Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa
File: 3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa (raw, json)
Hash identifier: CbT0hYzhheMonOPehO3no/mVI5bpvSbduL61mPpJvUQ=
Subject key identifier: 64:95:7A:38:B4:10:E7:72:10:01:7E:8E:9C:06:19:B8:DE:F8:95:C3
Certificate issuer: /CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1
Certificate serial: 38D7EB0776017B3CE60C170FDC9AE87CF0584635
Authority key identifier: BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa
Signing time: Tue 21 Jan 2025 05:00:00 +0000
ROA not before: Tue 21 Jan 2025 04:55:00 +0000
ROA not after: Tue 20 Jan 2026 05:00:00 +0000
asID: 137316
IP address blocks: 103.105.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:d7:eb:07:76:01:7b:3c:e6:0c:17:0f:dc:9a:e8:7c:f0:58:46:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1
Validity
Not Before: Jan 21 04:55:00 2025 GMT
Not After : Jan 20 05:00:00 2026 GMT
Subject: CN=64957A38B410E77210017E8E9C0619B8DEF895C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:aa:c8:e9:ef:82:ed:76:15:79:46:c6:95:30:
9d:be:f1:47:a3:b0:e1:fe:18:1c:94:28:fe:97:c3:
94:47:ac:60:e3:6a:21:96:d1:2e:63:8c:13:c1:bb:
7a:74:c8:9e:b6:bd:1a:24:9c:ce:c5:16:87:fd:b9:
09:c1:f8:0c:7f:48:f7:4f:97:c3:31:1d:e9:80:91:
11:9c:dc:b4:12:95:19:49:e4:6f:9d:67:3a:7c:be:
49:c2:1f:65:a4:d5:05:55:d2:09:63:30:de:f6:bb:
35:32:e1:ff:d3:fa:6c:a8:ff:a9:ab:b8:f1:4f:9b:
b7:5e:53:19:c6:39:cb:e7:aa:cd:1a:7a:9d:d0:0a:
61:83:92:87:41:5b:a1:d6:19:e0:b7:21:c1:f6:7a:
73:ab:0a:ba:91:4d:fa:15:50:6c:df:55:7d:b1:63:
13:b6:2b:62:e1:ff:2f:f0:9a:d0:b1:82:5b:7d:26:
a1:d9:fd:58:30:01:3e:04:f3:04:41:f4:88:4f:23:
dc:e0:17:f8:f2:1a:6d:7e:dd:6c:93:4d:90:b9:09:
da:f7:63:36:ca:2c:46:cb:7c:f4:04:76:38:3d:5e:
33:a2:b7:90:45:01:d3:fc:24:45:58:2c:41:2d:a9:
c5:fa:e4:b4:9b:72:50:2e:92:95:c1:9c:cd:67:c1:
ec:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:95:7A:38:B4:10:E7:72:10:01:7E:8E:9C:06:19:B8:DE:F8:95:C3
X509v3 Authority Key Identifier:
keyid:BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.105.193.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:0b:3d:78:47:96:d7:d9:ec:98:08:a2:4c:07:b4:f5:05:fc:
20:cf:a7:6f:e9:38:26:5b:3e:dd:e8:4e:11:23:11:12:83:e9:
f7:a5:54:5b:09:59:9d:f5:ca:b7:92:d9:a2:ca:fa:cf:df:2b:
57:e7:e0:21:a5:a9:44:03:04:f4:68:6c:3b:44:5a:25:8d:19:
6f:75:62:27:83:aa:a6:b8:68:f0:7c:7e:31:86:32:ca:4e:1b:
32:43:c1:0c:7a:e4:45:78:45:0b:30:06:0f:72:c8:92:e8:96:
4f:be:a5:b9:f1:c0:52:93:35:fd:2e:2a:2d:d5:45:ec:73:c5:
d6:e0:dc:58:dd:4a:f4:68:97:25:06:56:88:a0:fa:84:2e:f6:
49:ab:90:d4:6e:73:d1:01:79:a4:b7:3e:43:a2:7c:a3:78:20:
f7:4e:d7:40:e2:5d:79:34:84:a3:42:1a:ff:fe:a8:f6:35:d3:
18:cb:67:a8:41:04:39:90:24:07:f1:72:31:62:9f:50:ee:ee:
f7:9e:2b:5a:70:8c:9e:db:85:e6:af:b8:68:0e:cf:0f:3f:d6:
d7:51:1e:46:fa:53:b3:ad:2d:40:ca:9a:ea:cc:39:5f:ea:86:
44:3a:da:98:b6:05:1a:22:b8:e9:7a:6a:b0:b7:74:41:59:8e:
aa:fe:bd:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:27:02 2025 by rpki-client