Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/3130332e3131322e352e302f32342d3234203d3e20313332363639.roa
File: 3130332e3131322e352e302f32342d3234203d3e20313332363639.roa (raw, json)
Hash identifier: bZ83knFcAIH+x3MCllavMdUXghwNZQdIi5y8BOAPyxE=
Subject key identifier: C6:1D:DD:B1:0D:F2:EF:F1:50:2C:1E:CC:FB:7A:50:95:19:AE:44:84
Certificate issuer: /CN=0D0800F1516DA57BD9B9561FFA2A242AEB8F4853
Certificate serial: 2DCC2804BF5DBDD50505799DDCC7AA0212A9C670
Authority key identifier: 0D:08:00:F1:51:6D:A5:7B:D9:B9:56:1F:FA:2A:24:2A:EB:8F:48:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/3130332e3131322e352e302f32342d3234203d3e20313332363639.roa
Signing time: Tue 25 Feb 2025 09:00:00 +0000
ROA not before: Tue 25 Feb 2025 08:55:00 +0000
ROA not after: Tue 24 Feb 2026 09:00:00 +0000
asID: 132669
IP address blocks: 103.112.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:cc:28:04:bf:5d:bd:d5:05:05:79:9d:dc:c7:aa:02:12:a9:c6:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D0800F1516DA57BD9B9561FFA2A242AEB8F4853
Validity
Not Before: Feb 25 08:55:00 2025 GMT
Not After : Feb 24 09:00:00 2026 GMT
Subject: CN=C61DDDB10DF2EFF1502C1ECCFB7A509519AE4484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:94:32:b5:d1:a5:ae:b7:6e:2b:71:4c:98:c9:
7e:47:57:b1:41:15:5c:32:b0:90:28:31:ec:79:b9:
ff:a2:a8:ea:eb:c0:97:81:cb:7b:68:83:e6:09:c8:
f9:9c:95:a8:c3:47:b0:a7:6c:d3:ed:ed:0b:48:d5:
ed:b2:8a:86:af:1f:01:52:7f:d0:9d:3d:a7:77:6d:
f4:c4:aa:0b:ee:31:47:83:e2:82:e2:b3:f3:ec:97:
af:14:eb:68:03:fe:60:ee:f0:e9:9a:e9:f2:f2:76:
15:95:a0:22:88:ea:48:02:55:c3:01:29:97:95:1c:
bf:1f:c1:d6:78:67:6e:0f:f1:d2:e6:12:b5:2c:b8:
af:4f:ff:44:50:8d:a4:67:0e:14:00:84:95:54:b9:
b8:c7:d7:9b:c3:b9:fb:c1:d2:a5:83:2c:c4:b7:9c:
01:7b:53:99:d4:df:72:fc:4e:f2:ec:e0:f2:a6:68:
f0:7d:b8:35:a8:81:4a:32:4b:3b:8f:51:47:21:14:
46:3b:7a:7d:6e:c2:a1:7f:be:cf:fc:16:ef:4f:4a:
c7:36:05:14:43:4e:fc:62:b7:5d:c4:e9:88:17:dd:
9d:6e:56:b4:da:ad:e2:fd:c6:51:8f:75:13:4d:bf:
df:63:09:9c:4d:a9:3a:c3:76:0e:6f:8f:71:12:d5:
c2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:1D:DD:B1:0D:F2:EF:F1:50:2C:1E:CC:FB:7A:50:95:19:AE:44:84
X509v3 Authority Key Identifier:
keyid:0D:08:00:F1:51:6D:A5:7B:D9:B9:56:1F:FA:2A:24:2A:EB:8F:48:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D0800F1516DA57BD9B9561FFA2A242AEB8F4853.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/241bc3ec-86b8-4afb-8a8f-a0a86a4c29c6/0/3130332e3131322e352e302f32342d3234203d3e20313332363639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.112.5.0/24
Signature Algorithm: sha256WithRSAEncryption
36:3d:a1:b8:48:8c:c8:20:44:ab:68:20:d4:02:76:c9:64:36:
1c:1c:20:66:56:77:95:ae:77:6a:b9:61:c9:20:22:b2:92:1d:
86:bc:e5:e1:d8:46:46:ae:1c:4b:dd:a4:77:51:b4:10:3f:be:
cf:9a:ac:c7:0a:07:ca:86:53:18:97:1e:65:a3:3b:44:ed:ad:
fb:e4:ed:5c:1d:7b:6d:a4:58:53:be:f0:43:10:5c:ef:cb:31:
af:43:32:db:fd:71:cc:f3:78:f9:2a:18:ec:23:0f:00:38:3e:
e7:9c:dd:23:88:14:79:a2:aa:2b:7b:08:a9:ad:06:77:78:12:
21:60:55:a6:2a:8b:45:37:c0:a4:20:fc:6c:f0:4a:1c:1c:21:
e4:73:2f:99:8d:95:e4:5a:e3:17:4c:57:bf:0f:30:01:cf:ae:
81:1c:25:31:cd:0b:74:00:e5:c1:3e:a8:82:c7:81:c7:fe:58:
c5:f7:0f:a7:5a:e4:cd:74:a5:b6:06:84:62:29:70:ae:5a:9a:
93:70:42:97:b7:aa:0e:ce:b9:d3:95:35:68:f0:b9:95:28:4c:
7a:00:53:bd:db:2f:63:4c:55:bb:7c:a2:a0:ae:ef:04:c8:39:
7e:41:0e:cc:24:e0:96:5f:33:32:28:51:e7:7e:3c:23:2e:d5:
6c:1d:b3:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:33:12 2025 by rpki-client