Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/3130332e32392e31302e302f32332d3234203d3e20313530323530.roa
File: 3130332e32392e31302e302f32332d3234203d3e20313530323530.roa (raw, json)
Hash identifier: JNpT1dZEf8opBHUFF8/Td2RSSEyhqKZs7uMYbfIzL08=
Subject key identifier: D7:67:78:55:B8:21:1C:E3:57:28:E7:15:CA:3B:41:73:A7:09:5A:94
Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD
Certificate serial: 697978D24440F2AC943C73AF134493AE55A53E46
Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/3130332e32392e31302e302f32332d3234203d3e20313530323530.roa
Signing time: Fri 05 Apr 2024 03:59:38 +0000
ROA not before: Fri 05 Apr 2024 03:54:38 +0000
ROA not after: Fri 04 Apr 2025 03:59:38 +0000
asID: 150250
IP address blocks: 103.29.10.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:79:78:d2:44:40:f2:ac:94:3c:73:af:13:44:93:ae:55:a5:3e:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD
Validity
Not Before: Apr 5 03:54:38 2024 GMT
Not After : Apr 4 03:59:38 2025 GMT
Subject: CN=D7677855B8211CE35728E715CA3B4173A7095A94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:87:4d:82:d8:60:70:8e:4f:d1:98:b7:41:d7:
70:d8:c6:0c:a6:95:34:76:06:c6:26:5c:92:f0:bf:
06:f1:23:10:76:27:b6:89:4b:ea:68:de:3d:64:66:
c9:11:b9:1c:29:ea:c5:ff:b1:2d:2c:1d:70:d4:c1:
e7:97:c4:8b:d7:3c:a0:10:a3:e9:29:3b:15:2f:f5:
28:a4:8c:80:cf:f2:cc:15:d3:82:01:7c:6f:77:19:
31:2f:71:c2:31:93:6f:7f:bc:be:7d:5d:2e:5a:ce:
9c:e2:76:50:49:a7:37:ec:1d:ec:51:93:be:2a:1e:
61:9f:da:be:53:8e:46:f6:fc:df:50:38:2f:d3:3a:
3e:a9:31:6b:c9:f5:38:2f:21:d9:a4:af:9f:a0:38:
ff:e6:9e:f7:4c:4f:1f:3d:b9:0b:a4:4f:5e:ba:12:
9a:c4:c4:e3:08:9f:ff:3d:22:1f:6e:8b:3c:ce:9b:
61:58:74:64:19:87:c2:8f:be:d9:df:45:6c:07:d9:
9e:e6:a8:3d:75:56:22:f1:e3:39:5f:38:4e:7e:5c:
46:24:87:b1:f4:8c:6a:a5:aa:32:64:d0:24:75:f3:
bc:dd:bc:ea:80:24:69:d7:9e:4c:18:96:47:fb:f8:
8d:18:fc:a5:99:48:72:13:d5:50:cc:cf:c3:78:65:
36:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:67:78:55:B8:21:1C:E3:57:28:E7:15:CA:3B:41:73:A7:09:5A:94
X509v3 Authority Key Identifier:
keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/3130332e32392e31302e302f32332d3234203d3e20313530323530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.29.10.0/23
Signature Algorithm: sha256WithRSAEncryption
37:f6:c8:b9:37:15:18:c7:21:b2:93:de:10:40:39:ed:3e:e8:
df:0a:20:b7:09:8e:90:b9:33:11:05:78:c4:05:85:72:52:99:
3b:ae:8a:b4:9b:55:e6:39:6d:6f:36:97:69:1e:fe:37:a2:9c:
b0:37:1f:ff:11:3e:c2:f1:9d:5c:c3:8d:a8:13:58:1a:7a:f8:
83:27:ef:18:b9:ad:8c:57:90:0c:96:fd:b1:31:51:88:ad:29:
5e:dd:ce:97:bc:11:80:4b:4e:60:ea:5b:ad:a4:94:07:7e:d5:
0f:d0:64:d2:e7:e2:56:75:2b:1e:f3:e9:b5:c8:d7:92:63:35:
70:08:d8:d9:43:9e:e4:97:f3:a8:29:82:1e:63:26:38:07:0b:
c8:ae:c5:37:48:45:b3:30:f0:d1:e7:c2:73:30:4a:8a:4c:57:
c2:bd:c8:28:b8:98:5e:3a:3c:69:15:e3:f3:3f:57:0b:5b:99:
7e:6a:21:dd:75:a2:b5:55:b0:c3:ea:bd:42:58:b3:c7:89:f5:
fd:8c:c5:74:b2:a9:8b:9f:19:ad:6d:fb:c3:0c:95:f7:36:3a:
a6:1f:65:ab:26:a9:ce:fb:0c:cf:93:b1:8f:65:0e:97:90:2e:
20:ec:1b:c2:d0:a8:af:50:62:c0:cd:7f:87:8b:20:af:2b:06:
ad:f4:f1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 00:02:51 2025 by rpki-client