Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/3130332e3135352e3139382e302f32332d3234203d3e203538383231.roa
File: 3130332e3135352e3139382e302f32332d3234203d3e203538383231.roa (raw, json)
Hash identifier: YwE+UrBIdJChzzky/B1cyIMVCcodIiUc4aS8d6d7+co=
Subject key identifier: C1:AF:B6:E1:86:51:88:64:C7:20:2D:A0:3C:15:1C:BE:45:3F:58:E9
Certificate issuer: /CN=58BB439F406646053DA2029A1FDBBE942B381419
Certificate serial: 2EE8D9CBA494EA2D684FC8CA91F9591289FFAFF3
Authority key identifier: 58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/3130332e3135352e3139382e302f32332d3234203d3e203538383231.roa
Signing time: Sat 21 Dec 2024 07:00:01 +0000
ROA not before: Sat 21 Dec 2024 06:55:01 +0000
ROA not after: Sat 20 Dec 2025 07:00:01 +0000
asID: 58821
IP address blocks: 103.155.198.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:e8:d9:cb:a4:94:ea:2d:68:4f:c8:ca:91:f9:59:12:89:ff:af:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58BB439F406646053DA2029A1FDBBE942B381419
Validity
Not Before: Dec 21 06:55:01 2024 GMT
Not After : Dec 20 07:00:01 2025 GMT
Subject: CN=C1AFB6E186518864C7202DA03C151CBE453F58E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ef:de:ea:fd:ee:3b:c4:f1:22:87:18:07:4b:
ea:d8:8c:7b:af:e6:59:aa:47:10:6a:1a:46:9f:df:
ea:f8:e4:c3:56:d2:ec:4f:3a:2e:be:18:e4:1a:22:
e3:4e:89:0a:7a:17:4e:ea:b1:3f:fb:af:29:1c:ae:
94:ea:91:a0:1f:05:4b:e6:58:1f:f8:d4:09:9a:bf:
5d:e0:41:66:f8:c7:e6:36:b9:b0:07:23:af:95:1c:
3e:22:6a:58:ce:23:01:a9:4c:15:fc:c1:f0:7b:d3:
0a:e5:2f:10:84:54:23:14:1a:83:a7:c0:f5:92:10:
c5:d7:ad:20:b9:2f:46:26:f3:66:58:6b:89:a6:88:
4e:2a:93:10:ec:2b:f3:55:78:2f:a6:32:26:9d:f2:
44:99:10:aa:06:d8:6e:a4:83:59:e5:34:ea:74:cb:
f7:7e:29:ee:cf:62:d5:62:d5:fa:bb:d1:2d:50:89:
17:c0:7c:fe:df:a5:59:c0:82:94:cd:87:31:77:be:
f3:e0:9e:6f:a7:c5:22:c5:82:6f:46:27:13:85:51:
8a:ef:cb:ca:60:b9:bd:69:35:9f:71:21:91:ee:df:
48:23:13:3e:8a:e9:31:63:c5:b4:bc:05:82:f1:e8:
dd:e1:9b:73:64:79:e2:c9:82:5c:43:ef:48:83:4f:
cb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:AF:B6:E1:86:51:88:64:C7:20:2D:A0:3C:15:1C:BE:45:3F:58:E9
X509v3 Authority Key Identifier:
keyid:58:BB:43:9F:40:66:46:05:3D:A2:02:9A:1F:DB:BE:94:2B:38:14:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/58BB439F406646053DA2029A1FDBBE942B381419.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58BB439F406646053DA2029A1FDBBE942B381419.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ff2506b1-396d-499e-b7f5-5d9f8e7e0bee/0/3130332e3135352e3139382e302f32332d3234203d3e203538383231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.155.198.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:cb:01:02:02:4c:d9:33:8a:d2:26:00:1c:ec:fe:40:28:a5:
f7:57:9d:26:e7:3f:76:fc:fd:94:27:45:17:3f:e1:32:cd:bc:
9b:59:44:e2:11:ec:1a:bf:e3:6c:f1:cf:b1:bd:0b:3b:94:ed:
c6:45:e1:55:17:73:09:94:b0:8c:59:13:4e:2f:34:8f:de:28:
a9:b3:0d:55:31:05:de:d1:d0:86:f2:c3:08:64:e1:40:47:b8:
6c:f4:2c:98:e8:62:ca:df:64:61:5d:3c:c1:d2:f1:b8:06:5c:
79:4d:43:2d:47:a1:40:65:47:e7:f7:61:d0:91:0b:04:57:1e:
29:2b:e1:5b:68:4e:4d:fa:34:65:32:f9:5a:ac:3a:31:91:72:
a6:09:fd:82:6c:21:1e:d2:b8:47:e9:1a:8d:0a:81:f0:22:9b:
55:57:22:38:21:9c:1b:51:14:42:6a:c3:45:61:07:8d:33:22:
1f:69:d2:f7:1a:2e:f4:76:6d:06:7a:d3:22:66:2c:e0:b2:d3:
06:d6:23:20:fe:aa:27:5c:cd:3b:56:b9:94:14:87:63:0d:c1:
38:66:60:a5:d0:34:5f:cc:38:c8:ed:bc:c6:75:12:42:32:b3:
8b:23:27:ab:a3:59:35:53:62:0a:6c:5f:77:ca:ff:f2:9d:d5:
48:cf:74:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:54:06 2025 by rpki-client