Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35332e302f32342d3234203d3e20313339343535.roa
File: 3130332e3134352e35332e302f32342d3234203d3e20313339343535.roa (raw, json)
Hash identifier: 3V2LBds5CHlYeQ7BENLSGTWCVjLMN/8zv25ra0DZ92s=
Subject key identifier: D9:FD:F5:D1:47:B8:3E:71:0F:EA:96:CE:2A:76:C8:EF:80:53:51:9B
Certificate issuer: /CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3
Certificate serial: 2DB1B4E2FAA271D94127488C3CFD8DAB353EE629
Authority key identifier: 90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35332e302f32342d3234203d3e20313339343535.roa
Signing time: Wed 01 May 2024 17:01:51 +0000
ROA not before: Wed 01 May 2024 16:56:51 +0000
ROA not after: Wed 30 Apr 2025 17:01:51 +0000
asID: 139455
IP address blocks: 103.145.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:b1:b4:e2:fa:a2:71:d9:41:27:48:8c:3c:fd:8d:ab:35:3e:e6:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3
Validity
Not Before: May 1 16:56:51 2024 GMT
Not After : Apr 30 17:01:51 2025 GMT
Subject: CN=D9FDF5D147B83E710FEA96CE2A76C8EF8053519B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:73:5a:46:e2:46:ef:4d:5d:7f:5b:17:62:91:
32:bf:6b:b5:ee:3e:c7:65:26:87:d3:dc:2c:ce:0f:
63:45:dd:03:25:d2:0e:c8:e3:78:0e:11:46:e4:66:
d0:d1:8e:6f:8f:4e:ea:48:ab:ab:59:ec:63:0b:d4:
95:30:56:f7:78:43:63:e8:ac:54:e5:a8:04:ed:59:
5f:b9:4e:57:30:2f:a4:c4:5a:1b:d7:8a:fa:ea:de:
7f:57:74:c1:bf:59:a8:55:f0:e8:0f:6a:25:f2:93:
db:f8:63:fc:a7:57:01:a4:d2:4a:d9:69:54:e0:0f:
93:9d:6d:65:2d:28:66:8c:ea:4e:77:bd:c0:56:38:
41:bc:91:35:22:e1:ad:3b:ad:9c:02:93:70:09:80:
a4:46:62:d7:b0:05:7d:79:7b:9f:55:9f:08:e3:6e:
f9:f8:a3:f5:b8:9a:51:23:2e:d9:c6:c9:74:4a:0e:
b5:88:b7:78:b5:80:5e:58:38:c9:f3:ce:f6:c7:ad:
d7:67:2a:e9:99:b6:da:d9:d2:2c:d1:fa:51:25:20:
2d:03:4e:c6:b7:0f:14:da:f9:64:b5:09:d7:9b:4d:
3d:f2:0d:55:ed:66:a5:4a:83:a1:f7:19:c6:71:76:
10:2d:0d:d2:07:e2:88:76:b3:78:2b:65:37:88:dc:
3c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FD:F5:D1:47:B8:3E:71:0F:EA:96:CE:2A:76:C8:EF:80:53:51:9B
X509v3 Authority Key Identifier:
keyid:90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35332e302f32342d3234203d3e20313339343535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.145.53.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:a3:a0:5c:95:4f:7c:ac:53:c1:5f:df:59:a0:ec:ad:21:66:
a1:f7:1b:74:12:a1:39:c4:9f:f6:9b:8d:37:74:b4:b3:eb:5d:
8f:bf:7b:e9:ce:d7:5e:67:78:26:1c:8c:f5:0b:e0:8b:ae:8b:
8f:42:a0:bd:86:46:2b:d1:e4:a4:a1:75:03:0f:6d:82:cc:11:
69:5e:18:fa:3c:68:cc:f9:66:ae:54:2d:80:97:35:6f:e3:3d:
b9:40:ed:bf:4e:59:1c:ad:b5:cd:16:7b:bf:3c:54:ca:87:dd:
b4:9b:18:07:60:ac:0c:3c:cc:c2:4f:64:f6:89:46:a2:8b:9a:
6a:00:77:2f:92:6b:82:db:8b:c0:1f:cf:df:67:a6:dd:7c:bc:
7e:2e:1b:cf:f6:6f:85:bd:4f:6e:db:76:f0:9f:fb:15:d6:51:
c4:2e:87:b1:6a:37:f3:34:47:8a:6c:28:b9:80:0d:67:bd:76:
18:4e:86:50:60:cf:c6:be:e7:cd:d4:1b:f0:2d:43:60:26:1d:
fe:13:59:79:f1:ca:d2:cd:6f:60:73:c0:43:3b:c7:2e:c3:a7:
fa:16:85:ac:11:64:c6:cb:27:17:15:cc:72:7c:4d:86:ed:21:
04:f7:52:e1:9d:36:ba:57:d4:4e:c8:03:d0:15:5d:12:99:e9:
09:ba:5d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:05:45 2025 by rpki-client