Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2312a146-f954-47e3-b93f-92c2fe6d89ea/0/3130332e3132322e302e302f32332d3234203d3e20313335343737.roa
File: 3130332e3132322e302e302f32332d3234203d3e20313335343737.roa (raw, json)
Hash identifier: 0dxD7I8rMeBsoy/bZAItegSvjuCOP4VyKJVgOZz4NLU=
Subject key identifier: 67:B4:4F:70:EF:0A:C7:B1:E3:C0:27:A9:06:0E:5D:C2:7F:95:29:20
Certificate issuer: /CN=EBDA939B37F36E8A9F581B1036E01C32F1F3D9DF
Certificate serial: 65A9CAB200A8C27DB891BACCD0077395042B095C
Authority key identifier: EB:DA:93:9B:37:F3:6E:8A:9F:58:1B:10:36:E0:1C:32:F1:F3:D9:DF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBDA939B37F36E8A9F581B1036E01C32F1F3D9DF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2312a146-f954-47e3-b93f-92c2fe6d89ea/0/3130332e3132322e302e302f32332d3234203d3e20313335343737.roa
Signing time: Fri 31 Jan 2025 15:00:01 +0000
ROA not before: Fri 31 Jan 2025 14:55:01 +0000
ROA not after: Fri 30 Jan 2026 15:00:01 +0000
asID: 135477
IP address blocks: 103.122.0.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:a9:ca:b2:00:a8:c2:7d:b8:91:ba:cc:d0:07:73:95:04:2b:09:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EBDA939B37F36E8A9F581B1036E01C32F1F3D9DF
Validity
Not Before: Jan 31 14:55:01 2025 GMT
Not After : Jan 30 15:00:01 2026 GMT
Subject: CN=67B44F70EF0AC7B1E3C027A9060E5DC27F952920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:05:44:8c:b6:40:01:1f:cc:2b:f9:c2:83:c3:
c8:15:c9:30:59:22:10:af:62:13:db:86:63:39:3a:
89:e0:a5:79:76:32:6f:8a:ab:4f:7b:ae:1c:fd:41:
33:e3:1e:1a:2f:72:be:b8:2a:c8:06:91:b1:48:fd:
7a:9c:af:b0:6b:67:eb:0b:69:d4:cb:e7:d4:e7:47:
99:d7:7c:06:86:84:b9:9d:5b:27:d5:5a:9e:82:2f:
d9:33:15:0f:56:fe:34:40:84:b7:ce:a4:fa:fa:69:
43:f6:c6:00:77:12:86:6e:51:2f:b5:e0:25:b5:81:
9f:d1:98:55:6f:60:f0:9f:e3:ee:f0:47:ee:bd:b8:
62:63:74:ff:3d:c3:1f:3e:8b:95:e8:d3:a0:1c:d9:
72:2f:b8:e9:dd:73:4c:2b:a3:d8:3b:38:52:ac:7c:
d1:ab:1a:22:92:70:ee:77:14:15:6c:56:c4:3d:59:
0c:80:92:73:d1:95:a8:c3:bb:b0:69:f3:9f:01:87:
ed:a0:a7:35:50:b5:3c:cf:3d:d4:45:9e:e2:07:b2:
73:e3:a5:f4:28:a8:ac:d2:44:53:8c:3e:bb:3e:0d:
34:ac:5d:7d:96:07:34:8a:28:8d:bc:30:ea:dc:2d:
51:0c:ec:81:29:8b:e7:4a:e6:25:80:99:58:1b:cf:
f0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:B4:4F:70:EF:0A:C7:B1:E3:C0:27:A9:06:0E:5D:C2:7F:95:29:20
X509v3 Authority Key Identifier:
keyid:EB:DA:93:9B:37:F3:6E:8A:9F:58:1B:10:36:E0:1C:32:F1:F3:D9:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2312a146-f954-47e3-b93f-92c2fe6d89ea/0/EBDA939B37F36E8A9F581B1036E01C32F1F3D9DF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBDA939B37F36E8A9F581B1036E01C32F1F3D9DF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2312a146-f954-47e3-b93f-92c2fe6d89ea/0/3130332e3132322e302e302f32332d3234203d3e20313335343737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.122.0.0/23
Signature Algorithm: sha256WithRSAEncryption
24:1d:cc:22:0d:85:4f:75:3c:d9:7b:a5:71:c5:a4:c4:40:59:
9e:09:db:74:85:d5:8a:aa:ae:42:0d:05:cc:7b:e6:27:c1:2b:
75:bf:ce:69:0c:11:4c:54:d6:cc:ba:7f:c4:50:9e:a6:b6:65:
7d:bd:1e:18:cd:e3:49:4c:43:f8:ad:86:0f:b5:bd:63:0d:86:
89:6c:7b:80:47:b2:bc:2b:43:38:5b:9f:c5:df:11:3e:bc:01:
81:be:83:a6:b3:e6:17:15:a5:96:db:bd:18:90:85:db:90:b8:
11:5b:61:35:d4:c2:09:9b:71:d5:52:4b:d6:78:37:d0:b7:8d:
3d:b0:6f:bb:45:5e:e0:b9:9c:3f:57:bd:d3:e5:f0:9c:7d:f5:
ed:51:41:a0:18:f0:e0:fb:56:f9:5e:0d:b7:2e:c8:4a:b3:1d:
6a:4a:c8:8e:2d:2d:02:df:ef:0e:f1:89:fc:90:62:b9:8d:bf:
f7:89:12:8e:ca:c6:99:11:ca:f1:34:d2:97:5d:c5:76:cd:b0:
dd:1c:2c:1d:9d:15:d2:07:6e:1f:c3:47:38:b4:9f:5a:2a:8a:
0a:66:99:13:25:51:3f:0f:4c:cb:37:c4:c0:25:26:df:c5:d7:
c3:f1:b5:dd:50:6f:15:01:02:55:98:07:b6:e4:88:fb:fa:55:
88:ab:9c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:04:07 2025 by rpki-client