Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/3130332e3134382e32382e302f32342d3234203d3e20313430303132.roa
File: 3130332e3134382e32382e302f32342d3234203d3e20313430303132.roa (raw, json)
Hash identifier: +QupJ1EZByI+g6S06PODORTdzbTVZh4a1MkmGIToh1c=
Subject key identifier: 9A:06:FF:E1:2B:49:E6:34:5F:BA:FC:D4:0B:EF:06:DA:F5:C1:CA:CD
Certificate issuer: /CN=E17357E41F3644D13EBC7C4B25B8A2936B91165A
Certificate serial: 637EC08D8579D7DAED45F5DCCACCFCFCDC327FF0
Authority key identifier: E1:73:57:E4:1F:36:44:D1:3E:BC:7C:4B:25:B8:A2:93:6B:91:16:5A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/3130332e3134382e32382e302f32342d3234203d3e20313430303132.roa
Signing time: Wed 13 Nov 2024 11:00:01 +0000
ROA not before: Wed 13 Nov 2024 10:55:01 +0000
ROA not after: Wed 12 Nov 2025 11:00:01 +0000
asID: 140012
IP address blocks: 103.148.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:7e:c0:8d:85:79:d7:da:ed:45:f5:dc:ca:cc:fc:fc:dc:32:7f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E17357E41F3644D13EBC7C4B25B8A2936B91165A
Validity
Not Before: Nov 13 10:55:01 2024 GMT
Not After : Nov 12 11:00:01 2025 GMT
Subject: CN=9A06FFE12B49E6345FBAFCD40BEF06DAF5C1CACD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a6:c7:77:b1:c5:68:54:09:c9:28:55:f4:91:
d2:8f:79:1d:e1:66:a5:ae:73:b0:5a:ac:c7:4f:c4:
8d:ef:9f:96:32:b6:38:07:35:60:c7:53:10:52:58:
ca:ea:aa:b0:56:aa:83:dd:87:30:e6:0e:80:26:ba:
fa:84:77:f2:60:32:d0:00:c9:55:ea:7a:b0:23:ce:
16:17:8c:01:54:af:35:89:bc:47:83:6b:8b:d1:18:
0c:67:6f:1a:61:0a:d3:b0:a6:f4:a3:88:d5:2f:90:
91:a6:38:c5:f0:46:cc:2c:86:ea:d6:e3:e9:2f:00:
fe:21:9d:0c:96:88:0b:08:8f:1e:7a:e8:7e:a0:cf:
54:6b:10:a2:f2:43:a3:8c:56:37:d6:65:8d:59:b9:
ec:2f:16:d0:81:82:b9:6a:eb:e8:04:1d:8f:9d:89:
1d:f4:3c:2d:5b:ed:40:b8:1b:79:04:a7:69:18:4a:
ea:e2:b2:fc:8c:5c:01:b9:6f:c9:0b:68:be:0d:9d:
15:f5:f3:fa:8b:32:11:d3:51:75:f6:90:79:ff:db:
92:9d:0d:43:39:0d:16:13:4b:c3:06:90:b6:95:fd:
94:93:2d:15:b0:e4:8f:26:6b:1d:63:be:24:42:21:
fb:1c:82:76:25:89:cf:56:a2:d3:02:73:e8:cf:77:
b5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:06:FF:E1:2B:49:E6:34:5F:BA:FC:D4:0B:EF:06:DA:F5:C1:CA:CD
X509v3 Authority Key Identifier:
keyid:E1:73:57:E4:1F:36:44:D1:3E:BC:7C:4B:25:B8:A2:93:6B:91:16:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/E17357E41F3644D13EBC7C4B25B8A2936B91165A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E17357E41F3644D13EBC7C4B25B8A2936B91165A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2ac9e63-9890-422e-88dc-7cb6ddac22fa/0/3130332e3134382e32382e302f32342d3234203d3e20313430303132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.28.0/24
Signature Algorithm: sha256WithRSAEncryption
07:4e:b7:b7:cd:cd:b5:77:0d:54:f1:f6:cd:a1:1f:88:a5:4a:
b2:21:10:43:41:ca:5e:0b:ed:d4:35:cb:dd:ed:6b:d2:fd:a4:
c5:11:00:f4:81:b7:7f:6f:bd:30:e9:85:4a:ac:49:86:ba:72:
a3:1f:19:3b:88:f1:b8:85:ed:a1:04:00:fc:4e:59:30:3e:38:
85:c7:1b:ba:84:44:1f:ce:52:09:e2:ce:bc:2b:3f:d5:99:f8:
6f:e3:c3:a6:96:4e:43:29:7c:4b:da:a0:b7:dc:e3:21:4d:89:
75:76:2a:91:06:8c:c4:37:d0:8e:af:86:5e:44:4b:a3:6a:20:
3c:40:f2:8b:f1:a5:0f:01:99:c1:e6:ce:4a:a9:a0:dd:23:ce:
10:c4:2c:98:b9:38:61:18:bf:04:2f:b1:28:b8:0d:4d:7c:14:
82:36:26:50:72:5f:77:29:64:d7:7e:c9:f5:d6:6c:11:a4:da:
e3:1e:32:ce:85:d3:6e:7e:04:97:ab:9d:0f:be:32:bc:b6:98:
d7:09:0f:c3:f6:54:6e:b5:1d:5c:c4:fb:fb:db:1a:3f:82:ec:
89:2c:b1:93:b4:f0:43:05:73:51:f9:cc:4e:2a:54:3e:5b:ac:
88:19:15:a3:03:e3:7f:7c:c2:3e:3d:34:21:2e:09:ab:85:e7:
69:54:7e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:34:12 2025 by rpki-client