Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa
File: 3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa (raw, json)
Hash identifier: y5FW1sgnfU+HeLMU5Bqbn06zuZEAtwFBXzjZotq5ERw=
Subject key identifier: 1B:3C:78:DB:CF:98:C6:95:A7:D2:63:0D:36:F3:D6:A3:65:7C:F7:70
Certificate issuer: /CN=255AA179563123A815C2B4073AD84B69F0967F4D
Certificate serial: 3DFECE353FF884CC4A8D2799F689205A01F58BA7
Authority key identifier: 25:5A:A1:79:56:31:23:A8:15:C2:B4:07:3A:D8:4B:69:F0:96:7F:4D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/255AA179563123A815C2B4073AD84B69F0967F4D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa
Signing time: Sun 04 Aug 2024 06:00:02 +0000
ROA not before: Sun 04 Aug 2024 05:55:02 +0000
ROA not after: Sun 03 Aug 2025 06:00:02 +0000
asID: 138112
IP address blocks: 103.126.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:fe:ce:35:3f:f8:84:cc:4a:8d:27:99:f6:89:20:5a:01:f5:8b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=255AA179563123A815C2B4073AD84B69F0967F4D
Validity
Not Before: Aug 4 05:55:02 2024 GMT
Not After : Aug 3 06:00:02 2025 GMT
Subject: CN=1B3C78DBCF98C695A7D2630D36F3D6A3657CF770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ef:8a:55:c8:5e:5f:d7:bb:bb:60:44:2e:da:
27:b8:27:d6:78:ed:b5:08:40:09:3f:43:7a:80:b9:
fe:d1:ef:6a:16:c1:77:a8:45:56:89:0e:ce:2e:47:
43:48:ab:1f:09:59:9e:8f:84:6c:58:e7:ab:3c:db:
b2:3f:68:8e:f5:c5:30:f4:b5:9a:85:b4:1b:31:19:
fc:15:fa:cf:6a:f1:bc:18:f6:d0:14:64:9a:18:84:
1f:34:bc:c5:be:80:e6:d6:1f:b5:20:f9:a4:8e:c6:
6b:40:83:1e:57:60:c1:b6:1f:ff:5c:48:d0:17:35:
47:30:16:1b:11:40:53:22:99:74:bd:87:b1:a3:ed:
b3:f6:ea:b7:6f:06:f9:37:6d:1f:a8:de:b4:16:74:
18:c6:d5:0c:75:76:18:35:b0:c9:17:b2:42:3c:fb:
47:7a:f1:b6:e8:01:06:81:90:c1:31:a9:d3:77:f0:
03:58:b9:db:0f:cf:3c:b4:d9:1e:9b:83:09:0f:fa:
42:95:cf:d3:db:4e:ce:30:22:48:94:91:2c:ef:35:
e2:47:11:5f:97:76:e1:b9:4d:97:df:d3:96:cd:26:
2b:f6:1b:60:aa:6f:d1:68:27:96:a0:f9:f4:11:2c:
41:f1:4b:f2:5d:7c:d7:d9:57:c2:2b:d2:d1:dd:85:
17:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3C:78:DB:CF:98:C6:95:A7:D2:63:0D:36:F3:D6:A3:65:7C:F7:70
X509v3 Authority Key Identifier:
keyid:25:5A:A1:79:56:31:23:A8:15:C2:B4:07:3A:D8:4B:69:F0:96:7F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/255AA179563123A815C2B4073AD84B69F0967F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/255AA179563123A815C2B4073AD84B69F0967F4D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddb8d908-1b99-455c-ac76-8d624dfa43b6/0/3130332e3132362e3137322e302f32342d3234203d3e20313338313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.126.172.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ed:e6:42:1d:33:7d:d4:24:40:73:70:68:40:0a:c7:ad:e7:
13:9a:dc:a7:49:6f:89:5e:6b:38:7d:f5:64:41:c3:e0:3f:41:
b0:a7:3f:85:91:6c:f1:42:05:5f:fe:d0:af:90:86:81:aa:cb:
1f:da:31:6c:ff:8a:23:82:70:82:c4:82:17:38:6e:02:f1:7a:
67:e3:e0:09:3b:98:e2:cb:78:50:ed:61:4b:bd:18:ad:96:0b:
9f:f7:ac:a6:34:f4:a8:b0:6b:d2:bd:96:fc:0c:05:46:d6:9e:
66:1c:a5:de:7a:cd:68:39:9c:99:0b:18:52:0d:a5:1e:7e:36:
8c:21:07:9c:43:13:84:98:ff:18:8c:ea:71:f0:59:57:cc:69:
24:d6:b6:78:03:4b:f9:97:41:cd:02:01:04:32:5e:71:89:78:
62:63:bd:fa:89:66:31:db:2d:ea:eb:82:c6:4a:9d:af:b6:54:
04:a7:e8:25:e2:58:27:37:a2:56:e2:2e:04:2a:09:71:6c:11:
70:e4:ac:b0:cc:7e:04:e1:34:23:d2:e6:d5:0a:09:ca:da:3e:
18:31:0f:c7:a6:49:75:9d:91:89:c6:f0:04:7f:c6:8c:34:1d:
d9:59:cb:cd:27:13:dd:58:19:06:32:21:af:19:70:da:94:e8:
b9:92:7b:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:48:40 2025 by rpki-client