Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/3130332e3134322e38382e302f32342d3234203d3e20313339333638.roa
File: 3130332e3134322e38382e302f32342d3234203d3e20313339333638.roa (raw, json)
Hash identifier: a6cmPyjOkEXJDH0shhlDSHNw0INYPzIhe4CgFgCqZa8=
Subject key identifier: BE:E4:E5:5C:CD:7D:E0:64:B9:86:B6:ED:46:D4:F4:F0:AB:3F:A5:3B
Certificate issuer: /CN=6E77582BC25A225D744F9E7A58CA279875307F2F
Certificate serial: 60FEC873CF97628AA7FC3B432BC90AFC0E9218AB
Authority key identifier: 6E:77:58:2B:C2:5A:22:5D:74:4F:9E:7A:58:CA:27:98:75:30:7F:2F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E77582BC25A225D744F9E7A58CA279875307F2F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/3130332e3134322e38382e302f32342d3234203d3e20313339333638.roa
Signing time: Wed 07 Aug 2024 03:56:27 +0000
ROA not before: Wed 07 Aug 2024 03:51:27 +0000
ROA not after: Wed 06 Aug 2025 03:56:27 +0000
asID: 139368
IP address blocks: 103.142.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:fe:c8:73:cf:97:62:8a:a7:fc:3b:43:2b:c9:0a:fc:0e:92:18:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E77582BC25A225D744F9E7A58CA279875307F2F
Validity
Not Before: Aug 7 03:51:27 2024 GMT
Not After : Aug 6 03:56:27 2025 GMT
Subject: CN=BEE4E55CCD7DE064B986B6ED46D4F4F0AB3FA53B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6a:50:8a:22:b1:11:1e:2e:6c:2e:35:ef:e5:
21:f4:d5:8a:32:1e:66:8a:d3:5c:72:ea:2a:67:81:
0f:b9:73:fe:87:fe:86:dc:b6:85:7f:b1:b2:93:4a:
7e:9f:1c:f6:ab:59:e0:ae:a4:ac:60:18:db:a6:a2:
5b:53:34:12:d7:f1:d8:fb:39:b5:1d:8a:02:74:7e:
2a:3c:7c:23:75:7b:39:9b:a3:fd:72:7e:41:8c:e2:
5c:e3:c0:3a:9a:63:aa:d6:49:a6:ac:61:8c:30:07:
97:b3:21:84:e5:17:13:9a:df:07:56:1f:aa:e6:e1:
5f:96:58:f8:ec:15:cb:0e:bc:d0:c5:99:2f:8a:ae:
9d:0b:df:48:0e:76:17:ab:37:03:a6:ee:33:87:3e:
8b:6d:ff:8a:47:fb:ee:18:65:39:75:61:f4:5e:03:
f6:8e:71:dd:19:03:2c:48:75:01:54:66:57:50:c1:
02:69:3e:02:f7:bc:86:08:76:51:7e:71:1c:86:e4:
cd:1a:73:27:b7:ba:77:2b:c7:30:b6:3e:e5:c0:9e:
50:07:f4:5d:ea:df:39:69:83:20:70:80:75:d6:56:
52:7b:93:9f:d9:e2:de:cd:9d:81:20:14:ec:c1:8c:
67:a7:39:14:99:5c:9f:cc:f1:4a:1c:2b:76:48:52:
5a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E4:E5:5C:CD:7D:E0:64:B9:86:B6:ED:46:D4:F4:F0:AB:3F:A5:3B
X509v3 Authority Key Identifier:
keyid:6E:77:58:2B:C2:5A:22:5D:74:4F:9E:7A:58:CA:27:98:75:30:7F:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/6E77582BC25A225D744F9E7A58CA279875307F2F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E77582BC25A225D744F9E7A58CA279875307F2F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed49d49b-daea-48c0-8d77-13738b745772/0/3130332e3134322e38382e302f32342d3234203d3e20313339333638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.142.88.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:b5:5b:8a:d8:7f:ba:dd:69:ed:14:94:03:41:0a:8d:f2:52:
0a:d0:22:dc:17:04:35:91:de:c3:2e:0a:71:b5:a0:fd:66:d0:
3a:64:e5:74:29:62:39:24:1f:a4:0b:fe:7c:80:07:d8:2b:e7:
ab:d8:6e:90:96:fe:81:46:b6:b5:b6:d3:52:cb:7f:da:21:35:
55:61:54:34:c5:7a:da:95:cc:05:a4:67:e9:b5:32:ed:6e:a8:
f8:68:b9:ff:d6:d5:f1:35:e8:ff:26:24:8a:4b:82:26:7e:d4:
e1:71:30:27:f4:74:ff:91:6d:93:88:a5:a2:07:d2:99:58:7a:
54:6e:09:1c:0d:28:c0:86:55:14:87:4b:d3:57:d5:7b:f7:b2:
51:1c:7d:78:bf:4c:8e:58:9f:12:e8:fe:10:70:b6:05:87:42:
f0:b2:24:f3:1c:a4:52:3e:d7:36:23:11:ac:3c:73:4c:4e:2a:
98:bd:3f:34:31:06:35:5b:b8:b6:08:b9:7b:b4:a4:50:fa:cb:
c3:20:5f:8f:29:07:e0:d7:17:e4:21:5e:82:29:21:be:25:c5:
ce:2b:8f:f2:1e:dc:f2:f2:8a:fe:bc:c0:0a:09:81:94:a8:fb:
1d:85:d0:06:60:4a:29:9c:e3:39:e3:b4:35:97:71:6f:04:8b:
c8:5a:24:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 13:16:56 2025 by rpki-client