Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/3130332e3136392e3230362e302f32342d3234203d3e203435333235.roa
File: 3130332e3136392e3230362e302f32342d3234203d3e203435333235.roa (raw, json)
Hash identifier: /3CGvY//H1css9zYuxxW/Bez/32hDDiVLYL7tvwgxws=
Subject key identifier: 94:69:B4:B6:10:D3:08:0F:C9:3C:B7:E4:3A:56:71:CD:B3:BA:21:82
Certificate issuer: /CN=7136382578BA0ACBDD5EEAC687FF3234D04614B1
Certificate serial: 107A5FEADC32171828D75298785CFC69B6F1220D
Authority key identifier: 71:36:38:25:78:BA:0A:CB:DD:5E:EA:C6:87:FF:32:34:D0:46:14:B1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7136382578BA0ACBDD5EEAC687FF3234D04614B1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/3130332e3136392e3230362e302f32342d3234203d3e203435333235.roa
Signing time: Sat 29 Mar 2025 09:00:01 +0000
ROA not before: Sat 29 Mar 2025 08:55:01 +0000
ROA not after: Sat 28 Mar 2026 09:00:01 +0000
asID: 45325
IP address blocks: 103.169.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:7a:5f:ea:dc:32:17:18:28:d7:52:98:78:5c:fc:69:b6:f1:22:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7136382578BA0ACBDD5EEAC687FF3234D04614B1
Validity
Not Before: Mar 29 08:55:01 2025 GMT
Not After : Mar 28 09:00:01 2026 GMT
Subject: CN=9469B4B610D3080FC93CB7E43A5671CDB3BA2182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ab:e1:4c:2c:4f:89:bd:3e:c7:41:1a:99:d5:
d8:ed:03:6d:31:e5:76:e2:f9:9d:f4:c0:21:11:0e:
60:96:52:e6:33:4d:f0:31:ab:57:9a:a1:2a:19:6b:
19:ad:df:7d:5e:df:4f:e9:81:42:2d:d8:8b:38:cf:
39:70:3f:48:bf:4d:71:53:c0:c4:11:76:1a:d6:f7:
78:d2:e4:ee:ab:e3:53:35:14:06:59:7f:dd:7e:8f:
0e:1f:c4:ed:98:88:dd:3d:93:35:b8:e4:02:dd:0c:
f4:1a:d3:14:f9:f1:89:eb:de:36:f0:fb:d6:03:d7:
22:3b:c0:61:92:ee:45:2d:1a:38:b1:42:47:fa:a4:
5c:26:cf:ee:07:88:83:e6:b2:19:69:a6:36:7d:a4:
3f:3f:17:c1:b6:14:d7:57:51:7a:b3:ef:d9:9e:f3:
6f:ad:e5:30:17:78:6b:07:ce:a4:d5:0f:df:e6:96:
b5:29:fd:aa:6d:2d:2c:72:d4:0c:b7:ba:e4:a3:f0:
e0:9c:aa:86:f8:3c:0d:83:b4:e3:b4:78:8f:e0:d8:
f4:3d:73:9a:b4:61:9a:37:6a:77:65:16:14:18:ba:
24:3f:2e:98:8c:d8:1c:4c:48:65:85:a6:25:fe:e7:
a5:f8:6f:da:82:c1:25:06:89:5b:9c:41:38:71:90:
81:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:69:B4:B6:10:D3:08:0F:C9:3C:B7:E4:3A:56:71:CD:B3:BA:21:82
X509v3 Authority Key Identifier:
keyid:71:36:38:25:78:BA:0A:CB:DD:5E:EA:C6:87:FF:32:34:D0:46:14:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/7136382578BA0ACBDD5EEAC687FF3234D04614B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7136382578BA0ACBDD5EEAC687FF3234D04614B1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17f73780-0925-4b4a-bca7-a1e7ed3ff42a/0/3130332e3136392e3230362e302f32342d3234203d3e203435333235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.206.0/24
Signature Algorithm: sha256WithRSAEncryption
45:79:f4:9e:3a:c9:14:91:02:70:3a:93:a6:b0:fd:af:11:42:
89:cf:73:3a:91:37:bb:0a:3d:f7:ae:fd:f2:48:c1:38:ea:42:
63:e9:2e:ca:18:7f:7a:8e:99:1d:eb:3b:bc:c9:f2:9d:1c:67:
79:a6:8f:88:19:3a:80:ce:87:7c:53:77:04:af:c7:94:05:24:
88:a6:df:a2:51:88:a8:90:6d:f0:53:85:e1:46:65:26:0f:ba:
76:58:70:b0:6f:40:31:1b:ab:39:06:0d:09:29:d1:e1:23:86:
de:5f:70:9a:6c:17:dc:6d:3b:67:e0:8c:a3:b9:bc:a1:1b:ef:
32:98:f9:44:07:f5:25:59:80:4d:d5:5b:99:c4:2f:bd:c5:84:
15:98:33:6f:c9:76:aa:2f:ea:36:53:cd:58:34:b9:60:d8:3f:
4f:dd:90:45:07:57:2d:38:0e:7a:29:e3:42:89:f6:55:92:96:
06:bd:6e:3b:3d:26:65:74:56:c5:fd:23:37:89:dc:dc:3f:ac:
b8:dc:e6:86:3a:53:ef:bc:91:ed:4b:c2:5d:05:a1:a6:64:88:
23:00:3e:4d:02:d9:ed:70:b4:f1:2d:ed:2a:ef:6a:8e:3c:18:
3b:45:e0:f1:93:9c:4a:22:f8:d2:95:11:b7:3c:dd:b8:fb:73:
84:9b:20:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:09:55 2025 by rpki-client