Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa
File: 3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa (raw, json)
Hash identifier: ZBTXTgCA48JfGymalSfqrlXJz6ekuvT1MzgQd1mvq6s=
Subject key identifier: 99:E5:ED:2E:F1:B2:B2:AA:90:76:B0:BC:15:B4:A3:B3:65:49:AA:49
Certificate issuer: /CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89
Certificate serial: 73196F650B136D9BABF59C1464CE80C1C9FB1922
Authority key identifier: 92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa
Signing time: Mon 01 Jul 2024 01:04:55 +0000
ROA not before: Mon 01 Jul 2024 00:59:55 +0000
ROA not after: Mon 30 Jun 2025 01:04:55 +0000
asID: 64300
IP address blocks: 103.153.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:19:6f:65:0b:13:6d:9b:ab:f5:9c:14:64:ce:80:c1:c9:fb:19:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89
Validity
Not Before: Jul 1 00:59:55 2024 GMT
Not After : Jun 30 01:04:55 2025 GMT
Subject: CN=99E5ED2EF1B2B2AA9076B0BC15B4A3B36549AA49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0a:60:c9:8e:0d:be:ff:81:2c:0c:c9:15:38:
73:ba:3f:2c:73:27:48:e9:2c:8d:3d:a4:6e:fb:04:
ee:c1:ce:68:2d:61:d2:ee:2c:16:7f:a9:32:56:8b:
d0:ac:d9:89:6b:c5:90:83:6e:50:21:f9:e2:df:a5:
16:66:04:62:2d:fd:dc:4a:53:21:1d:26:b0:3d:ee:
b7:c3:05:0a:4a:54:de:76:02:1f:cd:4f:65:13:2f:
40:8c:a6:f2:d7:2f:8d:26:f6:33:35:2b:e1:8e:70:
80:df:1b:32:ac:7b:78:3a:f7:c4:76:a3:41:86:ee:
b3:0b:6a:37:79:e0:36:63:5f:41:29:f8:6a:1c:46:
39:3b:4b:3e:2b:a9:92:52:aa:3c:aa:e9:19:df:63:
c8:5e:20:28:28:07:6d:fb:6a:8c:f7:b8:00:c1:96:
12:2b:bb:d1:52:c2:89:b5:7e:4f:55:4e:1b:00:2c:
54:b3:14:5c:f0:ee:b7:ff:c6:3b:cf:5e:9d:70:cf:
98:8b:7a:8e:6a:a7:e3:da:61:e7:ab:65:14:b6:e3:
75:98:9b:17:20:92:ad:08:95:7b:58:15:09:dc:03:
ed:95:bf:b0:5a:77:a1:98:a3:af:7c:3d:ab:fa:49:
18:19:8a:d5:68:66:92:c7:1b:66:e1:67:d8:ca:d3:
1e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E5:ED:2E:F1:B2:B2:AA:90:76:B0:BC:15:B4:A3:B3:65:49:AA:49
X509v3 Authority Key Identifier:
keyid:92:E6:CA:68:3A:FA:18:EA:03:19:DE:C1:7D:DF:53:E0:DE:14:FD:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/92E6CA683AFA18EA0319DEC17DDF53E0DE14FD89.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e4304b64-2899-4830-9c3c-37584a327e1e/0/3130332e3135332e3134392e302f32342d3234203d3e203634333030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.153.149.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:d9:05:cc:99:7e:27:48:62:1b:b8:1f:60:3f:e3:c3:75:1c:
13:f5:ab:99:cb:15:7d:38:49:e6:fc:d2:31:21:a1:a4:06:8f:
d9:b1:80:5a:50:76:5c:79:8b:a5:35:e9:03:94:47:f3:3f:ea:
c4:b6:c5:57:56:57:6b:ed:c1:31:60:4b:61:60:30:5e:a1:02:
1b:69:20:b6:aa:37:9e:c5:37:a4:33:cb:63:4d:15:6b:eb:20:
d5:93:d6:ec:cf:f2:7e:f9:4e:cb:79:62:fb:f6:88:08:73:2d:
88:d4:d4:f3:96:11:53:be:04:e8:5e:de:64:f1:5e:3a:1f:b6:
4b:d4:5f:72:d3:b5:12:64:1d:c2:68:94:5b:be:a6:87:86:dd:
2a:d0:67:dc:9e:46:61:93:16:55:c9:78:f0:f8:21:05:a5:26:
e3:bb:03:a8:aa:29:6f:31:49:46:41:0a:18:0c:10:d4:62:f5:
e3:ca:8c:3b:5b:4e:7f:85:42:b3:c3:93:3f:14:3e:b5:a3:b7:
82:f1:c2:d7:65:cb:72:c5:26:9e:52:ac:aa:00:cc:6d:9e:f3:
05:18:d7:b0:8d:2c:a9:3a:7f:f3:67:64:d4:22:33:ae:9b:6c:
0b:8a:1a:c3:60:9d:ce:fe:70:a1:f6:0c:3c:43:b2:14:c0:8c:
22:0d:ed:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:34:36 2025 by rpki-client