Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130392e302f32342d3234203d3e203633343838.roa
File: 3130332e3233332e3130392e302f32342d3234203d3e203633343838.roa (raw, json)
Hash identifier: GdSTW/OHYTEI/PWuMmTToeVUXPmcixtoxCsRQug+8zk=
Subject key identifier: B6:B7:14:EB:BC:C1:C6:44:27:34:BB:FC:60:43:7F:28:A5:94:B9:70
Certificate issuer: /CN=4A4CC1D625A4519B23D73717C879F10A6173AEAB
Certificate serial: 1EC07BC955C3404A68C96AB51EF34D4F0A5FE2A5
Authority key identifier: 4A:4C:C1:D6:25:A4:51:9B:23:D7:37:17:C8:79:F1:0A:61:73:AE:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A4CC1D625A4519B23D73717C879F10A6173AEAB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130392e302f32342d3234203d3e203633343838.roa
Signing time: Mon 17 Mar 2025 03:00:01 +0000
ROA not before: Mon 17 Mar 2025 02:55:01 +0000
ROA not after: Mon 16 Mar 2026 03:00:01 +0000
asID: 63488
IP address blocks: 103.233.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:c0:7b:c9:55:c3:40:4a:68:c9:6a:b5:1e:f3:4d:4f:0a:5f:e2:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A4CC1D625A4519B23D73717C879F10A6173AEAB
Validity
Not Before: Mar 17 02:55:01 2025 GMT
Not After : Mar 16 03:00:01 2026 GMT
Subject: CN=B6B714EBBCC1C6442734BBFC60437F28A594B970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bb:14:de:08:c6:23:a3:1c:96:da:7b:41:30:
3d:61:df:96:28:d3:51:ca:9d:4d:4b:74:d7:31:69:
d1:3d:3e:58:ec:8b:ca:50:50:74:67:c4:be:0a:fc:
21:6e:79:13:60:10:d1:fe:88:f1:84:70:f3:f0:8c:
46:2b:ad:c8:d0:3c:f8:17:2d:e9:14:0e:ae:99:38:
8c:c1:b4:73:e1:f6:2a:77:7d:5f:ff:33:20:6c:3b:
49:74:92:83:25:84:0c:53:72:29:93:e5:ab:32:37:
bb:2a:5a:b2:cb:db:89:43:45:63:55:e8:79:6a:fb:
87:f7:a8:84:a8:d4:84:45:1a:32:8a:91:94:a7:0c:
24:6c:dd:44:d7:7c:b9:ad:84:59:cf:b1:ce:a3:5e:
d0:ad:61:6d:1b:27:e6:cf:bd:b9:fe:25:3b:8a:32:
cc:02:c0:c9:9f:29:17:40:58:46:2c:b8:63:95:b3:
6d:c4:0a:7c:85:6b:eb:7d:a9:a3:28:28:3d:6a:51:
5d:93:f0:c2:5d:93:33:3d:eb:c4:03:b4:ac:35:6e:
86:99:51:4f:12:0e:73:9b:4a:82:1b:46:50:5d:30:
f6:c7:18:34:5b:77:12:d4:b6:ad:32:b6:dc:b4:07:
b5:32:d1:d8:17:eb:72:1f:51:5c:02:e0:38:90:93:
5c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B7:14:EB:BC:C1:C6:44:27:34:BB:FC:60:43:7F:28:A5:94:B9:70
X509v3 Authority Key Identifier:
keyid:4A:4C:C1:D6:25:A4:51:9B:23:D7:37:17:C8:79:F1:0A:61:73:AE:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/4A4CC1D625A4519B23D73717C879F10A6173AEAB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A4CC1D625A4519B23D73717C879F10A6173AEAB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ed46f82-cf11-4e32-b051-6ac334a92622/0/3130332e3233332e3130392e302f32342d3234203d3e203633343838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.233.109.0/24
Signature Algorithm: sha256WithRSAEncryption
33:59:e4:c0:96:73:99:b4:5e:8a:48:ff:85:d3:92:13:31:e6:
9b:a7:ad:b4:e6:f4:2c:53:09:5e:02:55:fb:cb:1e:07:5f:d8:
5a:85:09:b9:da:99:2b:7a:90:b5:ae:b6:83:d3:dc:64:ed:f8:
8c:c3:a2:09:cd:fa:15:4d:39:a8:4e:7a:55:30:ad:4e:67:50:
c6:e4:e1:69:01:95:04:d5:8a:f2:3e:90:e3:93:49:9a:87:9c:
c0:96:4c:be:13:44:26:05:53:58:02:5a:b4:db:ff:8f:77:a6:
2c:f2:a0:8d:a1:fc:29:cd:ab:e1:73:28:e6:55:01:c8:a6:f2:
e5:a9:e6:9b:16:57:27:80:83:19:27:6d:63:ae:41:1e:26:0c:
64:e2:ea:f7:e1:20:fa:c1:31:34:05:63:81:88:c2:46:72:d5:
ec:f1:14:8b:44:88:61:d1:c9:76:df:bb:ef:f2:fb:81:2f:47:
37:43:ec:e4:ea:25:07:35:ee:89:cd:90:0f:6f:b9:66:1a:31:
de:dc:2b:a3:8e:63:70:ce:08:50:5f:d8:a7:a3:d1:3f:da:bd:
37:ed:8d:51:32:b4:2d:e7:33:53:d3:a2:30:79:2e:5e:4c:56:
10:04:03:47:4e:7c:22:ca:23:39:73:de:a8:0a:22:d1:73:49:
1e:18:33:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:44:39 2025 by rpki-client