Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa
File: 3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa (raw, json)
Hash identifier: r4bbE3J74imEfGNc3Yq/RkOZJXcnua5imBb7qm1BGas=
Subject key identifier: 19:39:D9:4C:11:83:7D:0F:BF:08:41:DF:53:75:1B:F7:40:49:3D:21
Certificate issuer: /CN=A532AD36631301388EC939BEB0F099FCDE956410
Certificate serial: 336B1281C64E978A5EA95DF7C7158984E5115F6A
Authority key identifier: A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa
Signing time: Sat 05 Oct 2024 09:00:02 +0000
ROA not before: Sat 05 Oct 2024 08:55:02 +0000
ROA not after: Sat 04 Oct 2025 09:00:02 +0000
asID: 141071
IP address blocks: 103.155.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:6b:12:81:c6:4e:97:8a:5e:a9:5d:f7:c7:15:89:84:e5:11:5f:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A532AD36631301388EC939BEB0F099FCDE956410
Validity
Not Before: Oct 5 08:55:02 2024 GMT
Not After : Oct 4 09:00:02 2025 GMT
Subject: CN=1939D94C11837D0FBF0841DF53751BF740493D21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b2:d9:5c:d5:95:e5:6e:d2:9d:49:03:93:91:
af:8f:34:cc:af:f7:0b:4b:23:3b:88:44:36:63:52:
16:fb:ca:70:28:6a:94:2f:ef:24:32:9a:26:58:96:
ca:cb:d6:43:8d:59:16:ba:d5:11:b6:79:4f:ca:e0:
72:f1:8e:38:62:85:7c:58:57:5b:eb:04:5b:4c:f5:
aa:62:ac:e7:d1:58:28:c5:1e:15:7c:38:43:c9:07:
d2:af:46:7e:a5:dd:16:13:9a:f0:31:03:30:9e:ee:
9b:2d:93:1b:3d:2a:0b:42:8a:3f:20:50:53:ed:e9:
98:93:6d:4d:65:18:63:fb:9a:3f:63:03:a0:18:63:
8e:8b:13:45:80:50:5f:b0:10:73:eb:51:b7:41:bb:
77:a3:01:9b:e4:e5:c7:ff:bb:cb:54:96:8b:93:b1:
78:7f:6a:d3:ea:f5:93:c0:f7:0a:16:07:b6:70:36:
79:ec:cb:64:de:d1:62:ca:a8:73:34:cf:d8:c4:ea:
7f:ac:df:15:90:1f:cc:7a:38:bf:1e:5b:64:78:ce:
07:48:73:56:72:0f:5f:cd:d6:80:db:37:88:33:60:
0d:19:84:30:51:a9:94:2b:a4:3f:0b:36:49:2f:c5:
d5:ec:d3:8a:63:bb:dd:0d:db:17:de:fd:c4:4b:70:
75:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:39:D9:4C:11:83:7D:0F:BF:08:41:DF:53:75:1B:F7:40:49:3D:21
X509v3 Authority Key Identifier:
keyid:A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.155.196.0/24
Signature Algorithm: sha256WithRSAEncryption
eb:75:d8:3a:4e:6c:0a:33:b3:c1:28:bc:4d:0e:a2:5f:73:80:
bf:28:eb:60:f5:d1:d6:1f:2e:28:e1:6c:f2:fe:b0:02:3e:e0:
41:df:5f:21:3e:8c:00:a1:61:90:c9:67:59:2e:5f:26:71:23:
01:27:4f:bd:d9:b8:4e:39:1f:8f:ce:98:93:ab:fc:30:29:e9:
a3:db:9f:00:9c:eb:30:88:f8:4d:1b:1f:52:4b:0f:e6:c6:ef:
cf:c8:79:d3:fe:01:0c:01:af:3c:16:81:3c:37:97:ad:27:99:
f7:cd:95:24:8c:b9:0e:e9:df:98:2b:45:f0:16:69:5c:8a:83:
ae:0e:b7:ed:2e:2a:a2:dc:35:ff:d8:57:79:c6:d5:6b:cf:bf:
4c:68:38:7d:d6:11:da:76:18:a5:ee:ad:d5:39:8e:8d:7c:4d:
3d:6a:ca:a2:94:d3:90:bc:c9:87:70:20:ce:71:8c:07:a9:d3:
ed:3e:77:e8:49:6c:33:d8:61:30:e6:2f:bf:7d:31:d8:56:3a:
98:fe:d1:c4:a7:c4:e3:e0:6d:c8:65:fa:b1:ff:46:79:a6:9a:
1a:a3:e9:92:7c:ad:4c:a9:8d:27:36:2a:50:85:51:ec:60:5a:
eb:42:d3:60:de:f2:28:da:7b:98:37:6f:f6:2a:cc:eb:01:0d:
50:2e:14:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:05:03 2025 by rpki-client