Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa
File: 3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa (raw, json)
Hash identifier: +TpGrInw6MYBt52lteYHqPe/GHixGpWLSTXXOphuUSU=
Subject key identifier: 9D:A3:2C:01:72:F2:CB:27:A3:AD:87:96:B8:4A:D2:F2:C6:4E:51:67
Certificate issuer: /CN=45164C20EAF7FAB583FB12C81727150895FCEC70
Certificate serial: 1DE6816D731B411C523402B313DFF2E0B78B5EFE
Authority key identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa
Signing time: Tue 05 Nov 2024 11:00:00 +0000
ROA not before: Tue 05 Nov 2024 10:55:00 +0000
ROA not after: Tue 04 Nov 2025 11:00:00 +0000
asID: 140454
IP address blocks: 103.153.40.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:e6:81:6d:73:1b:41:1c:52:34:02:b3:13:df:f2:e0:b7:8b:5e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45164C20EAF7FAB583FB12C81727150895FCEC70
Validity
Not Before: Nov 5 10:55:00 2024 GMT
Not After : Nov 4 11:00:00 2025 GMT
Subject: CN=9DA32C0172F2CB27A3AD8796B84AD2F2C64E5167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b7:63:4c:ba:69:36:b5:63:6d:6a:9e:e4:8a:
ef:21:ae:e3:a6:c8:b5:97:f4:94:30:eb:e4:f8:f3:
00:b4:22:8c:0a:82:78:3d:a8:36:27:50:d9:4a:72:
41:6e:c9:4b:73:df:e7:99:7f:12:e9:b1:ac:50:2c:
94:0e:66:59:7e:f0:38:21:b6:88:b4:27:e7:c7:36:
77:40:a1:5d:2d:be:03:86:df:4f:a1:84:a9:af:90:
dd:98:ab:3d:f0:0a:e9:4a:f8:ea:dc:fd:13:df:a8:
58:a7:2b:94:82:5f:ce:82:33:49:a0:71:eb:5b:7d:
96:16:ee:b6:2a:bc:16:19:f9:41:a0:9f:f3:7a:b2:
66:25:de:45:0c:b5:cd:53:71:dd:93:d3:ad:25:1b:
4d:3c:22:4d:12:8a:db:a0:71:db:96:a4:cf:f6:a5:
f6:b3:ba:62:a4:c2:22:93:12:9a:ea:3a:9d:00:7a:
c3:56:74:50:cb:a9:8b:fc:1e:de:38:6b:56:c4:90:
8c:b4:cc:a1:93:be:02:c8:33:e8:b9:41:f4:ad:97:
ec:84:75:df:6c:0b:a4:39:b9:65:92:a9:db:e6:c7:
ef:8c:20:4e:0a:66:b0:6d:42:eb:1f:90:8b:f3:fa:
e7:1b:fa:e3:45:0e:7a:9f:aa:03:94:fa:33:95:91:
41:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A3:2C:01:72:F2:CB:27:A3:AD:87:96:B8:4A:D2:F2:C6:4E:51:67
X509v3 Authority Key Identifier:
keyid:45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.153.40.0/23
Signature Algorithm: sha256WithRSAEncryption
98:cf:5b:7c:86:55:16:a2:7e:be:9d:41:d3:ff:cc:dc:6f:c1:
07:e1:39:fb:99:76:2c:8b:50:ee:46:6b:82:eb:73:d2:a2:b6:
5f:fa:88:e3:fc:d1:30:8b:b8:ab:cd:50:9d:1b:d0:82:09:8e:
fc:fd:ad:bf:38:05:90:24:b7:51:fe:84:d9:df:b6:0f:68:75:
c7:d3:36:00:4e:0c:bf:23:9c:a5:88:bd:bc:19:0c:9a:55:49:
2a:ad:7b:bf:bd:28:82:3e:d4:c4:fd:c7:d1:88:98:df:94:97:
6b:10:ce:a2:1f:78:b7:85:0f:61:1d:b8:75:b9:aa:2a:b8:e1:
e7:a4:46:ff:81:36:7f:58:d9:2f:e6:84:4a:c3:e7:76:ab:15:
0e:7d:62:08:bc:cf:91:fd:45:93:1e:2c:fd:b8:0b:cc:05:d2:
34:f8:95:06:b1:b1:81:de:37:8d:bc:63:e3:09:71:04:c9:7f:
4b:0c:39:a6:4f:91:1b:39:6f:4c:c1:e4:53:5e:a0:17:0d:13:
81:35:f4:b0:e6:f0:0c:f0:53:04:14:95:b9:88:03:fd:c1:21:
df:f0:50:0f:f5:bc:2b:1c:2d:07:fb:7a:3b:31:4f:7f:3f:29:
bf:80:dc:f3:2e:7a:43:b1:bf:29:96:4d:27:01:ea:cf:55:5f:
42:a0:ef:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:54:14 2025 by rpki-client