Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/3130332e39312e34342e302f32322d3234203d3e20313336313035.roa
File: 3130332e39312e34342e302f32322d3234203d3e20313336313035.roa (raw, json)
Hash identifier: czpyfmW5qXUOgmdTX+fLvnr7WIFjh3STKQ+hvn+zqQg=
Subject key identifier: 43:81:68:A2:6A:1C:61:DE:CA:90:1B:96:F4:5D:58:00:82:5A:48:F0
Certificate issuer: /CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189
Certificate serial: 4ECE7CF4BC983815AC6A7563379290ABBBD85E42
Authority key identifier: CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/3130332e39312e34342e302f32322d3234203d3e20313336313035.roa
Signing time: Mon 01 Jul 2024 01:04:15 +0000
ROA not before: Mon 01 Jul 2024 00:59:15 +0000
ROA not after: Mon 30 Jun 2025 01:04:15 +0000
asID: 136105
IP address blocks: 103.91.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:ce:7c:f4:bc:98:38:15:ac:6a:75:63:37:92:90:ab:bb:d8:5e:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE0CD1353A42A0A99EE768F3FAF235E38F6C1189
Validity
Not Before: Jul 1 00:59:15 2024 GMT
Not After : Jun 30 01:04:15 2025 GMT
Subject: CN=438168A26A1C61DECA901B96F45D5800825A48F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:02:24:43:dd:e0:0d:8c:7a:19:f0:13:49:70:
f3:80:ff:a1:de:c2:d7:ee:fb:63:2b:14:bb:7c:bc:
3b:49:f4:69:a0:0d:4a:39:48:62:30:11:76:1d:2e:
63:57:55:73:81:ba:68:d5:0c:86:2d:96:46:e4:3c:
40:63:8a:b1:c4:7b:e8:f6:48:da:56:a2:0e:6e:ab:
8b:a9:e9:b7:bd:66:03:0a:69:95:76:07:0c:c5:ee:
6a:17:81:4a:0f:24:5f:0d:44:67:b4:e0:5b:80:40:
65:46:67:9f:92:cd:53:a5:1b:cf:b1:36:ce:6f:f7:
c1:35:c4:6c:4e:0a:80:11:10:52:1e:48:27:17:c1:
be:81:b7:eb:b8:de:1c:bc:70:7c:65:4f:0c:b9:43:
3e:60:0d:bb:e3:f6:11:8d:ec:94:b1:bf:fc:11:c3:
f1:04:f0:1d:bd:2f:3c:a2:0c:7f:89:96:82:ce:7b:
4d:19:c0:83:cd:c0:10:0e:bd:91:38:75:bf:06:c3:
16:1c:c3:37:52:5d:a0:84:63:e2:59:e4:dc:02:e6:
02:c7:64:08:45:9f:01:54:fb:d5:5a:03:e9:ea:7d:
68:de:4f:77:80:17:06:e4:fa:cc:52:c8:41:e8:b3:
95:50:71:f0:f4:4b:59:12:fc:27:97:ce:36:a6:4f:
f5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:81:68:A2:6A:1C:61:DE:CA:90:1B:96:F4:5D:58:00:82:5A:48:F0
X509v3 Authority Key Identifier:
keyid:CE:0C:D1:35:3A:42:A0:A9:9E:E7:68:F3:FA:F2:35:E3:8F:6C:11:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE0CD1353A42A0A99EE768F3FAF235E38F6C1189.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f373bc61-c5f9-4159-98bc-a0530b4dd8b4/0/3130332e39312e34342e302f32322d3234203d3e20313336313035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.91.44.0/22
Signature Algorithm: sha256WithRSAEncryption
39:0f:7d:d1:6b:23:51:80:14:6e:bf:e5:e8:f3:58:5d:c7:64:
37:86:cf:7b:08:e8:63:53:b0:2d:77:e5:fb:81:0a:cc:e0:f0:
bd:a1:80:b6:2d:5b:95:3f:a0:c4:5f:d3:a0:9c:82:1d:1e:dc:
16:60:cb:3b:fd:ed:1f:6f:08:83:72:17:5f:09:44:e3:86:49:
fa:6f:18:3f:7e:9c:94:17:77:a0:6f:03:df:93:b4:88:6c:6c:
45:3c:51:9e:20:a6:50:89:46:5d:67:b2:95:2b:97:53:5b:23:
18:32:45:2b:e4:f0:ba:77:8d:61:45:1a:f2:ef:6e:ea:af:f2:
f9:20:2d:95:31:f9:24:7c:a4:b3:41:30:e2:21:a0:62:8e:c1:
47:ee:4e:8d:08:1b:f0:28:0a:4b:a6:ac:47:0e:e6:23:e4:f0:
fb:75:13:f6:85:89:e9:39:cf:c3:d4:81:aa:52:0c:ed:d6:4c:
fd:93:f7:83:68:85:cd:1b:b6:f9:46:dc:c4:02:3c:98:3b:1a:
25:e9:22:3d:f6:da:83:cc:5e:d3:79:0a:6d:2f:9d:19:ac:94:
8a:70:31:08:ad:15:46:07:38:58:8c:de:22:39:47:fc:39:01:
e8:94:ed:1a:13:de:f1:ee:1a:35:eb:11:a9:da:32:c8:09:9d:
d2:2a:2e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:49:27 2025 by rpki-client