Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3130332e38332e39322e302f32322d3234203d3e20313331313131.roa
File: 3130332e38332e39322e302f32322d3234203d3e20313331313131.roa (raw, json)
Hash identifier: 7BaUBkYi576UVLsHbTQQnc27jnKH4uxS8EK0pK4qmYo=
Subject key identifier: 9D:65:3C:4E:5F:9B:70:ED:2B:45:6C:17:6C:06:BA:F3:2E:42:D2:F2
Certificate issuer: /CN=3CA825E93FE8830376EF386786BF847CB239BE70
Certificate serial: 0ED4011748E1FCA0F6082E065E6BC24F95AE4E49
Authority key identifier: 3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3130332e38332e39322e302f32322d3234203d3e20313331313131.roa
Signing time: Fri 07 Mar 2025 07:00:02 +0000
ROA not before: Fri 07 Mar 2025 06:55:02 +0000
ROA not after: Fri 06 Mar 2026 07:00:02 +0000
asID: 131111
IP address blocks: 103.83.92.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:d4:01:17:48:e1:fc:a0:f6:08:2e:06:5e:6b:c2:4f:95:ae:4e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CA825E93FE8830376EF386786BF847CB239BE70
Validity
Not Before: Mar 7 06:55:02 2025 GMT
Not After : Mar 6 07:00:02 2026 GMT
Subject: CN=9D653C4E5F9B70ED2B456C176C06BAF32E42D2F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f8:95:e6:3d:43:33:e7:e0:03:a6:38:5e:7e:
26:b9:c3:bc:2c:65:5c:0f:e3:67:90:3f:db:93:b8:
07:00:ab:b5:cd:13:74:4c:b1:d0:c5:9a:4a:44:06:
9c:61:c4:b8:b4:28:f9:7c:c2:4b:5d:6b:25:25:ce:
9e:a4:4d:fa:38:86:38:68:2c:ab:e0:bf:02:f0:68:
1b:97:34:19:2a:00:22:e1:19:bb:0d:9c:0e:61:67:
42:db:58:f3:4c:8b:62:37:f7:c8:84:6c:11:78:15:
64:6d:29:f4:e5:73:58:bf:bd:52:7c:37:af:85:47:
ab:c8:47:ad:80:e7:c3:65:37:68:ff:b6:03:4a:5b:
29:1d:13:01:34:57:4e:e3:b4:cb:4c:a0:5e:17:6e:
da:b6:6c:79:c1:29:13:d8:38:1d:f7:ea:7c:a6:86:
74:40:54:0b:b8:80:2c:4e:95:34:fe:8c:2c:ba:7b:
0d:6d:a6:90:f8:33:87:0f:90:44:5b:15:f3:8b:a7:
8f:17:f6:23:f3:0b:22:2c:02:c7:28:6c:ec:9d:d6:
5c:98:c0:52:14:07:4a:31:30:d0:b8:f8:f8:f2:a6:
c4:56:9a:0a:2e:57:f7:7e:8a:68:62:99:ab:47:10:
3e:bd:5f:b3:3a:3c:fc:1d:66:1a:82:82:16:de:3a:
09:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:65:3C:4E:5F:9B:70:ED:2B:45:6C:17:6C:06:BA:F3:2E:42:D2:F2
X509v3 Authority Key Identifier:
keyid:3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3130332e38332e39322e302f32322d3234203d3e20313331313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.83.92.0/22
Signature Algorithm: sha256WithRSAEncryption
69:73:6f:fa:66:a7:52:af:05:36:0d:1e:d1:35:b2:9f:a3:cf:
73:01:97:e9:59:98:30:71:22:1b:f5:7e:a7:60:26:f9:da:bc:
65:5a:ea:e4:c6:28:7f:e5:c5:3b:fb:71:85:f0:f1:d4:9a:4a:
2e:f8:a5:b0:90:d6:e6:29:03:ef:26:93:33:0a:e0:2c:df:41:
28:98:88:9c:a2:d5:ff:6f:29:22:1b:50:33:a5:61:ae:af:fc:
6c:ad:b2:df:77:12:3d:48:05:68:85:8a:da:77:48:7c:c2:6c:
32:b3:24:ff:27:5f:e5:e8:db:d9:de:55:23:81:9d:0b:d8:eb:
b4:2d:b4:bd:c7:3e:f6:1b:f2:e6:92:7b:3c:6d:7b:08:20:de:
9d:d6:8f:52:35:70:e4:4a:74:aa:87:21:f3:ef:0d:a0:9b:92:
46:d4:16:1b:e0:e2:12:31:5e:d5:da:fd:86:a7:7b:c7:72:fd:
a0:95:fb:a7:93:8c:c8:00:ef:11:58:7c:d1:5e:98:a5:63:76:
33:4a:0b:d1:6a:e1:e1:df:04:76:a6:c9:43:96:bc:c4:c4:f0:
be:6e:ac:4b:8e:75:59:f3:43:14:42:ca:aa:0a:63:6b:b4:f8:
32:c8:29:91:fb:ab:4d:75:8c:f4:55:07:92:92:fc:e3:17:6a:
20:56:a6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:05:03 2025 by rpki-client