Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa
File: 3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa (raw, json)
Hash identifier: nepxzQwvJ312nV9iZgEKlOIPKHQAkqWcvRmCemfI68k=
Subject key identifier: F2:83:26:DE:03:55:04:8E:CF:76:DD:3F:05:28:4B:D6:5F:F4:73:00
Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F
Certificate serial: 7AC0426C43817B298348397CE64A46FA5E8767FB
Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa
Signing time: Tue 13 Aug 2024 10:00:00 +0000
ROA not before: Tue 13 Aug 2024 09:55:00 +0000
ROA not after: Tue 12 Aug 2025 10:00:00 +0000
asID: 150497
IP address blocks: 103.58.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:c0:42:6c:43:81:7b:29:83:48:39:7c:e6:4a:46:fa:5e:87:67:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F
Validity
Not Before: Aug 13 09:55:00 2024 GMT
Not After : Aug 12 10:00:00 2025 GMT
Subject: CN=F28326DE0355048ECF76DD3F05284BD65FF47300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e9:f7:61:29:02:aa:e3:f1:43:4e:c1:c1:b3:
17:50:6b:68:b9:61:a5:f3:08:01:f7:18:8c:e9:26:
67:e4:e1:e2:c2:a1:85:1e:a8:2d:24:27:eb:91:0c:
b9:10:36:09:64:d2:24:76:25:f0:8d:c6:ed:80:2d:
e8:09:4e:77:35:22:c9:8c:0a:c7:42:43:6f:f6:f8:
27:78:ef:d0:f8:93:e0:c9:05:d8:8c:9a:b9:8c:93:
36:51:07:eb:39:23:4d:a9:10:5c:ce:87:5d:1d:3b:
f8:00:1c:f8:84:3c:0f:31:5f:a8:93:58:65:93:3d:
e9:cf:e6:36:c8:db:5a:3a:c1:68:9f:6c:19:66:ea:
04:85:8e:ce:f2:95:3b:80:40:5c:36:85:4c:4a:5e:
3a:e8:84:cb:62:73:e5:02:34:3a:fe:f4:e3:34:58:
06:63:e0:d4:4b:a6:74:ee:3c:56:6e:bc:21:7e:8a:
ee:7b:63:32:c7:95:ed:d2:f0:4f:cb:56:cd:9d:a8:
4d:70:93:2e:a2:dc:f1:9c:03:ba:02:8e:f6:8d:59:
49:81:af:0d:c0:59:be:3a:e1:a7:f3:e0:7f:af:ce:
dd:67:03:17:91:5f:e6:05:46:82:bc:f2:cd:d9:11:
06:26:8c:51:e1:50:60:f6:b9:42:7d:37:9c:14:f4:
2f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:83:26:DE:03:55:04:8E:CF:76:DD:3F:05:28:4B:D6:5F:F4:73:00
X509v3 Authority Key Identifier:
keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.58.199.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:43:a5:b6:8c:32:e3:21:48:67:3f:d2:c9:f9:59:ea:17:e6:
59:3e:10:35:3a:14:63:cb:0a:5f:5a:f9:18:c7:48:56:7d:79:
6b:a8:50:c1:69:cd:25:24:58:15:00:20:c0:88:d9:0a:f1:58:
af:b9:cf:99:bb:62:95:66:96:30:11:f9:a8:df:a2:9f:65:25:
40:81:af:3a:4a:66:a7:27:38:d0:56:95:56:80:68:13:ce:c5:
6f:79:f9:1d:d0:bb:8f:0e:25:69:62:13:a6:bf:cb:84:e8:2c:
57:42:ac:49:00:60:68:ef:fe:98:11:99:15:37:b0:06:38:6d:
f8:40:c1:92:4f:85:13:51:83:3e:8b:3b:39:45:8c:3b:7f:02:
67:40:b9:41:da:c8:75:72:a6:3d:12:8d:54:ca:10:8f:87:15:
2f:40:0d:29:a0:c9:77:0d:84:89:27:83:42:7c:88:42:e2:a8:
89:57:cd:0c:ed:68:ea:a5:f1:4b:54:fb:8c:30:1f:71:3f:3b:
e1:80:e6:56:34:31:30:90:f9:8b:a4:76:98:2a:89:41:bb:6c:
dc:1d:59:eb:6d:07:fd:de:2a:ea:62:8b:32:34:84:04:e0:b9:
f4:17:fa:88:48:68:9c:df:94:8c:e7:e3:89:48:39:28:40:5d:
40:0e:e9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:33:55 2025 by rpki-client