Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/3130332e3135322e39342e302f32342d3234203d3e203435333132.roa
File: 3130332e3135322e39342e302f32342d3234203d3e203435333132.roa (raw, json)
Hash identifier: oyewj7z2z/pNCV5NDy0zw0UISqbqq4GZm0zaT4XOSl8=
Subject key identifier: A7:CD:A0:1E:9A:32:40:62:F4:C1:32:F2:7D:14:37:5B:07:D6:49:5C
Certificate issuer: /CN=E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF
Certificate serial: 700A0D4C36CC6BF7481D126026943406E2B095A1
Authority key identifier: E1:B0:3F:9E:EA:71:C0:0F:69:D8:38:BC:1D:AA:D1:13:A8:BD:F6:DF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/3130332e3135322e39342e302f32342d3234203d3e203435333132.roa
Signing time: Wed 18 Dec 2024 05:47:43 +0000
ROA not before: Wed 18 Dec 2024 05:42:43 +0000
ROA not after: Wed 17 Dec 2025 05:47:43 +0000
asID: 45312
IP address blocks: 103.152.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:0a:0d:4c:36:cc:6b:f7:48:1d:12:60:26:94:34:06:e2:b0:95:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF
Validity
Not Before: Dec 18 05:42:43 2024 GMT
Not After : Dec 17 05:47:43 2025 GMT
Subject: CN=A7CDA01E9A324062F4C132F27D14375B07D6495C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:52:17:b1:51:54:2a:8e:45:ab:33:e9:34:e3:
6d:77:dc:5c:00:bb:b4:13:65:c8:4c:c8:09:2e:95:
56:dd:84:39:e8:80:bf:55:9a:3b:7a:1f:85:c5:b6:
11:a8:1a:37:1f:d9:1f:18:da:b4:7b:83:95:d1:33:
4c:aa:a4:b6:b9:31:29:91:a3:61:ce:5a:cc:ce:d8:
c8:22:c8:ef:da:80:25:10:6a:25:8e:0a:a3:9e:4b:
17:8d:3c:b0:ce:c8:c5:64:4e:d2:e4:9f:39:73:ed:
94:c1:da:f0:cb:6f:5c:ed:e3:c8:b7:1d:08:3d:af:
ba:6d:30:5d:92:7b:72:78:cf:e6:d0:4f:6c:49:52:
f3:2f:19:17:b6:8a:2a:c1:97:94:fb:7e:39:fa:06:
0e:d4:8a:11:2e:40:3c:5e:44:d9:fb:1c:91:3d:b2:
9f:89:12:cb:82:fb:3d:81:e9:c8:17:44:5f:19:e4:
87:74:40:f4:27:8a:fa:33:33:0b:82:84:e1:be:d9:
5b:79:fe:fd:d8:2e:56:5e:c5:cf:c4:dc:e9:82:f7:
b9:0b:7b:a7:c3:1c:0b:30:d1:f3:09:f2:a3:60:2b:
3d:49:64:37:45:51:ca:56:86:ed:12:97:c1:64:09:
c8:b3:2f:f5:1b:34:b6:c5:88:bc:14:ab:fe:cd:63:
a5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:CD:A0:1E:9A:32:40:62:F4:C1:32:F2:7D:14:37:5B:07:D6:49:5C
X509v3 Authority Key Identifier:
keyid:E1:B0:3F:9E:EA:71:C0:0F:69:D8:38:BC:1D:AA:D1:13:A8:BD:F6:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/3130332e3135322e39342e302f32342d3234203d3e203435333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.152.94.0/24
Signature Algorithm: sha256WithRSAEncryption
49:c4:70:ef:a7:1d:48:0c:91:32:e8:07:49:96:df:03:7c:0d:
f7:1a:bf:43:34:7f:97:8d:38:5c:e1:f9:43:e9:3d:d3:09:52:
04:7e:f9:d5:6b:e7:d5:38:42:95:e8:56:0b:96:e5:73:cd:6d:
09:76:ad:e3:5e:5f:39:59:d0:9d:60:43:73:f6:54:f8:74:47:
27:fd:ec:fa:8d:87:86:4a:7a:56:db:b2:df:6c:4f:06:ec:e9:
4b:c3:0e:18:f4:20:be:88:6f:70:d7:37:e6:38:54:64:0f:7e:
9a:0b:e4:c6:5c:c1:a2:b1:15:41:5a:7d:cb:a2:c8:4b:a6:87:
67:42:b2:2d:31:6c:a9:73:1f:1c:6b:95:ef:7f:49:4d:38:b6:
72:4a:7f:3c:66:3c:15:ef:1c:89:73:4a:ea:cf:b0:8c:41:58:
78:8d:39:5c:50:09:d6:35:6f:a8:94:ab:00:04:4a:54:b4:bf:
48:5b:29:45:fb:b4:1e:2e:ca:8a:1e:cd:e2:13:c9:ad:a3:94:
5c:89:1c:98:8a:97:e0:fc:8a:97:00:b7:5d:4b:fc:4f:b1:09:
6b:b9:cb:65:69:db:28:16:0a:3d:62:47:e0:39:4d:b8:d3:53:
2e:76:4d:a1:4f:59:c3:c6:17:b6:76:63:e0:5f:bb:8a:ec:54:
92:e3:0c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:28 2025 by rpki-client