Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/3130332e37382e3233322e302f32322d3232203d3e203634333032.roa
File: 3130332e37382e3233322e302f32322d3232203d3e203634333032.roa (raw, json)
Hash identifier: pe62LiojXyM7gYicjmgnqk2m0Gdqr7TylPQuh7SdFnU=
Subject key identifier: FE:7F:D6:FE:25:46:9F:71:52:EF:C3:5F:43:FE:2E:38:06:7D:C7:B7
Certificate issuer: /CN=9F1E176A521C3CEFE1D787F898211547A2D65955
Certificate serial: 5DF8A3BD31AEC2D798471AE2C83590381AA7FD3C
Authority key identifier: 9F:1E:17:6A:52:1C:3C:EF:E1:D7:87:F8:98:21:15:47:A2:D6:59:55
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/3130332e37382e3233322e302f32322d3232203d3e203634333032.roa
Signing time: Sat 05 Oct 2024 04:02:25 +0000
ROA not before: Sat 05 Oct 2024 03:57:25 +0000
ROA not after: Sat 04 Oct 2025 04:02:25 +0000
asID: 64302
IP address blocks: 103.78.232.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:f8:a3:bd:31:ae:c2:d7:98:47:1a:e2:c8:35:90:38:1a:a7:fd:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F1E176A521C3CEFE1D787F898211547A2D65955
Validity
Not Before: Oct 5 03:57:25 2024 GMT
Not After : Oct 4 04:02:25 2025 GMT
Subject: CN=FE7FD6FE25469F7152EFC35F43FE2E38067DC7B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:63:66:29:6a:c3:be:21:7d:7b:05:d6:d2:4d:
07:03:f2:b4:8d:16:75:91:2a:a4:0d:aa:79:3f:19:
c3:d0:8e:2e:9a:2a:5f:bd:8e:de:02:06:91:85:37:
d7:54:bb:89:8d:a5:59:f1:6e:a6:62:e4:12:9e:14:
c1:e6:0a:1e:26:4d:28:c1:e1:2f:f1:56:05:90:f9:
ca:3b:dc:ae:d2:4f:5b:da:9c:99:c4:c7:03:7c:4d:
4f:f3:91:44:49:3a:99:a9:bd:33:90:48:fc:09:c5:
1e:42:e3:7d:0a:59:6d:1b:48:3a:62:ea:07:1d:27:
5d:89:51:91:9c:a6:4d:68:a6:6a:ce:eb:9d:42:07:
79:52:be:14:7f:df:1a:3a:51:9f:db:ab:1a:9c:cf:
a7:20:53:76:9e:9f:1e:7d:d3:ed:c2:cc:e5:12:cd:
2c:06:e3:cd:cd:06:6d:d2:b1:65:72:20:f4:29:d5:
de:86:db:46:da:3c:2b:b0:29:fc:0c:bf:84:48:6b:
c4:50:05:91:bc:34:13:91:56:e5:96:45:61:99:5f:
42:05:e4:b3:30:c0:55:6d:25:e6:8b:79:9d:c0:ae:
36:98:6f:86:b8:7a:c3:66:97:6b:f6:68:d1:d9:f4:
4f:1a:b6:91:c0:8b:97:ce:2c:2c:fd:fb:72:3d:32:
96:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:7F:D6:FE:25:46:9F:71:52:EF:C3:5F:43:FE:2E:38:06:7D:C7:B7
X509v3 Authority Key Identifier:
keyid:9F:1E:17:6A:52:1C:3C:EF:E1:D7:87:F8:98:21:15:47:A2:D6:59:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/9F1E176A521C3CEFE1D787F898211547A2D65955.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F1E176A521C3CEFE1D787F898211547A2D65955.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edde8fb8-3a77-487e-9dfc-f479d6b33809/0/3130332e37382e3233322e302f32322d3232203d3e203634333032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.78.232.0/22
Signature Algorithm: sha256WithRSAEncryption
af:31:4c:67:dc:7b:45:e0:e9:7b:39:42:d3:e7:26:9c:0f:89:
cb:72:25:eb:36:7c:d9:45:c4:7a:c5:18:53:55:0c:7b:39:31:
39:55:eb:b7:5a:89:98:67:d7:73:d7:8b:34:9b:fa:88:ad:4e:
55:12:87:01:d2:67:47:33:e5:1b:8c:12:7e:91:10:6f:f9:81:
74:3a:eb:52:5b:86:4e:26:fe:8a:79:8c:6f:86:9b:8f:b1:5b:
8d:30:a5:a8:48:ef:ef:d4:95:49:d3:bc:2e:ac:41:e4:e2:f2:
59:29:68:57:92:8a:c5:8f:aa:8b:27:50:b5:ed:ea:96:28:1d:
f4:b7:6f:8d:fb:32:9a:af:2e:54:bd:ef:d7:62:3b:c7:9c:72:
6d:c5:02:b8:8c:89:86:43:39:13:cf:4d:06:e2:32:12:06:0a:
6d:88:0d:b3:c1:9f:ff:09:94:ee:df:0a:88:b0:9a:92:7c:17:
d2:7d:da:b9:fa:e2:a0:cd:34:4d:86:19:37:f8:02:7a:5c:8a:
20:78:97:9f:5b:44:4e:d5:f8:7d:63:52:dc:b0:9f:d3:0a:bd:
92:0f:59:f1:1e:49:ee:db:eb:25:8c:39:71:aa:37:12:a2:26:
96:0b:56:2f:5b:db:ac:3e:6e:f2:8e:ee:da:c0:20:66:94:a0:
d7:5b:e4:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:54:31 2025 by rpki-client