Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130382e302f32342d3234203d3e203633343838.roa
File: 3130332e3233332e3130382e302f32342d3234203d3e203633343838.roa (raw, json)
Hash identifier: NTu0pfg5O9FNTQVT/y9O87yuBsSqMNv0sxLjGwJCf2Y=
Subject key identifier: 36:BF:D1:A7:9D:8E:E8:E6:98:B8:29:D8:15:4D:B3:A3:07:90:32:59
Certificate issuer: /CN=4A4CC1D625A4519B23D73717C879F10A6173AEAB
Certificate serial: 652099917A0EA8787C291E383D8CE0C9B438DB64
Authority key identifier: 4A:4C:C1:D6:25:A4:51:9B:23:D7:37:17:C8:79:F1:0A:61:73:AE:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A4CC1D625A4519B23D73717C879F10A6173AEAB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130382e302f32342d3234203d3e203633343838.roa
Signing time: Mon 17 Mar 2025 03:00:02 +0000
ROA not before: Mon 17 Mar 2025 02:55:02 +0000
ROA not after: Mon 16 Mar 2026 03:00:02 +0000
asID: 63488
IP address blocks: 103.233.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:20:99:91:7a:0e:a8:78:7c:29:1e:38:3d:8c:e0:c9:b4:38:db:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A4CC1D625A4519B23D73717C879F10A6173AEAB
Validity
Not Before: Mar 17 02:55:02 2025 GMT
Not After : Mar 16 03:00:02 2026 GMT
Subject: CN=36BFD1A79D8EE8E698B829D8154DB3A307903259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f2:90:3e:e4:2f:b4:05:c8:6f:81:7c:b0:c6:
b2:f0:d2:af:dc:98:f6:b9:91:01:10:e0:b9:8a:13:
62:12:9c:eb:04:a3:5d:30:36:ed:4a:b9:b5:d2:7f:
11:c7:42:33:9f:ec:c5:4e:29:3c:1f:85:85:73:c8:
92:f2:04:6f:ae:fb:67:21:bf:a0:05:ba:80:8c:b4:
2c:df:0c:75:0a:08:0e:c4:e1:5f:5b:f3:db:e8:26:
99:0d:c0:4f:0b:9c:c0:a1:67:10:23:48:fb:3b:29:
bd:af:c6:b1:db:83:43:02:ff:db:64:c7:0a:ac:3f:
fd:96:b0:31:e8:40:b5:9a:d8:b7:af:83:ad:db:be:
74:2a:fc:97:f2:f3:4d:c7:c9:43:38:c5:9d:6d:28:
3c:5b:99:92:79:31:d8:8a:d5:c9:a9:71:1f:18:1f:
f6:0d:47:59:9a:52:1e:af:28:95:b5:f6:d5:28:04:
cb:02:78:53:db:16:00:3a:1b:33:8f:08:fa:28:87:
e1:a2:4c:07:14:6a:55:0d:61:c2:89:f9:6d:30:8d:
f8:d8:90:f9:fe:48:cd:fe:2b:18:75:1d:be:6b:89:
88:bb:88:57:99:e2:42:5e:8a:c7:cc:95:05:01:aa:
03:79:ab:40:49:31:97:13:5c:f1:18:f8:c1:3d:4c:
c7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:BF:D1:A7:9D:8E:E8:E6:98:B8:29:D8:15:4D:B3:A3:07:90:32:59
X509v3 Authority Key Identifier:
keyid:4A:4C:C1:D6:25:A4:51:9B:23:D7:37:17:C8:79:F1:0A:61:73:AE:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/4A4CC1D625A4519B23D73717C879F10A6173AEAB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A4CC1D625A4519B23D73717C879F10A6173AEAB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130382e302f32342d3234203d3e203633343838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.233.108.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:a1:bf:b4:95:64:29:da:0f:4d:b2:ff:54:66:86:e2:e6:d7:
b7:54:ce:b8:c5:26:57:56:a6:54:89:e0:79:bc:31:89:9c:35:
8b:ed:38:7c:e3:7c:9d:86:b5:44:d8:14:4d:a3:05:64:66:82:
7c:3c:e1:d3:d0:9e:84:06:f4:2f:66:3d:97:b7:08:e2:e7:0e:
88:b7:8a:65:40:b1:de:84:91:94:5f:49:54:a7:76:c8:02:38:
b1:1d:e4:fa:04:98:ea:68:9d:34:61:d2:2d:de:72:d8:ef:76:
17:42:e7:14:c6:9a:ce:80:57:d8:8d:ae:7d:29:ce:19:7b:e7:
cc:23:84:da:8a:90:01:60:e9:0a:67:c4:a0:af:5e:44:0d:ee:
56:5a:07:ca:c4:df:99:99:d8:9f:c3:f3:12:ab:65:fc:c8:70:
00:19:3c:01:e5:82:1b:92:ed:31:0d:d6:2c:fa:dc:8a:b3:2a:
06:90:d1:5f:15:f9:ed:ab:12:29:df:69:b9:1e:ad:e0:57:e4:
40:22:fb:bf:6c:a1:5c:33:13:76:89:d6:b8:95:f5:53:2b:b0:
15:99:52:1f:57:47:89:a5:b7:7e:29:37:c1:06:86:50:07:ef:
b1:60:37:8d:38:b8:e2:22:c3:97:bb:38:0d:00:55:80:9c:b3:
09:8c:ef:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:17:08 2025 by rpki-client