Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3130332e33302e3138302e302f32322d3234203d3e203435333032.roa
File: 3130332e33302e3138302e302f32322d3234203d3e203435333032.roa (raw, json)
Hash identifier: zUx2kf2nkQpYSZevtua25+SSipsaj70ohdMYswyhmiA=
Subject key identifier: A8:15:42:74:15:4B:BA:F7:5A:54:2C:A6:93:98:DC:3F:93:03:45:30
Certificate issuer: /CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C
Certificate serial: 3A4CC8DABBBD6288BB242AC6F57D6390914B0B56
Authority key identifier: 19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3130332e33302e3138302e302f32322d3234203d3e203435333032.roa
Signing time: Mon 01 Jul 2024 01:04:27 +0000
ROA not before: Mon 01 Jul 2024 00:59:27 +0000
ROA not after: Mon 30 Jun 2025 01:04:27 +0000
asID: 45302
IP address blocks: 103.30.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:4c:c8:da:bb:bd:62:88:bb:24:2a:c6:f5:7d:63:90:91:4b:0b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19A196F5E5BABA31926C5AEEF44FC16387E65C3C
Validity
Not Before: Jul 1 00:59:27 2024 GMT
Not After : Jun 30 01:04:27 2025 GMT
Subject: CN=A8154274154BBAF75A542CA69398DC3F93034530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b9:70:63:49:15:95:56:c7:94:91:9d:50:9d:
8e:bd:25:6b:61:27:02:9f:0a:d2:01:9b:ee:df:f8:
c3:70:e3:f7:32:00:20:31:2d:99:8b:3c:41:6f:d2:
1f:6a:6c:da:ce:3a:ea:91:30:87:50:7c:f5:56:ae:
e4:84:1b:e1:ae:80:93:ad:ee:e3:80:b5:46:76:c7:
9a:93:c9:fc:2c:a8:7e:f8:58:48:62:e9:ca:74:57:
60:45:01:34:0d:27:20:2a:ea:1a:8d:3b:29:ad:f3:
8a:32:f7:4b:95:be:5b:68:d8:e3:16:57:f0:d0:1b:
69:b0:b9:50:a8:78:cd:eb:6b:d0:1b:38:1d:b3:67:
23:7a:90:e1:30:38:34:7e:4a:90:cf:15:07:c4:c4:
d7:f6:31:76:45:0a:ff:54:fa:f3:75:a1:c2:14:28:
dd:85:48:3c:23:8b:c8:9d:69:00:93:c5:6c:8f:00:
b0:23:46:c7:8c:8b:3f:e4:55:8b:88:81:2f:29:b5:
36:f0:1c:1d:3b:67:94:11:52:3e:a9:2a:42:69:e4:
19:13:33:99:a8:89:d4:ba:75:a7:e3:f3:fb:e9:90:
29:d1:cf:e5:98:51:33:b9:9b:ea:ef:53:1a:b2:3f:
91:0a:21:bb:f8:cb:b7:00:5f:e6:cb:d3:f4:e3:4d:
3b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:15:42:74:15:4B:BA:F7:5A:54:2C:A6:93:98:DC:3F:93:03:45:30
X509v3 Authority Key Identifier:
keyid:19:A1:96:F5:E5:BA:BA:31:92:6C:5A:EE:F4:4F:C1:63:87:E6:5C:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19A196F5E5BABA31926C5AEEF44FC16387E65C3C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fb8858e0-ecf0-4e53-a490-3b7c2de1693c/0/3130332e33302e3138302e302f32322d3234203d3e203435333032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.30.180.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:4b:f8:86:79:02:ce:a6:59:d3:73:21:64:85:9b:3a:2a:de:
45:d0:6c:50:5d:e0:2c:c2:14:11:76:79:70:13:c6:32:73:29:
31:c8:b1:ff:c8:e4:09:b5:1d:64:37:ff:53:11:f9:64:7a:54:
75:2a:33:2d:ee:fa:31:dc:8a:47:4f:59:73:79:50:f3:cf:17:
b9:65:a5:40:b6:3c:39:23:94:08:38:3b:1b:f3:98:56:8a:d9:
19:e9:04:94:ad:a5:6f:e2:24:5d:c3:29:09:ec:6c:5c:5c:7e:
12:99:fe:76:d7:6c:ce:2a:6c:9d:d8:95:32:a4:49:0e:77:c0:
04:72:41:9f:3e:8f:57:b1:3a:ff:5f:56:b2:50:c4:52:6b:fb:
37:13:87:7b:ca:53:9e:94:4c:bf:5f:8f:c2:1e:36:cd:76:ab:
e2:60:0f:54:3c:7e:00:52:34:ff:be:de:e6:b4:f0:60:47:4c:
79:0f:f9:ea:6a:b6:70:78:82:a3:ed:79:8d:5b:9f:0d:62:83:
01:b3:db:0f:9d:34:fd:13:c1:d7:4d:15:4d:7c:02:17:f4:2c:
c2:c2:1d:52:f7:63:21:09:56:f4:2c:bd:bd:64:0f:e9:b9:68:
01:21:af:c5:41:9f:74:98:2a:d7:fb:8d:1c:21:f1:60:f0:9d:
0c:21:91:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:46:31 2025 by rpki-client