Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234342e302f32342d3234203d3e20313331373733.roa
File: 3130332e3133342e3234342e302f32342d3234203d3e20313331373733.roa (raw, json)
Hash identifier: 5Bf2jikCN3gYWsYKhxSa01VhTxjotLPuadtMQJAAO+A=
Subject key identifier: C8:1B:2F:D4:E8:F5:91:0C:E7:1A:11:31:6B:D4:A7:6F:E4:E8:D9:B4
Certificate issuer: /CN=37EECBD045CA279ED50372AC86831099D2FD896F
Certificate serial: 5860D282385B89AEBEBC15DEF3670B2CBA5E2213
Authority key identifier: 37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234342e302f32342d3234203d3e20313331373733.roa
Signing time: Thu 06 Mar 2025 09:01:35 +0000
ROA not before: Thu 06 Mar 2025 08:56:35 +0000
ROA not after: Thu 05 Mar 2026 09:01:35 +0000
asID: 131773
IP address blocks: 103.134.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:60:d2:82:38:5b:89:ae:be:bc:15:de:f3:67:0b:2c:ba:5e:22:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37EECBD045CA279ED50372AC86831099D2FD896F
Validity
Not Before: Mar 6 08:56:35 2025 GMT
Not After : Mar 5 09:01:35 2026 GMT
Subject: CN=C81B2FD4E8F5910CE71A11316BD4A76FE4E8D9B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b2:eb:95:a3:98:08:52:bd:0c:b9:44:98:bb:
8f:75:4f:9a:3d:4d:d7:8a:97:14:87:dd:ec:57:b9:
02:f8:ff:d6:43:86:b1:23:c8:97:db:28:85:70:d0:
a9:27:84:26:a1:58:3a:58:d1:ed:01:f1:f6:1d:4a:
54:33:fe:a1:8e:e6:d7:2c:eb:ab:af:3f:85:da:c2:
77:1a:74:f7:fb:d5:73:3f:6b:85:8d:c0:7b:5f:ac:
aa:7b:92:a2:ec:f0:e5:9e:59:98:5d:6f:39:58:ca:
4e:03:fa:10:df:5e:a6:1e:1b:ee:be:5d:28:61:b1:
08:0a:88:d5:8c:7e:7b:01:f4:14:e0:e9:11:5f:44:
39:7e:e9:86:d2:4e:6b:0d:ce:40:9e:84:ca:40:b4:
4f:10:cc:f5:46:d5:2b:a9:5f:e1:4e:e4:16:d8:86:
a1:30:46:7e:b4:10:df:7f:75:e0:bc:1d:dc:02:c7:
1e:22:9b:09:4a:60:6f:99:7b:b1:53:79:5f:03:7d:
0a:22:83:01:ca:0d:af:23:9e:9e:9b:3d:8f:fd:32:
cc:b6:16:7c:b3:1e:9e:98:4c:03:de:2e:ca:9d:64:
b2:8e:01:0d:a5:18:d8:b4:15:cb:ae:3f:ad:bf:72:
1e:75:d6:6e:b5:e7:78:3a:4c:d4:17:00:e0:cd:52:
dd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:1B:2F:D4:E8:F5:91:0C:E7:1A:11:31:6B:D4:A7:6F:E4:E8:D9:B4
X509v3 Authority Key Identifier:
keyid:37:EE:CB:D0:45:CA:27:9E:D5:03:72:AC:86:83:10:99:D2:FD:89:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/37EECBD045CA279ED50372AC86831099D2FD896F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37EECBD045CA279ED50372AC86831099D2FD896F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/227de071-3aaa-4e2e-974e-a78c81729f06/0/3130332e3133342e3234342e302f32342d3234203d3e20313331373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.134.244.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:55:4f:9d:33:2b:70:70:2f:63:3f:36:24:80:66:18:fd:28:
b4:9d:77:68:58:1e:6d:0d:8b:3a:4b:95:14:be:ef:a0:aa:d5:
12:70:65:de:97:8a:64:0a:78:dc:38:b8:90:67:19:85:33:86:
dc:44:f9:09:81:2b:b0:95:64:f6:4b:eb:3a:6e:a3:3f:e1:cd:
d3:87:50:3b:39:24:fb:ca:b0:e6:6e:d8:64:37:95:ea:7f:10:
dd:c7:f4:3e:ee:32:52:2b:c3:17:a4:05:39:d3:2f:a7:1d:b6:
b8:73:df:80:40:28:94:96:b6:06:47:25:2c:47:e1:e2:cd:58:
9d:5f:a0:54:3b:bb:89:6f:69:32:10:0a:d9:7f:e1:5e:f7:20:
cd:0e:33:f9:27:0d:5f:27:00:4e:72:8d:80:07:cb:84:66:2b:
e3:eb:e2:6d:cf:48:41:53:07:5a:63:e3:aa:95:fc:41:f6:ca:
a1:16:09:a1:e2:3f:8e:1a:d2:f4:47:20:05:03:34:9b:43:45:
56:28:65:f6:51:43:47:70:60:4e:e9:9e:35:a3:a9:92:61:6c:
05:85:7e:0c:da:1e:53:02:61:88:6f:fd:b3:d1:6d:bd:79:75:
1b:7b:7b:aa:d3:65:98:bb:ab:48:50:02:e9:e4:6a:23:78:9f:
39:0d:02:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:33 2025 by rpki-client