Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1b64d8c1-c714-4592-8fc5-e392ebff1e98/0/3130332e31382e34342e302f32332d3234203d3e20313530323735.roa
File: 3130332e31382e34342e302f32332d3234203d3e20313530323735.roa (raw, json)
Hash identifier: RSNgNbSzLZiojBETEw59kurATLLfVv4/u1yb/5OrU2I=
Subject key identifier: 24:74:CC:01:30:D9:9D:EF:E1:62:4B:B9:83:83:BB:26:57:48:AC:19
Certificate issuer: /CN=A6A73303D7FB4B926766F1EA71A883290C724BC9
Certificate serial: 1BE659E2E3828C6DDE9F455111623A104C7B0BBA
Authority key identifier: A6:A7:33:03:D7:FB:4B:92:67:66:F1:EA:71:A8:83:29:0C:72:4B:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6A73303D7FB4B926766F1EA71A883290C724BC9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1b64d8c1-c714-4592-8fc5-e392ebff1e98/0/3130332e31382e34342e302f32332d3234203d3e20313530323735.roa
Signing time: Tue 11 Feb 2025 07:00:02 +0000
ROA not before: Tue 11 Feb 2025 06:55:02 +0000
ROA not after: Tue 10 Feb 2026 07:00:02 +0000
asID: 150275
IP address blocks: 103.18.44.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:e6:59:e2:e3:82:8c:6d:de:9f:45:51:11:62:3a:10:4c:7b:0b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6A73303D7FB4B926766F1EA71A883290C724BC9
Validity
Not Before: Feb 11 06:55:02 2025 GMT
Not After : Feb 10 07:00:02 2026 GMT
Subject: CN=2474CC0130D99DEFE1624BB98383BB265748AC19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cc:04:d0:7b:a3:a7:8e:de:70:83:46:0d:a6:
0f:1e:7b:16:72:2d:5a:27:03:8c:20:9a:ae:5e:c7:
d2:8b:9e:61:06:e6:b6:19:e1:fd:f8:3a:b2:b5:b8:
79:e0:c0:3e:d4:ab:9c:71:04:b1:f3:53:cb:71:c9:
3c:30:c9:0a:bc:77:35:cd:22:03:c5:59:a3:4b:dc:
a2:35:a8:c2:cd:59:a6:36:6f:2a:57:6d:1f:86:c2:
a9:da:27:c7:83:b9:c8:e4:01:09:82:1c:3c:db:1a:
f4:eb:13:b8:36:e0:0d:4b:5e:53:ed:eb:79:52:88:
3b:3c:f4:3a:83:20:4e:66:14:56:03:5b:e4:9e:4b:
31:2b:75:df:6d:91:97:cc:9f:d8:c1:b9:dc:10:b0:
75:d5:91:d1:0b:34:51:f5:82:da:55:39:99:49:49:
a5:34:27:bd:84:2a:40:df:c7:9e:81:d6:3c:9a:a0:
1c:f4:83:5d:17:9a:2a:98:74:42:8f:50:0c:dd:59:
f8:5c:d2:2d:6e:bc:28:f4:43:de:64:26:80:47:31:
d0:ca:e6:40:a8:b7:c3:0a:10:db:06:5b:b7:19:08:
4b:6a:18:4c:ce:71:f8:7c:fe:67:9f:c0:ab:58:42:
7f:15:9e:26:41:58:3b:42:f6:98:03:ab:39:9a:b6:
32:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:74:CC:01:30:D9:9D:EF:E1:62:4B:B9:83:83:BB:26:57:48:AC:19
X509v3 Authority Key Identifier:
keyid:A6:A7:33:03:D7:FB:4B:92:67:66:F1:EA:71:A8:83:29:0C:72:4B:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1b64d8c1-c714-4592-8fc5-e392ebff1e98/0/A6A73303D7FB4B926766F1EA71A883290C724BC9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6A73303D7FB4B926766F1EA71A883290C724BC9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b64d8c1-c714-4592-8fc5-e392ebff1e98/0/3130332e31382e34342e302f32332d3234203d3e20313530323735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.18.44.0/23
Signature Algorithm: sha256WithRSAEncryption
94:c6:e6:1b:fe:03:e5:26:4c:ba:c6:29:ef:d1:da:20:50:1f:
04:39:a5:7f:eb:01:70:aa:53:08:76:dc:99:0b:a6:aa:30:49:
45:3b:9b:27:74:e4:2b:80:2b:74:82:31:e9:22:f4:a1:cb:7c:
3d:29:77:c5:bc:ae:1a:74:70:c9:5e:a5:b2:2e:14:f6:66:b6:
94:4a:55:20:77:59:8d:f3:a6:89:ed:2a:71:6a:5f:8f:c2:d2:
d2:f1:e7:d5:5e:9f:a0:c1:9e:2d:0e:e1:52:dd:1c:33:5c:7e:
17:5e:de:a3:dc:e4:2b:16:d4:9c:5a:44:12:c7:9c:34:2a:c2:
9b:91:7b:15:64:34:2b:e6:44:da:de:40:d3:89:45:ae:16:5d:
d5:58:be:03:e1:4e:91:28:50:2d:d4:6f:30:cb:22:65:43:37:
a7:ba:df:00:24:d4:44:55:de:2b:31:58:d7:0d:73:cc:fd:dd:
b6:60:db:cb:40:60:ac:1b:75:6a:13:4d:70:4f:ee:d1:cb:e8:
92:59:80:55:ad:66:8e:65:6d:e4:61:65:3a:9a:53:e6:41:49:
44:d5:d5:a3:ce:8b:2c:52:96:ee:1b:19:f0:fc:ba:dd:96:f1:
de:db:9c:0a:bd:6e:c4:61:fd:23:a6:bd:cc:b4:d9:c3:1c:93:
60:25:ba:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:02:38 2025 by rpki-client