Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/3130332e3136302e3133362e302f32342d3234203d3e20313431353838.roa
File: 3130332e3136302e3133362e302f32342d3234203d3e20313431353838.roa (raw, json)
Hash identifier: 93luTm8RVN9UD1t9SEe4UZF4YZehj8MZub6HnVAQsw0=
Subject key identifier: E1:EA:A1:09:DA:CA:83:02:65:74:00:9B:74:A0:AA:E8:91:A4:47:79
Certificate issuer: /CN=07479445ACFB5044B3A1BCAAD626072CABEA5C10
Certificate serial: 27E39F107134B337F048BDF338DC878F168EBEC3
Authority key identifier: 07:47:94:45:AC:FB:50:44:B3:A1:BC:AA:D6:26:07:2C:AB:EA:5C:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07479445ACFB5044B3A1BCAAD626072CABEA5C10.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/3130332e3136302e3133362e302f32342d3234203d3e20313431353838.roa
Signing time: Sat 06 Apr 2024 06:01:24 +0000
ROA not before: Sat 06 Apr 2024 05:56:24 +0000
ROA not after: Sat 05 Apr 2025 06:01:24 +0000
asID: 141588
IP address blocks: 103.160.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:e3:9f:10:71:34:b3:37:f0:48:bd:f3:38:dc:87:8f:16:8e:be:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07479445ACFB5044B3A1BCAAD626072CABEA5C10
Validity
Not Before: Apr 6 05:56:24 2024 GMT
Not After : Apr 5 06:01:24 2025 GMT
Subject: CN=E1EAA109DACA83026574009B74A0AAE891A44779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:97:26:b0:ea:c6:62:6b:54:a4:69:b0:f3:b5:
79:23:b7:df:7f:3c:c1:5e:ab:0e:c9:a3:a6:ba:ae:
d4:9e:9c:fb:91:e5:ef:cd:bd:d9:64:5d:f3:08:78:
e1:c0:b0:7b:3e:4c:83:0d:e2:b7:12:08:aa:bc:19:
b1:c5:4d:9b:f4:4f:91:c3:a0:1a:36:7d:2a:bb:af:
de:be:9b:c6:5c:e1:4b:1c:bc:ae:82:c5:e4:9a:c0:
a5:24:1f:b3:91:17:1b:40:6a:b3:f5:a9:bb:04:69:
32:a2:14:86:76:1b:4a:a3:22:bb:ec:47:5d:2f:65:
ac:1f:1e:e0:04:e9:61:ee:3a:0b:82:be:36:36:fd:
e1:40:1f:8a:e5:e9:20:e3:06:8c:4b:34:54:80:a4:
75:84:89:43:0d:37:96:62:fb:0c:e4:3e:5a:6d:07:
19:6d:7e:d2:3e:55:bf:4f:43:c5:79:1e:6c:20:df:
b7:08:41:36:24:fb:bb:db:f0:96:e5:db:13:d1:07:
15:2f:f2:66:aa:25:ae:b4:67:2c:08:96:2d:7f:50:
21:8c:f6:c4:62:b0:9f:d7:fb:fd:4f:51:54:71:62:
70:18:b2:5e:93:07:d1:fa:c6:00:c9:06:b2:fb:27:
8f:ca:63:83:64:4f:be:37:d5:62:ea:0c:1c:50:c2:
1c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:EA:A1:09:DA:CA:83:02:65:74:00:9B:74:A0:AA:E8:91:A4:47:79
X509v3 Authority Key Identifier:
keyid:07:47:94:45:AC:FB:50:44:B3:A1:BC:AA:D6:26:07:2C:AB:EA:5C:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/07479445ACFB5044B3A1BCAAD626072CABEA5C10.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/07479445ACFB5044B3A1BCAAD626072CABEA5C10.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1eed09c-6068-407a-b0a6-59b7d0b87855/0/3130332e3136302e3133362e302f32342d3234203d3e20313431353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.136.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:0d:8b:34:f8:5d:78:3d:f3:b7:8c:a1:a3:76:b0:74:86:5a:
bd:c8:ea:57:1f:fc:5a:4d:54:fe:4d:a4:0b:1a:b3:d6:b3:ce:
fc:88:7d:ea:fd:98:7b:85:59:ad:98:98:0a:c0:1c:6f:db:3b:
21:1f:2a:03:12:b0:99:92:96:4d:1c:b4:b5:58:1d:ac:f3:f2:
c6:2c:1b:c9:37:eb:91:a5:b5:7b:88:72:de:02:30:1c:ce:c8:
58:68:28:56:2d:4b:f6:cc:03:8b:84:9c:4e:fd:72:ef:61:df:
67:99:2d:ed:a1:76:20:be:86:7c:22:b8:00:13:a2:89:d6:4f:
5c:f1:34:46:67:78:d0:4f:89:1f:26:2c:74:f6:2e:6f:dc:26:
ac:bd:89:52:a9:36:68:52:97:d7:86:47:6b:16:6a:3d:48:98:
93:2a:18:97:19:c3:d0:3c:4d:24:3a:30:a5:5c:d7:1c:ec:9f:
0c:a7:ef:8e:62:ed:5e:55:61:1d:4a:9e:d5:bb:ab:f5:8e:8a:
8d:9f:12:79:61:2c:8e:19:e3:7e:02:b3:a5:ef:ae:79:d2:4a:
ab:f4:3e:e2:f3:c4:db:04:2d:e8:9a:27:2f:87:d4:f3:f8:bf:
f0:b6:99:57:25:37:8e:6a:e9:e2:f3:74:5d:fa:cc:82:96:f7:
01:a6:d7:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:22:30 2025 by rpki-client