Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa
File: 3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa (raw, json)
Hash identifier: a7mgV41OX87LjUgmR9JI4fbD1k92EJK28gdqBsIBQfU=
Subject key identifier: 14:D4:CF:F0:C6:9F:98:AF:31:77:88:D7:E9:86:DC:7F:E7:C0:A4:5F
Certificate issuer: /CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD
Certificate serial: 388E6860C6046D2209DA73CDEE2BF50742F91F30
Authority key identifier: 40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa
Signing time: Mon 09 Sep 2024 16:02:24 +0000
ROA not before: Mon 09 Sep 2024 15:57:24 +0000
ROA not after: Mon 08 Sep 2025 16:02:24 +0000
asID: 141607
IP address blocks: 103.160.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:8e:68:60:c6:04:6d:22:09:da:73:cd:ee:2b:f5:07:42:f9:1f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD
Validity
Not Before: Sep 9 15:57:24 2024 GMT
Not After : Sep 8 16:02:24 2025 GMT
Subject: CN=14D4CFF0C69F98AF317788D7E986DC7FE7C0A45F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:75:06:21:c5:88:9f:db:e0:99:68:71:d8:5f:
63:56:d9:88:48:bd:bf:25:5c:74:41:e3:36:42:79:
d3:b3:6d:d5:51:3e:74:9e:dd:d0:76:cb:06:ca:ec:
ed:cf:1b:16:7e:33:7a:fe:5b:57:75:99:d0:64:f0:
ce:b0:d0:5e:fb:e5:fe:ff:76:5c:35:a3:89:b8:d2:
6d:6e:70:c4:c4:a2:d1:49:5a:a0:2e:fe:5b:51:84:
37:0f:46:db:f1:83:fb:64:99:45:82:58:4b:91:4d:
80:06:2d:a3:3b:de:b7:05:dc:5e:3b:ea:83:d4:58:
d2:e3:fc:6e:b9:cd:05:b3:bc:00:59:18:e6:45:35:
7f:a4:31:c8:1b:67:6d:44:a6:53:88:c1:01:be:f0:
c4:0e:fa:64:ac:44:0c:0c:f7:34:08:43:3c:33:c8:
18:b9:51:e4:58:a3:f8:ff:75:59:2c:1d:ec:91:a4:
cc:37:75:93:53:19:8b:c4:bd:f3:62:7b:c4:90:b6:
a6:c4:0a:6f:33:51:66:b8:7a:6a:17:42:e7:db:39:
80:40:c2:14:c8:7c:c6:8a:88:87:ce:5b:f5:36:db:
a3:6d:50:86:f6:0e:7a:88:74:c1:93:f4:8d:b6:a9:
f8:b7:31:49:95:2f:60:65:1a:c5:b3:4c:ad:9c:f9:
5b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:D4:CF:F0:C6:9F:98:AF:31:77:88:D7:E9:86:DC:7F:E7:C0:A4:5F
X509v3 Authority Key Identifier:
keyid:40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.69.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:3b:24:ca:72:87:4e:9a:30:8c:eb:58:02:0d:e2:f6:ac:e6:
71:3d:6a:b5:6c:42:db:18:58:ab:c9:12:1d:ef:4b:7b:1b:3a:
95:98:2a:ec:59:cf:ad:14:85:d3:7c:20:d0:af:7e:77:82:06:
70:e6:31:7f:66:ac:48:2f:0d:b2:4e:42:1c:1a:4f:2b:fe:75:
59:e0:8a:8a:d0:33:c7:fa:eb:37:61:94:fb:0f:63:9c:79:12:
36:36:e5:a8:26:71:63:34:5b:60:88:5c:72:14:89:a7:a8:84:
ff:22:44:50:2e:04:c3:27:d5:3b:f6:2a:eb:47:dc:d8:ce:d0:
c3:bb:c7:95:c1:54:3a:68:17:ed:83:d9:2f:6e:72:72:c9:db:
0c:e2:4a:23:27:73:33:a9:5f:94:75:1e:84:aa:60:04:ae:6f:
20:c3:db:08:14:73:cd:b2:8c:ab:66:a1:36:a8:b2:1d:4b:55:
d7:01:c5:12:12:38:c6:84:8f:16:92:87:1e:91:67:9d:85:64:
4b:6e:37:0a:1f:f1:48:30:0b:39:0a:7b:5d:0d:76:27:3a:d8:
01:ac:58:51:44:51:bb:f2:c4:ab:b3:69:1e:27:23:81:f0:ad:
c1:77:89:30:de:91:29:05:39:c5:60:a6:39:2c:cd:03:55:7c:
6a:54:f3:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 00:20:17 2025 by rpki-client