:4b:d2:07:02:01:44:4e:89:77:00:34:
5d:c6:20:60:d8:30:b6:e2:cd:32:94:56:50:c3:78:68:b8:6e:
36:c0:f2:41:b5:31:59:9d:30:a3:81:a3:c2:30:d8:74:32:c4:
39:5b:5f:dc:02:73:b4:78:97:d0:45:de:b8:0b:23:48:55:73:
e4:90:10:bf:c3:73:b0:62:af:18:c0:28:42:3d:34:6b:e4:72:
da:32:08:59:ea:82:84:3b:4e:7f:1c:7e:c4:d7:51:00:22:4e:
7f:7c:db:54:9d:88:8b:1e:38:d0:a1:91:f3:a1:65:4c:9d:68:
da:26:f5:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:36:37 2025 by rpki-client