Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138372e302f32342d3234203d3e20313431393039.roa
File: 3130332e3132312e3138372e302f32342d3234203d3e20313431393039.roa (raw, json)
Hash identifier: GM8ZyITSTfCyHRQhNGDicIsLVNuhcS8vfgPi6Ukh4Jg=
Subject key identifier: AE:A8:D1:24:34:B0:A8:3F:9C:8C:51:BC:58:54:29:A0:47:CA:FF:DA
Certificate issuer: /CN=473225269441779F80E443B1EA516CC99E4ED4DA
Certificate serial: 582978B7A342576C34DF1CDF751FBEB60C99CB6B
Authority key identifier: 47:32:25:26:94:41:77:9F:80:E4:43:B1:EA:51:6C:C9:9E:4E:D4:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138372e302f32342d3234203d3e20313431393039.roa
Signing time: Fri 24 May 2024 17:00:02 +0000
ROA not before: Fri 24 May 2024 16:55:02 +0000
ROA not after: Fri 23 May 2025 17:00:02 +0000
asID: 141909
IP address blocks: 103.121.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:29:78:b7:a3:42:57:6c:34:df:1c:df:75:1f:be:b6:0c:99:cb:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473225269441779F80E443B1EA516CC99E4ED4DA
Validity
Not Before: May 24 16:55:02 2024 GMT
Not After : May 23 17:00:02 2025 GMT
Subject: CN=AEA8D12434B0A83F9C8C51BC585429A047CAFFDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2c:a2:01:3e:05:f3:1a:ad:cf:c1:79:96:ac:
78:be:66:c3:de:6d:9e:c4:00:b9:47:fa:65:95:14:
d8:17:d8:7b:70:23:be:2a:65:a9:e4:b2:e3:59:95:
9e:c6:ac:33:c9:85:13:58:e1:bb:43:1a:3a:8e:65:
4c:db:22:ad:0e:4e:ba:3d:c6:55:ac:30:05:44:09:
34:9b:71:1a:4c:d0:b6:9e:30:63:1b:44:1f:76:da:
ca:ba:6c:c1:0a:38:9c:31:e3:0b:cd:bf:7d:e1:bc:
78:78:4d:09:f1:00:7f:51:ac:84:53:cd:b3:99:37:
58:c2:a8:c6:ed:dc:ee:94:1a:b8:e8:47:da:3f:64:
75:4c:14:37:81:75:c2:b1:9e:00:79:e8:ec:a9:9e:
6a:b6:29:cd:e0:d7:b3:e3:b3:33:0c:12:af:6c:84:
13:d7:e8:51:65:07:92:db:09:05:d0:26:ad:d3:c1:
6e:6a:6a:c4:42:12:23:16:20:0e:91:5c:8c:0d:a2:
58:a3:e1:4a:82:8d:00:0b:7f:b0:63:f9:74:e0:f0:
b2:1e:e4:3d:04:7c:45:d0:b7:4b:1b:89:67:07:22:
23:38:e1:cc:d0:69:b2:b6:61:5a:04:bc:e9:87:17:
09:09:46:76:df:df:de:7d:a3:df:85:cf:ac:f0:79:
b9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A8:D1:24:34:B0:A8:3F:9C:8C:51:BC:58:54:29:A0:47:CA:FF:DA
X509v3 Authority Key Identifier:
keyid:47:32:25:26:94:41:77:9F:80:E4:43:B1:EA:51:6C:C9:9E:4E:D4:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138372e302f32342d3234203d3e20313431393039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.121.187.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:3d:df:cf:f3:0b:97:1a:9b:40:8f:d6:10:80:3b:cf:be:ca:
a9:f3:6c:16:9a:3c:b2:2d:55:16:6a:c2:15:51:e0:92:d1:af:
e4:f0:9a:e1:c0:2c:7b:01:36:bc:52:c3:aa:a8:48:ce:ed:95:
6f:39:b9:43:97:83:6b:1d:87:84:72:b0:37:4e:80:d5:93:e7:
82:ba:95:c9:3c:0a:b5:e5:0d:6f:c1:be:ac:c6:38:03:cf:5c:
12:bc:4f:3e:e1:24:7e:73:18:c2:be:3f:ab:4e:19:b9:67:7b:
25:26:4f:44:6f:97:d8:52:7d:3f:1e:e3:1b:e6:7e:f7:d2:a3:
e2:85:4a:c8:d0:d3:a7:43:04:df:c0:83:48:ce:58:47:01:84:
05:4f:f6:87:2f:13:b9:a7:e1:83:f4:c6:e4:4a:4b:89:76:18:
dd:ef:46:20:09:6a:06:47:5b:91:64:17:67:79:0c:86:2e:8d:
24:0b:dd:52:78:65:3d:34:2b:9b:b3:29:9e:08:0f:a3:55:16:
a2:1f:e6:98:bc:22:20:54:14:d7:6f:95:55:2c:39:c4:af:ae:
08:a9:35:f5:1c:19:d6:3a:86:10:1c:ad:8a:07:28:d2:03:36:
eb:6e:19:68:ab:ae:99:1c:36:b1:73:d8:f5:36:32:5f:7a:c4:
a8:c2:31:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:39:04 2025 by rpki-client