Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa
File: 3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa (raw, json)
Hash identifier: D5y/dOOdbevGbXtghOHQINTcjdbypBLwek1XQ3CqPYE=
Subject key identifier: D1:C3:25:D5:6A:89:4B:6F:96:C6:26:28:4C:82:17:61:43:9C:90:9A
Certificate issuer: /CN=8A54C81A444D07051A24AACF743F01863F8129AB
Certificate serial: 50E18BC0C56027C9DE0A1670612650A6E63103F5
Authority key identifier: 8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa
Signing time: Sat 12 Oct 2024 13:00:02 +0000
ROA not before: Sat 12 Oct 2024 12:55:02 +0000
ROA not after: Sat 11 Oct 2025 13:00:02 +0000
asID: 141955
IP address blocks: 103.166.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:e1:8b:c0:c5:60:27:c9:de:0a:16:70:61:26:50:a6:e6:31:03:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A54C81A444D07051A24AACF743F01863F8129AB
Validity
Not Before: Oct 12 12:55:02 2024 GMT
Not After : Oct 11 13:00:02 2025 GMT
Subject: CN=D1C325D56A894B6F96C626284C821761439C909A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:64:53:7e:92:10:2f:53:94:55:d7:87:95:5d:
00:2e:94:7b:78:64:54:2b:29:b4:95:1d:a1:29:8b:
6b:b5:04:53:5c:cc:41:f0:a1:4c:0f:09:c2:45:5e:
a6:0a:9d:9f:45:26:cf:d0:24:e4:52:3f:ca:74:36:
8c:97:81:3b:f5:9d:09:ea:59:c6:8b:0b:ab:ad:b9:
0b:e0:41:a8:27:25:89:31:24:48:39:6d:50:c3:7c:
bd:45:58:c4:58:b7:20:e5:f1:0a:fd:20:90:58:23:
d1:b4:51:2a:6d:31:74:d0:df:52:04:f5:6c:f6:e7:
49:3e:b6:98:e4:e3:36:1e:29:9f:03:cf:50:7e:36:
57:97:dc:fd:2a:f7:2d:51:85:a0:7f:ac:cd:06:20:
cb:19:f3:98:04:9a:5c:97:e8:2b:1a:d4:dd:e8:de:
70:6e:bd:a2:b2:a6:41:68:db:7d:8f:63:cc:87:e9:
5c:eb:57:83:ca:2c:ab:6e:4f:47:83:f4:9c:c4:5e:
d4:ac:ef:9b:a0:c5:53:9a:fb:94:21:4f:30:2f:e9:
c3:6f:34:3b:28:ca:1a:d9:20:10:b1:1d:26:d4:7b:
e5:a6:0f:ac:cf:8a:3e:fd:a7:01:8b:f0:4e:5e:38:
5a:0a:c0:61:87:ea:2a:18:2c:13:73:99:b2:20:63:
e2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C3:25:D5:6A:89:4B:6F:96:C6:26:28:4C:82:17:61:43:9C:90:9A
X509v3 Authority Key Identifier:
keyid:8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135392e302f32342d3234203d3e20313431393535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.166.159.0/24
Signature Algorithm: sha256WithRSAEncryption
66:16:58:61:4f:19:9a:eb:64:fc:c0:5f:17:47:7e:aa:bb:60:
53:01:73:3f:55:78:93:fb:e3:e1:d1:7e:3a:ed:c4:4a:10:5d:
e8:6c:42:a7:96:01:e2:63:50:0f:da:c3:88:88:cd:f0:5f:25:
9f:7d:1c:43:44:a4:97:73:60:30:24:20:b7:37:1f:9b:29:33:
d4:10:48:ee:5c:81:bc:d6:d1:53:e4:92:2a:a8:84:9a:90:5c:
f0:14:0a:40:10:c4:ba:63:1c:e2:89:de:a7:e8:00:61:49:71:
ae:9f:9f:16:64:94:0f:ff:e1:a4:af:49:e3:90:09:01:ea:68:
1d:eb:fc:e9:3e:dc:70:44:68:92:dd:bf:70:ef:02:58:06:32:
4e:e6:50:16:a4:bc:ba:a0:22:7f:25:3f:eb:84:74:1c:f0:d5:
f9:4b:80:95:17:e4:fd:e9:91:a1:cf:21:75:08:fd:93:8d:31:
40:f2:11:7d:bf:0d:aa:9b:33:51:b6:cf:f2:d9:0e:89:7d:6a:
fb:4f:63:74:3b:c5:a0:02:a7:dd:dc:92:f3:83:2e:cc:23:24:
a0:65:2d:a0:ab:46:51:a5:80:a6:28:1c:f4:c9:c2:b4:b3:2f:
2c:33:15:5d:9b:11:24:50:7d:55:74:a6:b9:33:ae:26:13:e0:
5e:e9:e0:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:32 2025 by rpki-client