Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32342d3234203d3e203633343937.roa
File: 3130332e3133342e3130362e302f32342d3234203d3e203633343937.roa (raw, json)
Hash identifier: ayWxpT8yZl1hhBQSv+ekeM1m9KqAyHCeTFs073YkKvk=
Subject key identifier: CB:FB:63:1D:C3:8A:C7:7C:71:71:8B:A3:BA:FB:E8:58:11:5B:9A:DB
Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D
Certificate serial: 3ACD6BA818AA85BFFC377A75C9A248A5A13B27EF
Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32342d3234203d3e203633343937.roa
Signing time: Mon 01 Jul 2024 01:05:37 +0000
ROA not before: Mon 01 Jul 2024 01:00:37 +0000
ROA not after: Mon 30 Jun 2025 01:05:37 +0000
asID: 63497
IP address blocks: 103.134.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:cd:6b:a8:18:aa:85:bf:fc:37:7a:75:c9:a2:48:a5:a1:3b:27:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D
Validity
Not Before: Jul 1 01:00:37 2024 GMT
Not After : Jun 30 01:05:37 2025 GMT
Subject: CN=CBFB631DC38AC77C71718BA3BAFBE858115B9ADB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bc:8b:79:ff:a8:37:2f:35:1c:0f:c9:bc:bd:
74:79:de:99:bd:39:3b:9c:0d:4a:e2:1e:fe:d5:78:
36:de:15:91:c7:7d:ae:32:41:c7:e5:93:64:d0:6b:
44:ae:ba:9a:eb:a7:c2:24:6c:02:ff:26:4c:a5:ba:
5e:6f:b7:53:c0:e6:35:05:aa:e4:b3:d7:98:51:07:
ee:fd:4b:88:61:80:f3:b1:55:54:51:5f:3a:21:a0:
d7:e6:6c:b0:4d:af:a7:9f:9e:1d:4a:68:87:d3:cd:
7e:4e:5c:16:96:2f:1b:a3:b6:df:58:fe:ea:cd:4a:
49:6d:9f:eb:6a:c2:1f:03:8a:9a:a8:17:e4:85:ae:
a9:7f:54:5c:57:25:e8:2f:b4:95:da:b9:d1:9b:59:
f2:c9:c8:cc:2a:33:20:ab:f6:24:62:bb:19:d4:85:
4e:a0:95:fc:01:c4:1a:03:62:5c:c9:c5:18:42:2d:
5b:dd:0e:fa:80:e4:9d:56:95:40:37:92:c8:6e:e3:
0b:43:16:73:ae:07:fb:2f:75:f5:ff:5a:bd:04:e1:
1f:93:90:26:10:d3:7a:7a:91:eb:21:fd:c6:bd:53:
0f:2b:71:f3:e4:b1:70:c9:62:90:1b:22:b2:9d:4d:
47:04:54:cb:99:e2:47:d0:39:3d:71:4b:47:25:54:
1e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:FB:63:1D:C3:8A:C7:7C:71:71:8B:A3:BA:FB:E8:58:11:5B:9A:DB
X509v3 Authority Key Identifier:
keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32342d3234203d3e203633343937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.134.106.0/24
Signature Algorithm: sha256WithRSAEncryption
23:94:77:be:53:c2:10:33:ac:44:11:2e:1e:6a:17:41:08:53:
d2:a9:f1:cd:88:d9:6c:ad:45:3a:ab:ad:6f:9b:cb:6e:71:7d:
8b:b3:f2:fd:90:9b:3f:eb:0e:99:69:15:3f:ae:1a:09:8b:64:
fa:2d:12:5f:0c:b7:bc:57:53:fe:5a:93:7d:26:65:1b:b5:d5:
3a:63:79:c6:81:85:95:f8:40:04:3e:e6:83:3c:3e:19:d2:2a:
93:a9:6e:cb:e0:d1:3e:6c:ed:62:2a:a6:a4:ba:d8:13:d5:c8:
07:50:b1:ec:8a:34:7c:2c:3d:ea:f4:25:ee:f1:63:e6:bc:b2:
79:fc:2c:18:79:21:d8:87:a9:ce:ad:8e:60:b4:96:03:6b:cd:
f8:e4:1d:c3:3a:31:71:67:c0:37:b6:20:b2:89:b6:43:2f:10:
56:40:f4:29:9b:fa:f1:69:8c:a0:c1:b9:ee:05:33:e2:98:fa:
f2:b4:e8:e7:ba:25:ea:b2:4d:b0:d3:ed:e1:06:9a:75:23:db:
bd:30:45:91:a4:b0:0a:1e:4a:ad:a5:f5:f8:b7:19:46:9c:ed:
8c:71:5f:41:55:4a:d1:d4:32:31:43:6e:1a:7f:79:92:68:4c:
a6:dc:9f:70:87:75:e6:52:e0:d6:77:d0:b1:b5:b0:fb:a7:94:
a7:d2:f4:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:34 2025 by rpki-client