Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/3130332e3136302e31342e302f32342d3234203d3e20313431363130.roa
File: 3130332e3136302e31342e302f32342d3234203d3e20313431363130.roa (raw, json)
Hash identifier: Jph2XiNWmwNAS4UJyHSi24QW91o/E+0+i6OT+5Vsmxw=
Subject key identifier: 48:B4:D8:EE:5B:34:50:E0:F2:EF:FB:5A:0D:63:3D:24:83:E1:1D:21
Certificate issuer: /CN=BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7
Certificate serial: 44244CF3C1D8796FF22AE938F9D8C0C5CA56DC7B
Authority key identifier: BA:65:CD:04:3C:E7:E9:AE:0C:DA:AE:BF:12:E3:3D:86:46:7A:8F:E7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/3130332e3136302e31342e302f32342d3234203d3e20313431363130.roa
Signing time: Thu 23 Jan 2025 04:01:59 +0000
ROA not before: Thu 23 Jan 2025 03:56:59 +0000
ROA not after: Thu 22 Jan 2026 04:01:59 +0000
asID: 141610
IP address blocks: 103.160.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:24:4c:f3:c1:d8:79:6f:f2:2a:e9:38:f9:d8:c0:c5:ca:56:dc:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7
Validity
Not Before: Jan 23 03:56:59 2025 GMT
Not After : Jan 22 04:01:59 2026 GMT
Subject: CN=48B4D8EE5B3450E0F2EFFB5A0D633D2483E11D21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:96:b3:96:53:7d:52:5a:c9:aa:6d:f5:3b:da:
5f:99:67:a0:24:8e:87:b0:aa:83:f1:88:97:da:08:
ed:4a:43:b1:b5:8c:e0:ae:57:9f:5b:6b:88:0b:d3:
1c:a2:ff:ce:fb:e4:d6:9c:32:6c:ef:10:58:30:e6:
f6:03:6f:10:47:27:46:78:7d:ed:df:a7:fb:2d:a1:
3f:9d:d2:9b:74:47:6c:a7:6b:fa:7d:54:b7:21:92:
d3:d5:60:7c:9a:bf:3d:10:6f:ac:aa:2b:dc:5f:5d:
08:5f:27:4f:fb:d8:f1:7a:30:21:51:d6:6e:a4:1b:
65:5a:f0:0c:72:6e:13:cb:06:7f:97:93:0a:eb:a2:
51:2b:3a:73:70:c8:f7:08:65:11:0f:98:34:5e:55:
65:5c:19:f5:ca:3b:23:c4:f3:59:17:5a:3f:f5:a1:
f6:df:5c:b6:fc:fe:8d:87:4e:77:db:2d:ec:bc:12:
99:b8:1c:83:63:09:2c:06:c9:07:dd:e8:a9:20:7b:
63:e7:74:63:37:6a:b0:92:83:83:85:fc:80:7a:5f:
b1:28:5d:47:4a:18:ad:08:a9:5d:a1:fe:4c:c9:1b:
f0:80:0a:11:27:84:7b:60:b5:6d:a8:ce:cf:0e:96:
72:32:d7:12:d7:09:35:2e:eb:e4:a4:81:93:e4:3f:
c6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B4:D8:EE:5B:34:50:E0:F2:EF:FB:5A:0D:63:3D:24:83:E1:1D:21
X509v3 Authority Key Identifier:
keyid:BA:65:CD:04:3C:E7:E9:AE:0C:DA:AE:BF:12:E3:3D:86:46:7A:8F:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA65CD043CE7E9AE0CDAAEBF12E33D86467A8FE7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/12b71536-717e-45db-a03a-338f1dfa4893/0/3130332e3136302e31342e302f32342d3234203d3e20313431363130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.14.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b0:42:8f:5f:d7:24:7b:07:2f:e9:91:51:54:6b:9f:ff:5c:
cd:2f:2f:e8:78:15:73:6e:09:60:61:c0:05:eb:d4:fe:a8:48:
c0:83:ba:69:9b:d7:e7:50:21:fa:27:3e:f5:85:b3:77:eb:a9:
ee:01:ce:00:f8:c6:0a:42:76:ea:bb:c0:5c:29:51:b0:a4:e6:
23:fb:3e:c2:43:31:e9:ce:f3:fc:42:2e:2c:f4:ed:3e:ac:1d:
61:9c:f4:99:da:97:1e:1d:73:94:89:b5:a6:8d:4b:b5:8f:f7:
c8:d5:5b:71:89:c0:80:ee:74:e8:59:d7:42:6e:56:39:15:e9:
ac:f3:05:68:e2:92:cd:66:0b:00:06:52:96:32:b2:65:f9:a3:
11:6c:a7:73:d9:ad:ec:c0:f6:22:9b:5d:99:1f:35:ca:ff:bc:
b9:c2:21:74:69:0c:01:89:eb:a5:e3:27:96:05:23:e9:c1:14:
18:85:00:f6:c5:7e:24:38:e2:06:07:7f:96:41:3c:86:f1:8f:
35:72:dd:e3:ec:55:69:53:b1:6c:7d:d5:1d:7f:2a:f9:35:66:
c9:96:6b:c9:aa:26:0a:c0:5b:9a:8d:4f:2d:13:eb:63:89:e7:
a8:03:cc:3d:ac:d3:90:1f:cc:a3:4b:aa:9d:9c:ec:6a:65:82:
d6:c2:e1:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:50:18 2025 by rpki-client