Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131302e302f32342d3234203d3e203538343736.roa
File: 3130332e37322e3131302e302f32342d3234203d3e203538343736.roa (raw, json)
Hash identifier: r7rkQmAorpaA2HQiF7v1k+siSmXYdSBe2smRZcsSuIo=
Subject key identifier: 11:23:96:56:82:D6:40:75:2D:09:F9:FD:41:04:9C:0F:EF:28:C7:11
Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E
Certificate serial: 2E98A9B712944E351C51A5619CCC2FE8A70F0612
Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131302e302f32342d3234203d3e203538343736.roa
Signing time: Mon 01 Jul 2024 01:05:20 +0000
ROA not before: Mon 01 Jul 2024 01:00:20 +0000
ROA not after: Mon 30 Jun 2025 01:05:20 +0000
asID: 58476
IP address blocks: 103.72.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:98:a9:b7:12:94:4e:35:1c:51:a5:61:9c:cc:2f:e8:a7:0f:06:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E
Validity
Not Before: Jul 1 01:00:20 2024 GMT
Not After : Jun 30 01:05:20 2025 GMT
Subject: CN=1123965682D640752D09F9FD41049C0FEF28C711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9c:00:ce:64:ec:27:59:78:81:29:7e:15:66:
e4:9b:fb:15:39:12:e1:6f:ea:8a:dc:fd:a0:42:c1:
67:a7:e2:40:3f:ff:be:01:d9:ca:4e:2a:b8:d7:55:
ff:88:92:ad:42:fc:0b:6e:3f:c5:ba:81:f8:89:80:
23:d1:c9:a8:38:44:08:b6:55:37:ba:b5:de:ab:90:
b8:b6:07:8b:40:0c:fd:26:c7:b6:de:12:d4:27:6e:
0c:5a:5c:c2:f0:7b:b9:28:a1:da:3c:09:43:d8:2b:
74:ae:41:de:63:b4:f5:e0:9f:9c:f5:7c:d0:41:a5:
99:c5:b1:79:0c:4f:bf:54:77:78:41:59:90:1f:d3:
f0:11:56:34:4d:99:89:8a:45:c0:c1:9e:64:e1:22:
7e:32:15:3c:3e:4b:e2:5c:69:49:f6:b1:f9:94:25:
01:ea:17:78:ef:77:87:6f:4c:c3:9e:0d:a0:01:cd:
28:33:81:ef:c4:cf:68:f7:fa:3f:dc:de:f4:f1:aa:
62:a7:b5:be:47:d9:02:d2:99:50:f2:72:6a:9d:1c:
c4:8c:5e:fb:17:8e:28:13:a5:53:3b:c8:21:67:c6:
9b:8f:81:0b:ae:24:b5:eb:5d:c4:9d:9d:82:c6:48:
df:1f:1d:8a:35:7c:44:9a:4e:92:80:ca:1f:0d:ab:
1a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:23:96:56:82:D6:40:75:2D:09:F9:FD:41:04:9C:0F:EF:28:C7:11
X509v3 Authority Key Identifier:
keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131302e302f32342d3234203d3e203538343736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.72.110.0/24
Signature Algorithm: sha256WithRSAEncryption
62:b9:51:7e:3d:d7:1d:b2:ae:43:9b:d8:44:46:53:e7:0f:f3:
0a:9d:9e:c8:21:41:cc:ed:39:5d:a3:82:8a:7f:22:69:f1:cb:
33:6d:aa:f1:b4:09:32:45:7e:37:4e:8d:f7:c5:17:8e:a5:b2:
9d:5f:37:49:ed:df:f0:9b:3e:b7:79:25:c2:8b:b6:19:d8:4e:
99:21:64:5f:e7:c7:07:c1:89:a3:ce:c5:5c:17:cc:94:c1:4b:
7a:db:64:d6:33:2a:56:81:72:12:b4:fe:c4:56:f3:e1:02:85:
9d:61:f8:11:3a:72:03:e7:40:f5:b6:02:0a:db:e0:71:47:fc:
71:39:5a:0f:60:88:0c:da:2e:d7:cd:ea:d9:44:01:ba:19:af:
55:3c:50:fc:af:3c:24:c7:05:1e:e9:2b:2b:55:d2:f5:25:49:
5b:5a:e1:d1:4c:07:4a:15:04:7d:51:22:84:ea:a5:2b:7a:ea:
d6:c4:ff:fc:ae:4b:e6:2a:f6:44:82:30:08:7a:7c:16:ef:8f:
be:bf:59:fd:cc:be:b6:c9:bb:e6:3f:7d:d9:10:e5:f1:5f:c0:
b4:89:95:ad:8c:56:34:1e:c1:f3:7f:7e:f1:c6:a6:9e:8b:43:
f6:59:c0:56:01:7d:1f:61:ac:f1:e1:5b:ec:be:21:12:7a:a7:
71:4c:d3:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:58:19 2025 by rpki-client