Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32332d3233203d3e20313532303031.roa
File: 3130332e36372e38302e302f32332d3233203d3e20313532303031.roa (raw, json)
Hash identifier: dOd/WmcL1O2XqOSnpwsMSYP0+oN55Jz82rLt6CdY2eM=
Subject key identifier: 5D:74:F3:7C:A5:DC:B5:70:79:95:D6:37:D7:87:A8:3B:E4:89:8E:54
Certificate issuer: /CN=16889A9053AE7EB169CF822E9EE670A5C618F97E
Certificate serial: 638E999BF0E7D27645EDFBA1FFBE650CAC5B2F2F
Authority key identifier: 16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32332d3233203d3e20313532303031.roa
Signing time: Tue 10 Dec 2024 08:00:01 +0000
ROA not before: Tue 10 Dec 2024 07:55:01 +0000
ROA not after: Tue 09 Dec 2025 08:00:01 +0000
asID: 152001
IP address blocks: 103.67.80.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:8e:99:9b:f0:e7:d2:76:45:ed:fb:a1:ff:be:65:0c:ac:5b:2f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16889A9053AE7EB169CF822E9EE670A5C618F97E
Validity
Not Before: Dec 10 07:55:01 2024 GMT
Not After : Dec 9 08:00:01 2025 GMT
Subject: CN=5D74F37CA5DCB5707995D637D787A83BE4898E54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0e:50:72:87:1a:21:94:94:be:90:f0:00:c9:
5d:47:02:20:df:77:e2:cd:23:0a:cd:68:73:89:93:
8d:0d:77:a8:c2:b3:bd:16:1b:56:68:ea:7f:c7:de:
a6:8f:a2:66:9a:03:74:09:d2:ee:88:ca:b0:dd:05:
79:02:53:1e:38:b5:62:74:63:93:08:4f:37:3a:e6:
4d:77:b5:92:93:39:bb:6e:96:e9:13:93:35:80:4e:
be:4f:0a:ee:99:57:d1:da:67:01:7f:d2:ec:53:93:
f4:77:8a:be:47:61:a1:8c:06:27:8f:ba:bc:81:65:
47:c2:4e:1e:a0:11:5d:75:d7:f2:52:bf:16:2f:37:
a4:81:a6:1f:ae:3d:61:ed:19:a8:23:e4:ba:44:9a:
25:0c:63:5e:6f:28:45:1f:6e:2a:ce:c0:a7:61:d1:
8c:86:c5:fb:0f:ea:12:79:f1:23:78:cf:f6:64:3a:
2f:fa:de:a9:b2:48:a0:de:c1:22:a8:a0:e2:0b:d8:
f0:59:7c:58:3a:0e:94:85:d7:2f:6a:ad:35:3a:69:
cd:d0:68:05:ef:5f:9a:a7:5a:46:77:81:4e:a8:5d:
19:f1:34:cd:5e:dc:dc:23:6d:a1:69:3e:4f:ad:15:
bd:d9:d0:d5:79:e3:03:d7:83:2a:d7:25:bc:85:c8:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:74:F3:7C:A5:DC:B5:70:79:95:D6:37:D7:87:A8:3B:E4:89:8E:54
X509v3 Authority Key Identifier:
keyid:16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32332d3233203d3e20313532303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.67.80.0/23
Signature Algorithm: sha256WithRSAEncryption
19:76:f7:eb:4a:93:17:ea:f0:84:31:d0:72:af:9e:a3:c9:5b:
c2:bd:13:6d:b0:95:8e:f8:95:10:62:1f:e5:db:a2:d8:bb:f4:
9e:75:77:01:28:a2:b1:67:63:51:a1:14:44:ad:7b:4a:3e:a4:
8b:0b:ac:5a:d4:22:7e:e7:83:aa:3e:73:bd:e1:26:d2:75:06:
b7:1b:de:07:d2:3b:e9:3f:c0:e4:d9:3c:37:39:1d:19:80:c1:
8a:2e:97:d4:12:76:03:6a:e9:41:96:3e:6c:8f:aa:23:c2:ae:
94:f5:87:19:2f:a4:34:8b:33:7c:58:71:d5:b8:43:5f:94:01:
9b:31:bd:08:75:25:67:3e:91:b4:61:94:fd:a3:85:de:b5:d5:
5a:94:4d:bb:18:df:8d:a1:76:88:18:b5:f0:4a:d3:26:fe:45:
2b:d7:db:b3:e9:f5:ef:15:05:39:65:f2:38:99:f7:61:1c:6d:
23:00:35:01:aa:0f:6b:6b:dc:a2:f0:91:31:af:e0:22:ac:6e:
d9:2d:e2:b6:10:9c:3f:28:ba:9b:c2:39:3d:2f:c7:23:eb:a4:
0d:99:4d:62:75:f7:37:fe:89:34:9e:ad:11:81:16:61:a3:fd:
cb:c7:d6:5f:12:69:77:b1:d0:b8:65:2c:6e:e2:5a:d3:dd:85:
b5:d6:61:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:30:07 2025 by rpki-client