Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/3130332e38392e37362e302f32342d3234203d3e203435373031.roa
File: 3130332e38392e37362e302f32342d3234203d3e203435373031.roa (raw, json)
Hash identifier: cVrBhQABD5vWTft3TZ4cQdHX3S+6LC2tNnj6LeA9Vpk=
Subject key identifier: DC:E4:F5:C1:95:25:21:A3:A1:71:C8:4C:16:D1:16:CD:DC:8A:18:26
Certificate issuer: /CN=FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E
Certificate serial: 67C95A894A2FDD244E5ED99D562DFCE7447756BE
Authority key identifier: FB:88:A8:85:25:16:DB:CE:AC:42:9C:5B:6F:9B:7F:98:FA:A0:14:0E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/3130332e38392e37362e302f32342d3234203d3e203435373031.roa
Signing time: Thu 16 Nov 2023 06:00:01 +0000
ROA not before: Thu 16 Nov 2023 05:55:01 +0000
ROA not after: Thu 14 Nov 2024 06:00:01 +0000
asID: 45701
IP address blocks: 103.89.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:c9:5a:89:4a:2f:dd:24:4e:5e:d9:9d:56:2d:fc:e7:44:77:56:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E
Validity
Not Before: Nov 16 05:55:01 2023 GMT
Not After : Nov 14 06:00:01 2024 GMT
Subject: CN=DCE4F5C1952521A3A171C84C16D116CDDC8A1826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:de:ea:38:61:d2:a2:8a:3c:a2:3c:d9:36:23:
f2:1c:4c:4f:5d:83:4f:a8:a3:ee:0a:02:4e:76:c6:
ac:94:88:c3:cc:e3:4b:24:f6:c9:df:ae:b2:22:a0:
51:cb:18:0e:98:2c:b8:53:86:06:54:69:d3:1a:2d:
2e:2e:a6:59:e2:c3:26:bb:fb:d0:12:0b:2a:b3:7f:
4f:00:6b:a4:b6:05:60:fc:4d:74:f1:d2:dd:96:d1:
09:7a:17:b8:bc:13:b9:d4:a3:ce:61:9b:8a:d8:a2:
3a:82:92:20:5e:f8:5a:42:b2:70:4c:e5:7e:b2:76:
34:f6:1c:a0:2e:46:e5:fb:76:63:43:d1:c3:b9:e9:
e8:b3:26:d3:05:fd:1b:72:c4:6b:0d:c8:c3:ff:0b:
01:1a:48:41:7d:8f:c9:76:ea:13:4a:85:ed:43:8c:
29:cc:97:9e:a0:67:52:9e:78:3c:e4:c7:6f:2a:80:
4f:46:52:29:15:56:ac:fe:5b:5e:b4:f0:c4:35:5d:
56:a3:2d:d9:51:3d:e4:a5:58:a5:b7:83:ce:6b:c6:
f1:b6:2a:a3:bf:c8:20:bf:ad:d0:df:20:35:1e:f3:
bf:37:5f:e8:5d:c5:a4:f2:1c:50:c2:01:ef:6a:ec:
c9:38:2b:a9:e0:83:e6:35:c2:5e:59:32:b5:f8:42:
44:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E4:F5:C1:95:25:21:A3:A1:71:C8:4C:16:D1:16:CD:DC:8A:18:26
X509v3 Authority Key Identifier:
keyid:FB:88:A8:85:25:16:DB:CE:AC:42:9C:5B:6F:9B:7F:98:FA:A0:14:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FB88A8852516DBCEAC429C5B6F9B7F98FAA0140E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1b1cdd5-2b3d-461a-9a72-0031f0bfb45d/0/3130332e38392e37362e302f32342d3234203d3e203435373031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.89.76.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:c9:3e:28:fd:f2:bf:84:60:e4:8d:87:16:e5:fe:2c:a7:8a:
cb:df:3c:d2:b6:20:52:5a:98:3d:36:87:07:aa:76:65:67:ae:
c7:c2:6f:12:73:74:e3:2e:4d:b6:b0:03:97:26:ce:93:39:ce:
0f:c8:18:49:60:32:ad:69:10:07:5f:95:8e:f6:7e:94:4c:69:
47:0d:89:2a:e9:53:21:64:3d:ce:17:46:8a:31:ef:75:b2:4c:
59:83:ba:cb:8e:90:cd:18:d3:b8:43:43:fd:a0:68:dc:07:33:
55:c8:bc:1b:8d:43:ae:36:4f:19:f1:27:f6:0f:59:c4:f8:43:
cf:b2:7d:f5:54:5e:15:e3:f5:ee:cf:9b:68:f0:4c:c8:cd:25:
48:3d:b3:51:30:1d:db:11:db:e2:68:93:07:4f:c3:29:69:f6:
2e:86:bf:34:56:01:b8:ad:f1:a4:67:cc:d0:9f:ac:60:9b:80:
03:46:cd:9f:8a:7f:24:1f:b7:c5:1a:48:7d:ff:28:f8:a2:03:
bf:86:67:42:f0:fd:5e:68:fc:9b:32:71:4a:38:07:5a:4d:d6:
29:c5:f0:af:51:fb:76:b9:3a:86:a5:78:4b:9e:29:74:04:c0:
c6:3c:ca:04:89:6b:86:c2:8a:29:12:53:06:ac:43:84:85:fd:
36:c4:3d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:39:56 2025 by rpki-client