Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa
File: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (raw, json)
Hash identifier: ZsYKQLKtHkVTslRdGYlW0kXwJ9gapNRm2k1uNrTnTX0=
Subject key identifier: BF:04:ED:1C:C8:77:C4:28:E1:14:22:06:33:3A:90:2E:D3:A9:AE:DF
Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77
Certificate serial: 2A629F292714DAD01AA0DA8376D15A8F44F5AA05
Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa
Signing time: Wed 02 Oct 2024 14:00:02 +0000
ROA not before: Wed 02 Oct 2024 13:55:02 +0000
ROA not after: Wed 01 Oct 2025 14:00:02 +0000
asID: 150257
IP address blocks: 103.30.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:62:9f:29:27:14:da:d0:1a:a0:da:83:76:d1:5a:8f:44:f5:aa:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77
Validity
Not Before: Oct 2 13:55:02 2024 GMT
Not After : Oct 1 14:00:02 2025 GMT
Subject: CN=BF04ED1CC877C428E1142206333A902ED3A9AEDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d1:bd:19:5a:24:1f:24:3d:7e:d0:5c:96:ac:
b4:9d:e3:1c:bf:11:18:f3:53:62:d4:5c:8c:e0:ae:
e9:0b:96:00:a2:54:0c:66:66:f3:3d:d4:fa:a5:0a:
60:7e:52:93:5b:ab:cc:7d:2b:2b:86:3a:b7:ac:a7:
c6:e9:ec:66:d2:c6:18:71:2b:18:be:4c:d8:a9:25:
ca:ec:27:96:ec:68:5e:d3:89:99:b2:4d:b9:be:94:
3b:f1:39:6a:13:a6:ba:b4:9b:c3:aa:e3:bd:f1:a8:
98:46:c8:b1:10:00:5f:df:15:fb:eb:9c:52:30:e2:
57:15:ba:5c:bf:82:2d:38:43:0b:0c:00:c5:89:8c:
84:27:76:91:53:8d:b7:88:c2:f0:b3:b4:7f:d4:f4:
c2:26:3c:b5:64:a5:9d:32:70:d3:ed:31:ce:8f:9b:
5e:89:de:7d:16:1c:a9:a8:a8:2f:08:be:02:ac:8c:
24:99:9e:63:74:01:03:6f:40:28:c5:34:0d:a3:46:
8e:44:81:fd:4a:e3:dd:6c:db:18:ef:4a:c1:23:96:
03:55:f9:94:f0:e1:77:6a:b6:a3:01:df:82:90:a8:
b4:51:18:46:22:3d:58:b7:46:82:c0:d0:33:a8:8a:
8a:8c:40:27:a0:9a:c7:82:4d:9a:a8:34:d6:9a:15:
ab:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:04:ED:1C:C8:77:C4:28:E1:14:22:06:33:3A:90:2E:D3:A9:AE:DF
X509v3 Authority Key Identifier:
keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.30.192.0/24
Signature Algorithm: sha256WithRSAEncryption
69:9a:1f:c5:66:3e:c8:94:99:ab:51:2a:e5:3b:bc:98:2a:00:
42:6c:14:78:5e:6d:38:a2:5c:37:d6:13:b2:23:7f:88:e5:41:
71:60:77:a6:17:af:ad:cb:54:4c:82:3c:d7:a0:30:7e:7e:91:
7b:cf:fc:d2:95:38:4f:6d:ed:80:8c:80:28:89:00:c8:1c:03:
ab:9d:34:dd:44:4a:7e:f6:18:f6:e6:73:b6:34:8f:3f:06:2a:
f3:4b:a6:ce:89:6c:8a:fc:b0:fd:38:f6:28:a2:c2:b2:cb:12:
7f:8c:d5:61:49:18:7e:24:84:6c:43:54:0f:8c:ef:69:5b:ef:
b3:c9:93:9a:57:76:2c:5a:02:d5:ea:a2:fe:a2:df:a9:ad:27:
a4:6a:dc:50:f0:a0:22:d9:7c:53:bd:25:0e:7c:6f:9a:16:96:
1c:3c:0b:6a:2b:d6:8d:ce:3e:10:e8:37:a2:4b:f7:ae:7e:83:
f2:36:25:70:af:ce:24:ca:96:e9:40:5f:e6:75:d9:7e:71:d3:
82:66:35:d2:11:76:14:5e:2d:4a:0f:45:6f:c5:69:59:df:33:
93:88:10:3c:25:ba:27:da:29:a6:69:08:90:e5:8c:4b:5b:22:
89:88:79:0a:2d:8c:1e:da:d1:d5:b2:e2:d9:e2:f2:22:a4:29:
11:62:15:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:30 2025 by rpki-client