Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/3130332e3134322e3230332e302f32342d3234203d3e20313339333738.roa
File: 3130332e3134322e3230332e302f32342d3234203d3e20313339333738.roa (raw, json)
Hash identifier: xLmMTjSOjSqS6LykBY4skbTjNzEVrHStJ+4rPzwZUSY=
Subject key identifier: 64:89:27:39:0F:5B:B9:19:DF:F5:B7:DF:21:4B:7C:DD:10:79:AE:58
Certificate issuer: /CN=C5CA2999FE7612F56CCCB7441743B05181458ED0
Certificate serial: 6A6F50A9AD035F34523857A3ACC11EBECECFE78F
Authority key identifier: C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/3130332e3134322e3230332e302f32342d3234203d3e20313339333738.roa
Signing time: Mon 01 Jul 2024 01:04:40 +0000
ROA not before: Mon 01 Jul 2024 00:59:40 +0000
ROA not after: Mon 30 Jun 2025 01:04:40 +0000
asID: 139378
IP address blocks: 103.142.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:6f:50:a9:ad:03:5f:34:52:38:57:a3:ac:c1:1e:be:ce:cf:e7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C5CA2999FE7612F56CCCB7441743B05181458ED0
Validity
Not Before: Jul 1 00:59:40 2024 GMT
Not After : Jun 30 01:04:40 2025 GMT
Subject: CN=648927390F5BB919DFF5B7DF214B7CDD1079AE58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ab:ba:30:bb:4c:0d:51:76:71:ad:b7:4b:4e:
5d:cc:f0:89:49:7a:71:4d:c6:82:32:18:91:98:af:
26:ee:63:cb:c2:4e:b0:09:a7:1a:ee:1b:75:a9:47:
61:d8:a5:4a:99:ad:e5:d4:cc:f4:84:30:43:9d:25:
f3:27:c2:4d:83:9f:e8:7f:c1:28:cb:17:b3:b8:a0:
21:f0:a7:83:24:9d:ef:7c:26:26:2c:60:ee:58:ae:
ce:66:ba:71:8e:8d:b8:70:5c:85:ad:ad:c4:14:17:
8a:62:1e:b9:2e:d9:51:26:42:39:a6:61:cc:82:b7:
70:de:be:c8:09:14:7d:c0:1e:cb:2e:e1:f9:fd:b7:
8f:38:35:1c:0e:cc:50:19:ac:a3:5e:b2:c9:6e:9d:
38:cf:f4:77:e7:0a:07:c0:58:cd:8d:9a:e9:e0:ad:
92:40:2d:ab:93:7d:c5:07:0a:64:a6:93:ce:69:0d:
7e:f6:af:be:46:2d:eb:36:e9:31:5c:83:ed:a7:20:
b7:b1:f3:1d:12:06:83:d8:29:83:90:b5:30:28:a1:
2f:eb:88:29:cf:33:24:b3:23:80:50:3a:39:20:95:
37:a7:1d:36:a8:63:16:a2:e2:b0:06:e1:31:59:7d:
7d:73:ea:fe:0b:44:28:cc:59:63:40:74:ff:df:63:
77:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:89:27:39:0F:5B:B9:19:DF:F5:B7:DF:21:4B:7C:DD:10:79:AE:58
X509v3 Authority Key Identifier:
keyid:C5:CA:29:99:FE:76:12:F5:6C:CC:B7:44:17:43:B0:51:81:45:8E:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/C5CA2999FE7612F56CCCB7441743B05181458ED0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C5CA2999FE7612F56CCCB7441743B05181458ED0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d67fb837-1b2f-4c4e-b999-6e990ddc1499/0/3130332e3134322e3230332e302f32342d3234203d3e20313339333738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.142.203.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:e7:b0:f0:2b:d6:3c:3c:d1:af:ce:95:2b:73:c1:1b:f3:39:
81:0a:83:10:b7:bb:ff:57:b4:68:ff:fb:5e:ed:6f:62:9c:93:
e2:0b:9e:a4:ca:12:95:f7:8a:4a:41:24:cd:f8:89:76:3d:64:
ca:1f:a5:ac:6b:e4:27:8f:f6:95:7e:4e:e7:4a:9b:75:60:ff:
e8:9a:df:d0:76:6d:0c:53:9e:0b:a6:fe:e8:a3:16:fe:3f:9a:
ad:9f:70:6c:44:31:68:c0:d8:38:ed:7d:84:6e:c3:16:bf:d2:
38:d1:a3:8f:38:cf:ed:13:6c:9c:62:41:0a:2d:10:7b:80:5e:
57:69:0f:b4:74:a7:94:5f:da:ff:48:3f:e4:09:21:67:27:a7:
f6:26:1f:c8:68:5a:4c:ab:5b:61:f7:1a:57:99:46:df:0c:b5:
0f:df:5b:84:0f:75:8f:d0:5f:39:39:0c:5e:c4:ca:b6:14:64:
3c:69:08:ad:93:e2:60:d6:93:31:a7:ff:54:29:0f:4e:8f:08:
9c:92:59:9a:d6:c0:17:0f:e4:3d:d9:60:12:3d:40:8e:88:4f:
8e:c6:02:3c:3d:96:06:24:35:bd:69:81:72:3e:6c:c0:e9:74:
e4:2b:38:d0:cc:ac:a6:be:5e:e1:c6:d6:6a:7d:02:7d:97:a1:
4d:62:7c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:32:36 2025 by rpki-client