Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/3130332e3231392e3131322e302f32342d3234203d3e20313337333432.roa
File: 3130332e3231392e3131322e302f32342d3234203d3e20313337333432.roa (raw, json)
Hash identifier: RJCqubu8qbtGpPN7MXXSa7nQdF5Bw0374TSVNQhH0cg=
Subject key identifier: D9:B7:61:01:7C:62:09:6A:B1:C6:AA:C9:EA:56:27:46:4F:F4:74:0C
Certificate issuer: /CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26
Certificate serial: 147EBC5FF605782399934D81AFB1E7997855B5F9
Authority key identifier: EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/3130332e3231392e3131322e302f32342d3234203d3e20313337333432.roa
Signing time: Sat 26 Oct 2024 08:00:02 +0000
ROA not before: Sat 26 Oct 2024 07:55:02 +0000
ROA not after: Sat 25 Oct 2025 08:00:02 +0000
asID: 137342
IP address blocks: 103.219.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:7e:bc:5f:f6:05:78:23:99:93:4d:81:af:b1:e7:99:78:55:b5:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26
Validity
Not Before: Oct 26 07:55:02 2024 GMT
Not After : Oct 25 08:00:02 2025 GMT
Subject: CN=D9B761017C62096AB1C6AAC9EA5627464FF4740C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f4:86:29:72:19:a5:68:9f:09:f0:ab:a4:5d:
1a:9e:46:66:24:52:2d:24:06:4b:18:25:78:de:ae:
30:62:62:f0:16:98:0b:63:21:2b:bf:93:8e:4b:fc:
8d:72:c9:08:fc:85:7a:ee:f7:a6:d4:a8:7c:2d:e1:
26:c1:e0:af:9e:2f:bf:95:fc:a4:e0:3a:12:10:3c:
d8:79:e4:2f:68:e0:8a:6b:92:24:eb:eb:b0:db:18:
8d:b1:6d:ec:df:62:23:83:dc:5a:13:98:30:d8:d8:
ee:7e:8d:1a:cd:d8:29:67:6d:da:da:aa:4e:37:1e:
4c:99:57:f6:8c:d7:8b:c1:c9:c0:5d:4c:62:cb:82:
e6:d3:12:45:a7:5f:14:3b:95:f2:ba:c7:0f:b5:ad:
ad:51:57:0b:ad:ad:8d:ce:f6:01:18:5b:25:fc:db:
9e:25:df:56:5a:be:ec:d5:83:54:77:a9:b6:18:9e:
4a:59:8e:1c:75:ab:89:18:3d:7d:15:af:9c:02:1b:
01:a0:a1:b3:57:04:25:9d:f0:c2:4f:52:39:35:15:
e0:1b:3f:3d:5d:b7:df:8c:5e:ab:a9:0c:f4:88:b3:
7c:6c:2c:ea:6a:42:fb:fa:06:d4:fa:53:f2:a4:22:
93:0d:0e:7c:6d:22:77:a5:04:49:9b:3f:73:c7:ff:
c7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B7:61:01:7C:62:09:6A:B1:C6:AA:C9:EA:56:27:46:4F:F4:74:0C
X509v3 Authority Key Identifier:
keyid:EF:D2:09:19:B9:6F:4E:34:FA:9E:4A:0C:CC:23:47:A4:BC:D9:EA:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFD20919B96F4E34FA9E4A0CCC2347A4BCD9EA26.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1c48756-b662-468a-906d-6cd461cb6e42/0/3130332e3231392e3131322e302f32342d3234203d3e20313337333432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.219.112.0/24
Signature Algorithm: sha256WithRSAEncryption
38:a7:bd:07:a1:75:b5:d5:f3:63:36:c6:2a:4e:ac:e5:11:f3:
e4:01:31:67:96:df:ab:fa:d9:1f:bd:58:41:ee:c5:88:e3:3b:
18:06:0a:2d:b9:09:30:ea:b8:b0:0a:dc:43:a6:69:44:34:b5:
d5:a7:af:0b:86:12:32:f3:e1:ab:19:01:fd:37:45:2f:31:0b:
16:59:9d:ac:6c:c6:7e:e6:e1:f2:e8:7f:49:83:dd:95:a5:7b:
fd:ac:36:aa:f4:fb:c8:ea:0e:15:ed:bf:66:56:1e:ca:7c:00:
a1:a7:53:08:d4:f6:4e:da:72:23:fd:ce:48:7a:6b:c9:99:2a:
c8:61:8e:78:31:98:f6:dc:a2:a3:c6:23:dd:35:b6:25:7e:82:
61:99:e3:a4:e6:61:07:83:62:1a:05:78:34:29:9c:b3:aa:81:
8a:d0:fa:3e:c9:c2:bb:2d:43:a9:85:db:1c:fe:69:83:fe:09:
9c:7c:0f:8f:ee:aa:10:c7:89:d7:51:da:04:05:27:f0:3e:35:
e7:35:7a:8b:3a:41:24:e8:36:7c:0c:4a:e1:54:f8:59:47:7c:
51:52:ee:52:f0:42:08:e5:4b:27:79:25:ee:a3:cd:ae:05:1f:
97:1a:13:a1:21:52:a4:d7:46:90:17:36:4f:ad:bc:da:77:2f:
0a:b4:04:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:55:00 2025 by rpki-client