Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139392e302f32342d3234203d3e20313437313334.roa
File: 3130332e3137362e3139392e302f32342d3234203d3e20313437313334.roa (raw, json)
Hash identifier: 0HKqUWxZbI9n+PEVKoTLIbRadeKyFkIWvHvlRbtvAq0=
Subject key identifier: 92:60:BE:26:AE:44:07:C2:8B:BC:CF:E2:7C:FB:FC:F9:43:CC:E7:84
Certificate issuer: /CN=1D5FBED26611C99226941DBD91139C594B399F46
Certificate serial: 4B696B7D149C08B2F1FC131EF6831FDC75B6C1F1
Authority key identifier: 1D:5F:BE:D2:66:11:C9:92:26:94:1D:BD:91:13:9C:59:4B:39:9F:46
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139392e302f32342d3234203d3e20313437313334.roa
Signing time: Sat 22 Feb 2025 16:00:01 +0000
ROA not before: Sat 22 Feb 2025 15:55:01 +0000
ROA not after: Sat 21 Feb 2026 16:00:01 +0000
asID: 147134
IP address blocks: 103.176.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:69:6b:7d:14:9c:08:b2:f1:fc:13:1e:f6:83:1f:dc:75:b6:c1:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D5FBED26611C99226941DBD91139C594B399F46
Validity
Not Before: Feb 22 15:55:01 2025 GMT
Not After : Feb 21 16:00:01 2026 GMT
Subject: CN=9260BE26AE4407C28BBCCFE27CFBFCF943CCE784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0b:c2:99:e8:50:29:a4:de:22:09:92:8d:7c:
96:a3:9e:6f:ce:d7:a3:c5:54:ec:4b:53:29:c5:14:
48:42:90:b9:b9:45:ac:8e:d6:f7:72:d3:1c:64:37:
0a:69:ec:c5:90:b4:e0:c3:df:c6:34:69:2e:3d:7c:
5f:7f:23:0c:0b:34:1c:63:49:82:24:66:40:e2:81:
0c:50:93:66:02:c3:d4:95:a4:ac:a7:79:45:c4:60:
ab:fe:75:54:1f:79:11:b8:8b:f5:ea:5c:84:0d:06:
26:6f:f1:c4:6d:62:61:31:d1:4d:a5:18:00:2a:53:
cd:b5:14:79:d1:61:bc:2c:fb:04:98:b9:31:0a:bc:
b8:cd:c1:84:5a:45:5a:14:d7:cb:1c:47:eb:68:62:
ea:43:17:f4:15:5c:b4:fc:67:87:c9:3a:88:05:1b:
e4:e8:84:29:4e:20:ab:59:ba:34:46:a5:36:6c:00:
33:a6:65:2d:64:4c:fc:3a:7c:bf:4f:a3:82:29:b0:
94:5f:62:c1:4d:1d:f2:48:0d:c6:18:cd:02:68:0b:
8b:b0:2e:df:87:f7:16:bb:05:b1:5c:2e:d3:e4:34:
13:5d:23:4d:11:2b:42:b2:81:c8:69:43:75:53:3d:
a4:a9:71:2b:9b:e9:6a:88:6a:70:2e:b1:cb:09:33:
79:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:60:BE:26:AE:44:07:C2:8B:BC:CF:E2:7C:FB:FC:F9:43:CC:E7:84
X509v3 Authority Key Identifier:
keyid:1D:5F:BE:D2:66:11:C9:92:26:94:1D:BD:91:13:9C:59:4B:39:9F:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139392e302f32342d3234203d3e20313437313334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.176.199.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:67:9e:08:46:d6:1d:12:ba:bc:bc:00:7b:1a:bf:e0:4d:ca:
85:a7:d5:a9:52:bd:82:dc:01:9b:49:81:32:f2:c1:fe:3e:3c:
8f:1d:ad:cd:02:5c:c2:eb:43:d6:47:e4:80:b3:6a:35:be:2a:
95:e2:e6:bf:d7:38:c8:5b:42:71:0b:2a:7a:8e:75:0d:5e:21:
d1:5c:9f:30:4b:f7:37:7d:17:e6:64:3d:66:3c:b2:80:53:38:
d3:68:fa:fd:9c:d8:e0:f4:49:69:2e:7d:81:18:6d:53:f1:43:
99:ca:50:70:af:d9:84:7a:3b:22:a3:3c:56:19:f0:05:a2:77:
0c:d0:ba:32:66:26:b2:2a:11:52:00:b0:60:45:6f:a3:84:ba:
82:01:9d:9a:cd:5c:e8:e0:22:7a:e5:30:69:f5:19:ed:4c:d8:
a5:94:62:6b:e7:2a:1d:e1:6e:99:e7:a3:16:00:21:ba:52:9a:
f3:6f:37:b8:11:12:f7:13:27:9e:d2:a3:38:d2:79:5e:d5:2a:
f1:11:c9:cf:58:a1:94:2a:91:99:d9:74:8d:b6:15:3a:06:a2:
64:68:62:0f:40:da:47:c5:91:9b:37:43:cf:40:f0:54:f0:8a:
22:d6:19:4a:9b:72:8c:cf:81:f6:a9:e7:dd:04:91:56:f7:61:
a4:e9:71:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:25:10 2025 by rpki-client