Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/dfc6ad64-7543-48ad-b158-e82676a11c70/0/3130332e39362e35342e302f32332d3234203d3e20313530393637.roa
File: 3130332e39362e35342e302f32332d3234203d3e20313530393637.roa (raw, json)
Hash identifier: pH3OdGlTzyXIK2JOzwNBhFJylh3whIckdexbERwSYnI=
Subject key identifier: 2E:32:A0:D6:3B:BA:7F:74:E1:A1:7E:30:BD:A1:ED:0E:32:8E:FE:B3
Certificate issuer: /CN=94F615F011BBB2C259625D478AF937086CA8D2EF
Certificate serial: 33EF606BC15F78F0CCEE0516608578E6C672826E
Authority key identifier: 94:F6:15:F0:11:BB:B2:C2:59:62:5D:47:8A:F9:37:08:6C:A8:D2:EF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F615F011BBB2C259625D478AF937086CA8D2EF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/dfc6ad64-7543-48ad-b158-e82676a11c70/0/3130332e39362e35342e302f32332d3234203d3e20313530393637.roa
Signing time: Fri 21 Jun 2024 06:52:39 +0000
ROA not before: Fri 21 Jun 2024 06:47:39 +0000
ROA not after: Fri 20 Jun 2025 06:52:39 +0000
asID: 150967
IP address blocks: 103.96.54.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:ef:60:6b:c1:5f:78:f0:cc:ee:05:16:60:85:78:e6:c6:72:82:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94F615F011BBB2C259625D478AF937086CA8D2EF
Validity
Not Before: Jun 21 06:47:39 2024 GMT
Not After : Jun 20 06:52:39 2025 GMT
Subject: CN=2E32A0D63BBA7F74E1A17E30BDA1ED0E328EFEB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b2:97:6b:6d:f0:f2:ee:cd:20:89:40:ad:cf:
18:48:31:17:6b:6f:4a:1b:9a:fd:93:b7:80:b2:a8:
fe:64:41:e5:12:d7:41:08:8b:3f:bb:87:76:36:0c:
03:d2:7d:03:8f:e1:02:ea:79:33:7a:20:1e:4b:96:
52:24:95:22:ca:fb:b9:2e:73:8f:45:e8:db:d6:12:
9a:2e:8d:3b:a8:85:3f:d8:a8:8e:5f:63:bf:9f:c7:
11:47:f0:3e:7f:23:05:2e:5f:82:0e:90:53:ad:00:
34:c2:2f:8d:a7:78:04:15:bb:65:c9:bf:12:1d:ff:
69:a4:2e:a2:64:cf:a7:14:8f:60:2a:fb:43:72:3e:
82:27:89:b5:90:68:fc:d8:20:5e:d0:98:ff:e8:b0:
04:5d:66:fe:a4:3b:85:b4:de:de:15:03:71:4c:a0:
b2:a4:1a:e6:a4:3d:53:32:ae:07:95:b2:31:3b:91:
c1:3f:be:a6:99:97:c7:7c:18:20:16:d6:14:0f:27:
4f:9d:45:8f:d0:00:0c:b3:8b:c2:d5:20:f9:46:23:
0a:b3:a9:e7:e4:be:38:f6:2b:3b:e4:06:24:61:81:
43:c6:f3:af:de:21:4d:b2:10:ab:6a:e9:d3:f0:a0:
27:78:b1:2b:ba:59:a0:0a:e1:7d:46:30:dc:11:05:
a9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:32:A0:D6:3B:BA:7F:74:E1:A1:7E:30:BD:A1:ED:0E:32:8E:FE:B3
X509v3 Authority Key Identifier:
keyid:94:F6:15:F0:11:BB:B2:C2:59:62:5D:47:8A:F9:37:08:6C:A8:D2:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/dfc6ad64-7543-48ad-b158-e82676a11c70/0/94F615F011BBB2C259625D478AF937086CA8D2EF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F615F011BBB2C259625D478AF937086CA8D2EF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfc6ad64-7543-48ad-b158-e82676a11c70/0/3130332e39362e35342e302f32332d3234203d3e20313530393637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.96.54.0/23
Signature Algorithm: sha256WithRSAEncryption
92:d2:b3:be:ee:4a:cb:e6:dd:55:86:78:4d:5a:90:56:2f:c1:
a9:b5:2d:42:3b:26:f7:fa:93:be:b6:5b:2f:bd:e6:4b:23:b4:
9f:7b:58:07:88:af:94:b7:28:6a:f4:17:87:6c:fc:f5:22:48:
a6:64:d5:83:2d:08:81:0c:52:2c:e1:18:cf:27:e6:fc:a0:a8:
5d:31:72:ce:55:e7:8e:57:5c:86:f3:8e:8e:af:fd:0a:50:e4:
ce:d1:24:fe:a9:ec:7d:69:fb:17:5c:9e:8a:1a:e0:e6:f5:1f:
d1:cd:f3:14:c9:3f:88:8a:c3:19:ab:48:31:bf:94:f2:77:65:
71:01:3a:f3:6d:8f:11:08:af:98:96:68:86:51:fc:70:ee:d0:
76:18:4a:37:2a:ee:b9:79:a0:85:f9:db:32:c2:6a:67:65:99:
9d:72:68:41:1c:f7:84:f7:23:29:03:83:78:26:a1:ad:87:f6:
d3:15:11:ed:0d:7e:29:fa:af:30:79:2b:e5:dc:ec:6a:8f:60:
59:cb:49:76:7a:77:9f:96:0f:2b:95:b8:52:bc:ba:f1:2d:fa:
2d:ba:7d:da:88:10:4d:44:ef:2d:53:8a:26:5d:6c:6d:61:9a:
37:cd:55:19:86:b5:aa:cb:f4:65:62:06:1e:d1:bc:0e:4e:7d:
5a:05:e9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:48:46 2025 by rpki-client