Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa
File: 3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa (raw, json)
Hash identifier: WfS+hJt0MRHreGBYJWQj9QwW51lq/cgm3WlkvKr1/Is=
Subject key identifier: 0F:D0:C8:68:EC:E3:A5:68:52:59:41:91:81:47:2A:40:92:93:20:CF
Certificate issuer: /CN=D065D2A0A105660C70D0A89385A33A61750ED7E8
Certificate serial: 238B4B535555221EBC4A2B73FD5FFAACCAB0C559
Authority key identifier: D0:65:D2:A0:A1:05:66:0C:70:D0:A8:93:85:A3:3A:61:75:0E:D7:E8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D065D2A0A105660C70D0A89385A33A61750ED7E8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa
Signing time: Wed 21 Aug 2024 15:02:23 +0000
ROA not before: Wed 21 Aug 2024 14:57:23 +0000
ROA not after: Wed 20 Aug 2025 15:02:23 +0000
asID: 141618
IP address blocks: 103.161.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:8b:4b:53:55:55:22:1e:bc:4a:2b:73:fd:5f:fa:ac:ca:b0:c5:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D065D2A0A105660C70D0A89385A33A61750ED7E8
Validity
Not Before: Aug 21 14:57:23 2024 GMT
Not After : Aug 20 15:02:23 2025 GMT
Subject: CN=0FD0C868ECE3A5685259419181472A40929320CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7d:d0:f5:b9:c0:fb:19:b2:d1:a1:35:a1:5b:
db:94:d8:30:bf:84:2d:db:63:76:84:01:ad:dd:56:
80:e1:21:a3:43:b7:71:f9:70:66:1c:35:e6:24:4a:
a7:c5:52:27:4c:d2:34:79:a3:0e:26:d7:3d:32:01:
e9:f5:cc:2c:6e:ca:19:52:c0:d2:89:c7:0d:76:a2:
a1:36:d0:5c:2c:ef:c6:2b:1d:ff:f9:28:21:ec:38:
a2:2e:4a:fc:88:a0:b7:ea:1e:fd:2b:03:aa:e4:0c:
29:7f:1b:2c:b2:a5:31:29:30:e9:32:35:fb:d3:1e:
49:63:c2:1e:7a:87:11:a3:15:4a:7a:a7:5e:5d:fb:
b8:79:43:0b:1c:72:5a:a9:e7:70:42:4a:b6:05:9a:
e2:ca:f1:b6:4a:fa:74:0e:43:7b:c3:de:1e:3c:70:
90:63:06:9a:94:15:dd:22:4a:71:91:6a:d9:84:d0:
67:f3:b4:bf:d3:f3:04:5c:1e:02:85:8a:f3:6e:44:
6a:bc:4d:ab:5b:b7:74:f9:c2:87:40:6a:97:3a:64:
20:d7:df:6a:b1:95:cf:4c:5b:2b:f4:2a:1b:05:ae:
c0:bf:ad:e7:f7:fd:7a:c2:a9:19:09:9a:fb:65:5a:
42:87:ad:c4:8d:6f:3d:e4:1b:d9:fe:e7:27:8b:e4:
52:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D0:C8:68:EC:E3:A5:68:52:59:41:91:81:47:2A:40:92:93:20:CF
X509v3 Authority Key Identifier:
keyid:D0:65:D2:A0:A1:05:66:0C:70:D0:A8:93:85:A3:3A:61:75:0E:D7:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/D065D2A0A105660C70D0A89385A33A61750ED7E8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D065D2A0A105660C70D0A89385A33A61750ED7E8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0ba97ef-7bc8-45b8-82ab-f85533caedf4/0/3130332e3136312e3130392e302f32342d3234203d3e20313431363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.161.109.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:c9:a4:8e:7d:99:5f:fd:96:e5:31:90:57:99:68:c5:80:6c:
77:f8:59:29:c0:bc:47:1e:28:f9:52:03:0f:07:c7:ff:b1:d0:
34:8e:eb:98:c2:44:d0:3e:b5:db:46:06:dd:84:81:be:02:96:
e9:26:c4:f4:da:de:b6:f9:fe:2d:3a:56:6e:25:c3:df:d3:55:
8c:9b:b9:e6:c7:de:f1:5d:5f:b4:be:29:af:65:8b:24:48:cf:
bf:90:6e:1e:b6:34:ca:9c:f9:13:41:4c:7c:27:01:2a:d4:2f:
84:b4:0a:60:f3:4f:9a:be:54:89:f3:6c:49:0e:e4:c1:ef:42:
29:9c:4e:cf:e3:3f:b6:01:6b:c5:66:71:84:ef:2d:75:f4:2e:
a6:eb:89:80:bd:c7:50:04:64:f2:b3:28:40:39:f8:af:ab:9f:
a1:11:72:2d:15:c7:c5:af:9e:66:11:f7:d2:a5:9d:48:a1:b3:
b4:2d:27:a0:4a:f8:67:30:a4:eb:53:24:4e:a6:d5:a5:ae:9d:
b6:51:fc:f0:a1:bd:c9:99:83:3a:74:fc:47:c4:93:a4:b8:77:
c6:1e:4d:c8:d7:e9:bd:ec:f4:cf:6c:11:90:47:ff:75:ea:0a:
56:19:db:88:2f:12:f2:a9:94:41:98:42:e0:70:7b:40:b9:2d:
df:01:3b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:27:02 2025 by rpki-client