Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/152226ea-5e26-4ea5-a689-4757ad05f952/0/3130332e3134302e33342e302f32332d3233203d3e203538333639.roa
File: 3130332e3134302e33342e302f32332d3233203d3e203538333639.roa (raw, json)
Hash identifier: hsmsycbgcxD+k7B/9K7pfzL9pgpZZ+cbabjIylSO6t0=
Subject key identifier: 43:F2:22:80:05:B6:25:7B:0F:BB:1D:24:42:09:86:C2:78:BD:FE:F9
Certificate issuer: /CN=9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312
Certificate serial: 608008CA255DFB21A669A21E38E3867442D47ADC
Authority key identifier: 9F:5E:7C:D1:CF:2E:52:B2:82:C4:03:FC:C0:AF:8B:02:D0:E8:93:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/152226ea-5e26-4ea5-a689-4757ad05f952/0/3130332e3134302e33342e302f32332d3233203d3e203538333639.roa
Signing time: Wed 26 Mar 2025 13:00:01 +0000
ROA not before: Wed 26 Mar 2025 12:55:01 +0000
ROA not after: Wed 25 Mar 2026 13:00:01 +0000
asID: 58369
IP address blocks: 103.140.34.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:80:08:ca:25:5d:fb:21:a6:69:a2:1e:38:e3:86:74:42:d4:7a:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312
Validity
Not Before: Mar 26 12:55:01 2025 GMT
Not After : Mar 25 13:00:01 2026 GMT
Subject: CN=43F2228005B6257B0FBB1D24420986C278BDFEF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1a:8c:2d:5e:b7:de:f3:47:cc:7b:df:1c:63:
df:49:db:b7:ae:20:be:53:4a:6a:23:44:b6:4e:82:
af:40:dc:61:9c:da:66:9e:6d:ed:50:fd:35:77:5c:
24:0c:04:22:4a:f8:2b:1d:b4:03:63:ba:aa:cf:85:
eb:8b:42:a7:90:c9:a0:fc:2d:3e:b8:a8:71:a1:73:
9a:ed:a2:0d:1f:b7:1e:73:70:e3:0d:a7:7b:4e:cf:
37:15:86:92:0b:2f:82:44:67:01:f3:72:ca:07:e3:
d6:e6:c3:00:6a:62:62:e2:23:9f:c2:53:05:7e:32:
9e:ae:49:f1:bd:67:47:2f:cf:d6:fe:0b:ae:2a:9d:
0c:a3:0f:4d:94:94:b7:63:70:eb:33:00:b1:88:72:
bb:d9:a6:09:fa:77:01:7b:0b:17:64:53:4d:00:fd:
1d:a1:1f:5d:ec:97:08:f4:fc:0b:14:13:12:20:86:
49:8e:ed:56:66:76:94:72:83:bc:29:06:7d:ba:e2:
14:6a:dd:75:fe:e4:0d:a1:48:ec:e4:0b:83:49:16:
6f:e6:e1:d4:d4:68:9f:54:f5:a4:a6:8d:65:f0:cb:
a7:b4:cb:20:b6:c4:e7:2f:9b:49:a7:1d:7d:41:3e:
04:6f:06:6e:77:ca:f7:01:40:02:89:9f:d0:f2:33:
a0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F2:22:80:05:B6:25:7B:0F:BB:1D:24:42:09:86:C2:78:BD:FE:F9
X509v3 Authority Key Identifier:
keyid:9F:5E:7C:D1:CF:2E:52:B2:82:C4:03:FC:C0:AF:8B:02:D0:E8:93:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/152226ea-5e26-4ea5-a689-4757ad05f952/0/9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/152226ea-5e26-4ea5-a689-4757ad05f952/0/3130332e3134302e33342e302f32332d3233203d3e203538333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.140.34.0/23
Signature Algorithm: sha256WithRSAEncryption
44:45:07:46:1e:eb:ee:aa:98:03:6e:28:5e:df:b9:a5:b3:88:
8d:67:b2:a7:19:09:3b:0e:5c:ce:08:42:35:f3:93:80:da:34:
02:55:00:4a:3a:f8:28:bf:54:9d:d6:2f:37:23:05:a8:a7:ae:
33:78:4d:2a:6f:0c:bb:5a:e4:91:c7:ac:6e:92:d9:07:4f:e0:
19:f6:e0:f1:1d:be:15:40:c9:70:3d:f1:15:33:15:6c:14:5c:
75:df:95:7d:16:de:d4:c2:0c:c5:a0:6b:55:db:95:ce:0f:79:
d9:0a:66:c9:5e:ed:b6:3e:4b:28:7b:a4:15:5d:a5:99:65:b3:
e4:c4:94:77:cc:5f:5b:e9:24:38:a5:bd:79:b3:2c:b6:4e:10:
96:01:85:6c:60:13:c1:4b:e9:3d:93:cd:48:b9:b9:55:57:2d:
41:bc:16:aa:de:ec:44:62:2c:ae:09:8b:ab:23:6b:60:37:f4:
78:2b:cd:62:5a:7d:7c:94:4c:e7:dc:96:fa:b4:c1:b6:ea:94:
5e:02:1e:3d:8a:5f:ca:7a:e2:c9:53:ef:3d:74:77:a6:4d:7c:
d3:ce:3f:4d:99:48:01:cc:d9:04:da:17:5b:9f:0c:55:c5:b2:
11:0f:c3:e1:bf:9a:eb:e0:dc:0b:43:93:c2:09:ac:09:0a:2b:
8e:a3:f6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:06:11 2025 by rpki-client