Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa
File: 3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa (raw, json)
Hash identifier: 2/BO5q4FxJ0TtWaXRvmAYcsGvqXuzC7OVHrzQY+oShQ=
Subject key identifier: E6:29:F6:DB:23:18:98:12:F0:A4:F1:B8:5F:1F:DD:A5:F6:1D:8C:88
Certificate issuer: /CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4
Certificate serial: 16FB3AA711CAAD671C59F8DED3881CE9B77ABA76
Authority key identifier: 77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa
Signing time: Thu 21 Mar 2024 10:00:00 +0000
ROA not before: Thu 21 Mar 2024 09:55:00 +0000
ROA not after: Thu 20 Mar 2025 10:00:00 +0000
asID: 147101
IP address blocks: 103.174.174.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:fb:3a:a7:11:ca:ad:67:1c:59:f8:de:d3:88:1c:e9:b7:7a:ba:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4
Validity
Not Before: Mar 21 09:55:00 2024 GMT
Not After : Mar 20 10:00:00 2025 GMT
Subject: CN=E629F6DB23189812F0A4F1B85F1FDDA5F61D8C88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:11:0d:83:29:61:b1:70:51:61:bd:1b:6d:ba:
c6:dc:f5:f2:9b:a1:3f:a5:a0:8c:00:95:12:50:90:
39:c5:50:14:5c:3d:9b:af:46:b6:47:78:f4:24:0b:
61:48:93:a7:59:09:84:fc:11:12:eb:5d:94:3a:8d:
8b:9b:96:2f:a8:41:18:86:73:fe:c8:1f:9c:82:0c:
7d:61:39:d7:ef:be:50:7e:5d:5d:a9:bf:f9:ba:87:
41:24:71:00:46:13:ef:8a:c7:c8:cc:61:7e:d2:22:
a1:df:df:2d:cc:a8:0e:ae:2d:53:4d:5e:b9:08:d1:
35:0f:c7:0b:58:5c:a3:2c:2e:ee:55:f2:1e:ab:8d:
4e:0b:f8:0c:fa:a8:ad:5a:91:e6:c1:88:12:e2:c8:
da:88:e6:9e:8a:ae:35:fd:0a:72:08:8b:77:0b:ed:
de:6c:4d:65:e4:3d:11:ca:42:7e:1e:22:f6:36:b1:
34:f7:29:f9:f4:d2:89:ce:d7:43:ad:f7:79:9f:81:
17:fc:b8:47:80:bd:cc:d5:29:c7:b5:19:11:48:f0:
81:5c:80:29:3d:d8:30:60:15:d1:f2:eb:a5:66:82:
d0:0a:81:2e:ac:c9:71:76:f9:e2:9e:a2:29:48:e1:
85:22:74:4d:27:06:11:9b:00:2c:56:e4:54:0d:e5:
c9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:29:F6:DB:23:18:98:12:F0:A4:F1:B8:5F:1F:DD:A5:F6:1D:8C:88
X509v3 Authority Key Identifier:
keyid:77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.174.174.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:e1:e8:4c:13:ba:0c:23:0b:94:40:2f:ce:bd:18:93:34:87:
f6:15:94:7e:90:ff:a5:b9:3c:2c:8f:94:01:fc:3a:17:c2:64:
dd:4d:f0:72:0a:db:b7:fe:86:07:e3:ad:3d:fb:41:14:be:91:
60:87:1a:72:4a:38:e6:0f:ff:f1:97:58:92:90:06:7e:b4:64:
a7:30:9d:19:5e:3e:53:cc:75:1f:a3:c0:a0:0b:71:23:b6:c4:
8d:e0:af:b4:0b:bd:74:1a:8a:ae:2f:cf:b5:c2:e8:db:8d:ca:
c4:9a:1f:8a:88:f4:9d:a2:65:44:93:ed:bc:68:73:be:fe:8f:
c5:fe:fb:6d:60:90:f4:72:25:bc:8a:96:e5:c3:0a:8d:2c:bd:
d1:b2:14:d1:2d:74:fe:dd:44:b7:ce:67:84:cb:49:45:84:16:
de:60:60:10:24:41:15:13:a0:c2:bb:90:5a:45:8d:5e:e9:a5:
73:46:6e:2c:ab:df:14:0e:d3:84:28:8b:7f:bd:2d:7a:34:a2:
4a:72:0c:cf:dc:15:38:e5:a2:e0:df:c0:58:c3:36:e2:f2:bd:
13:e0:2d:ca:c3:ff:0d:62:50:00:dd:d7:6f:38:c9:05:14:67:
84:e7:9b:0c:f0:22:7f:50:c0:9c:6c:f2:cf:9d:36:55:a0:79:
9e:4d:f6:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 02:41:06 2025 by rpki-client