Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/3130332e34392e35312e302f32342d3234203d3e20313530343830.roa
File: 3130332e34392e35312e302f32342d3234203d3e20313530343830.roa (raw, json)
Hash identifier: bai8drpp5Ou2lflIGmVUiQ7O559qS/qew2SdTRLBcyQ=
Subject key identifier: DD:83:B4:5C:AD:44:49:9B:0A:22:01:45:F2:51:8D:D2:CF:F0:F3:61
Certificate issuer: /CN=722D23AD0F959CE5CBFF927C152517F07060D195
Certificate serial: 18014E0573D68EFA1D1D2DD6477C3F1B52945DC0
Authority key identifier: 72:2D:23:AD:0F:95:9C:E5:CB:FF:92:7C:15:25:17:F0:70:60:D1:95
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/722D23AD0F959CE5CBFF927C152517F07060D195.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/3130332e34392e35312e302f32342d3234203d3e20313530343830.roa
Signing time: Fri 28 Feb 2025 07:00:00 +0000
ROA not before: Fri 28 Feb 2025 06:55:00 +0000
ROA not after: Fri 27 Feb 2026 07:00:00 +0000
asID: 150480
IP address blocks: 103.49.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:01:4e:05:73:d6:8e:fa:1d:1d:2d:d6:47:7c:3f:1b:52:94:5d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722D23AD0F959CE5CBFF927C152517F07060D195
Validity
Not Before: Feb 28 06:55:00 2025 GMT
Not After : Feb 27 07:00:00 2026 GMT
Subject: CN=DD83B45CAD44499B0A220145F2518DD2CFF0F361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:05:c3:01:9b:e2:5e:e9:ea:cc:d3:8c:e4:33:
8e:e3:47:be:a8:5c:8a:b7:5d:eb:77:99:79:bc:4e:
a7:68:8f:7e:05:7a:e4:1b:a4:7e:60:2b:20:7a:07:
73:36:38:49:43:a2:6a:ae:3f:d9:b7:72:2e:56:15:
61:a8:bf:87:bc:a0:51:47:0c:4c:e7:7b:da:2b:b0:
d9:e8:bc:8a:0d:92:2e:88:af:e1:1a:1c:97:81:83:
26:6b:40:28:7f:e5:4c:45:a5:4a:8f:c4:b0:02:95:
dd:19:cc:78:16:d6:67:fb:81:0a:b8:22:96:7a:e2:
ce:ca:f4:dd:2a:4d:31:5a:12:d3:8a:86:08:34:4c:
5d:43:48:9f:23:ea:d5:26:3a:b9:bd:20:73:d0:a3:
a2:5b:8d:0e:00:0a:01:dd:1f:bb:44:c9:0a:52:c3:
0e:f2:88:b4:f9:f9:54:81:a9:58:65:e7:d2:d9:7d:
66:94:6a:2c:c5:40:19:e9:f7:ad:03:bd:7c:40:43:
ba:da:cc:e5:ce:77:49:53:40:14:7d:2e:f8:9d:4e:
19:99:52:a2:1c:80:47:cb:fa:4f:42:1a:ca:96:fe:
e0:ac:77:83:d7:6b:d7:88:50:3e:12:6e:3e:b5:e3:
0e:1b:ac:fd:5b:dc:c4:78:79:2c:77:0e:fe:d9:4a:
b2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:83:B4:5C:AD:44:49:9B:0A:22:01:45:F2:51:8D:D2:CF:F0:F3:61
X509v3 Authority Key Identifier:
keyid:72:2D:23:AD:0F:95:9C:E5:CB:FF:92:7C:15:25:17:F0:70:60:D1:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/722D23AD0F959CE5CBFF927C152517F07060D195.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/722D23AD0F959CE5CBFF927C152517F07060D195.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ce8da9c-bdbd-4908-ba92-d90fea9c8f05/0/3130332e34392e35312e302f32342d3234203d3e20313530343830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.49.51.0/24
Signature Algorithm: sha256WithRSAEncryption
94:37:5d:83:1b:67:08:c1:aa:f6:8c:b4:8f:75:fe:24:a7:4c:
08:8a:c7:d6:2d:21:08:70:bd:de:bf:4b:ad:09:da:41:42:24:
e9:0f:10:b0:a9:46:90:77:8a:fd:0c:49:8c:51:84:84:4e:0f:
d0:05:bd:87:48:da:29:8d:a6:62:5b:62:45:d7:1e:29:d0:97:
96:bd:c9:9d:25:ca:0a:bb:d3:ea:69:53:14:37:3a:94:a7:70:
6a:86:37:6d:95:07:2c:8d:47:24:8b:5c:f3:a7:0d:4e:71:9e:
1d:95:ef:63:89:70:c7:ad:54:46:8c:a6:15:d4:ea:95:9c:79:
9f:df:43:4d:43:7c:f6:7b:47:d8:b3:8a:12:26:6d:1f:62:c7:
a1:3d:94:84:a5:eb:fa:b2:8d:87:0b:54:00:01:74:ea:60:6a:
6f:2c:e5:ec:31:67:e0:cf:41:27:7d:45:16:00:11:4d:51:25:
53:c0:a9:d2:bf:30:4e:a1:b0:21:c2:5a:83:f0:68:96:cf:b9:
20:f5:72:0d:58:8b:a1:87:7c:f3:02:0c:02:0e:d1:cf:70:2c:
95:39:0a:83:b8:da:38:60:6f:5a:2d:4f:c5:20:e8:79:67:b8:
af:20:52:0b:94:7b:92:cc:a8:2e:9b:4a:57:97:03:eb:51:dd:
3c:89:71:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:44:05 2025 by rpki-client