Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa
File: 3130332e32322e39382e302f32342d3234203d3e20313530323433.roa (raw, json)
Hash identifier: RBUkVebuQcs/eoD+DsobzhNFA6Y0GlvHxLIjvG85Lgo=
Subject key identifier: 40:B4:B5:F7:ED:73:E2:E3:59:B7:92:9C:67:5D:8E:F0:19:40:99:8F
Certificate issuer: /CN=5DFC46925E2D4B3FB044F284111222A8B4C78392
Certificate serial: 60053DBD947813F3985555FB04589DDABB113C8E
Authority key identifier: 5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa
Signing time: Tue 31 Dec 2024 07:02:19 +0000
ROA not before: Tue 31 Dec 2024 06:57:19 +0000
ROA not after: Tue 30 Dec 2025 07:02:19 +0000
asID: 150243
IP address blocks: 103.22.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:05:3d:bd:94:78:13:f3:98:55:55:fb:04:58:9d:da:bb:11:3c:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5DFC46925E2D4B3FB044F284111222A8B4C78392
Validity
Not Before: Dec 31 06:57:19 2024 GMT
Not After : Dec 30 07:02:19 2025 GMT
Subject: CN=40B4B5F7ED73E2E359B7929C675D8EF01940998F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d8:f9:f9:1f:c8:38:73:73:4f:d8:57:7c:59:
6a:f4:7f:2d:40:bc:47:95:48:d1:5b:d5:7a:f6:29:
f3:e8:aa:95:f8:27:dc:f0:8b:b2:9a:5b:01:f6:68:
16:37:fe:f6:c2:6f:6b:fd:5e:b2:9a:ff:14:02:b6:
b4:e4:f2:e2:5c:7b:74:46:91:87:fc:fb:d9:40:c1:
66:2b:5c:e4:9a:37:c9:ae:bf:e0:57:6e:73:f2:68:
80:60:54:69:1a:61:e0:83:4c:0e:e8:18:14:a8:86:
88:bb:38:65:24:39:47:64:48:64:7c:d9:de:a4:a3:
40:9f:b2:35:55:18:ee:88:30:32:73:72:ef:d1:d0:
22:7c:ef:70:9d:ac:5f:d1:70:72:4b:8c:64:6c:5f:
9b:c0:89:98:64:9a:7d:f0:7a:b5:b6:66:e6:5a:f1:
15:03:57:7b:52:e1:f5:7b:d7:23:fb:2c:36:8a:63:
4d:3b:4e:e7:48:76:01:36:c4:89:fd:7d:3a:3e:a6:
4a:e7:7a:c0:21:ab:d9:02:43:0c:a5:8e:43:eb:bc:
e0:f6:0f:31:84:03:b0:15:08:f4:9d:78:a7:e7:89:
70:a3:8b:d7:58:f6:c9:ec:53:47:35:83:2f:a0:bc:
e2:f7:63:c1:2c:87:bc:17:f5:7c:c3:30:51:86:3c:
02:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B4:B5:F7:ED:73:E2:E3:59:B7:92:9C:67:5D:8E:F0:19:40:99:8F
X509v3 Authority Key Identifier:
keyid:5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.22.98.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b1:da:fb:6d:77:ab:78:26:20:1e:83:30:09:4a:46:d3:d9:
0a:ab:94:2b:37:9a:48:bc:4f:bb:94:68:26:77:26:1c:63:9b:
e7:e4:d6:9e:28:76:80:fe:40:d3:49:75:a0:18:30:1a:a4:63:
46:f9:b3:9c:a1:e5:c6:d3:dc:54:7c:6c:07:21:62:24:fb:dc:
eb:49:69:4c:4e:2b:e6:fe:83:f8:c1:45:20:da:bc:57:3a:3f:
42:8e:16:43:37:76:d7:67:ee:ea:6f:2e:bf:31:17:9a:69:14:
70:38:2e:33:86:d6:34:ba:56:66:c9:09:61:49:25:00:b7:2f:
30:27:79:98:01:f4:26:ef:9e:61:a5:67:a8:28:d9:a0:7c:48:
ec:88:f2:58:fc:cb:ec:83:86:0b:10:d8:29:03:96:64:a9:09:
b7:9c:60:96:5e:42:f5:91:fe:0f:5a:1f:e0:cb:26:24:05:b0:
b7:34:ce:62:50:f9:ad:51:47:97:36:f8:29:7a:7f:63:64:e5:
09:75:8e:f0:ac:ea:ec:67:d9:0e:ab:10:d5:ff:88:56:0d:57:
8f:9b:4c:ef:9e:8b:20:41:73:17:ae:49:12:8a:f7:b0:cd:54:
aa:18:a9:37:2f:a4:f1:8f:ad:cc:3d:92:c4:90:e7:fc:b9:38:
54:28:b3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:05:40 2025 by rpki-client