Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e20323130353337.roa
File: 3130332e3131382e3137352e302f32342d3234203d3e20323130353337.roa (raw, json)
Hash identifier: H9HoLlwsPZ7vWOyU7iY4WK1IEAYm6ZYFQe1/pX+yL6k=
Subject key identifier: 53:CD:2D:9B:35:AA:B7:D3:AA:50:72:D8:DE:0D:91:99:55:A7:44:3C
Certificate issuer: /CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3
Certificate serial: 756D7A987D11439C65B4AEB2824AC11A92899692
Authority key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e20323130353337.roa
Signing time: Tue 25 Feb 2025 05:00:00 +0000
ROA not before: Tue 25 Feb 2025 04:55:00 +0000
ROA not after: Tue 24 Feb 2026 05:00:00 +0000
asID: 210537
IP address blocks: 103.118.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:6d:7a:98:7d:11:43:9c:65:b4:ae:b2:82:4a:c1:1a:92:89:96:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3
Validity
Not Before: Feb 25 04:55:00 2025 GMT
Not After : Feb 24 05:00:00 2026 GMT
Subject: CN=53CD2D9B35AAB7D3AA5072D8DE0D919955A7443C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f3:74:bc:c9:a4:5a:e0:56:df:74:0e:22:c1:
f2:0d:a2:9f:1c:f8:8b:c1:21:b5:71:fe:d9:85:e7:
51:65:72:03:ae:94:70:f1:a0:de:92:ed:7a:fb:9c:
22:04:b8:35:14:77:f4:23:d8:45:f2:6a:43:62:94:
64:c1:5b:c8:ce:8e:e3:cb:8a:47:ed:a1:87:b9:e2:
c4:50:5c:42:c1:6a:2e:73:e5:77:1e:48:7b:fe:8f:
87:d8:86:39:8c:8c:e5:8e:d7:74:c6:ee:eb:aa:b6:
a9:82:df:72:a2:6d:01:fb:e3:89:50:17:3e:10:ed:
f6:d3:40:a3:f2:a4:78:c3:82:78:d9:16:43:c6:36:
51:c9:0c:c3:6c:0e:7e:40:60:ad:3d:68:fe:af:25:
5c:62:fd:5b:a9:16:13:c3:4a:69:0c:75:4e:c2:a9:
67:fe:d6:63:25:79:eb:92:1c:75:cf:45:82:1f:61:
1b:56:84:b8:3c:99:09:0c:d0:3c:ac:34:8e:52:e1:
f9:e3:84:19:d8:a4:34:b6:36:6d:b1:3e:7e:47:2e:
e0:e7:ac:d9:d6:26:7a:14:17:2b:03:d5:43:2e:86:
96:be:ac:c5:46:58:38:5b:b6:d4:71:63:8c:38:40:
1d:b2:81:9a:79:81:38:ba:aa:c3:6f:21:75:8f:d8:
7f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:CD:2D:9B:35:AA:B7:D3:AA:50:72:D8:DE:0D:91:99:55:A7:44:3C
X509v3 Authority Key Identifier:
keyid:DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e20323130353337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.118.175.0/24
Signature Algorithm: sha256WithRSAEncryption
77:61:1e:7d:85:2d:98:e0:07:b7:5f:99:f9:62:3a:cc:c3:eb:
a3:5b:84:43:58:69:b2:f5:79:12:b4:11:62:e1:fd:1f:a8:c8:
11:23:d4:c3:7a:7e:c2:55:6d:d5:b9:2b:7b:10:b6:bf:f7:4f:
9d:d7:e8:78:07:3c:61:f6:5e:0d:d8:91:70:4b:cb:c9:ec:a6:
fb:24:53:9c:a0:71:81:80:35:7e:c9:e3:ca:f4:9a:a0:94:42:
ec:02:11:8c:7f:b9:9a:01:96:3e:e4:33:be:c7:15:f7:90:20:
f8:6d:99:58:f9:79:72:d1:0c:01:75:59:ce:83:77:31:5d:09:
4b:c1:ed:23:10:fd:48:e5:6b:fc:16:18:54:e8:d0:c0:45:9b:
20:a2:35:2e:a1:1e:02:57:2c:cf:d7:2f:0e:4e:c7:d3:70:9b:
c0:53:fe:d2:40:5a:e8:e5:01:de:4f:ff:28:1e:6f:e0:96:07:
d1:44:29:86:2c:f3:1a:ce:61:c8:f5:20:b5:30:19:64:78:cb:
22:16:f3:c5:b2:16:21:74:f4:51:5c:dc:74:5b:ba:93:8c:0b:
c5:a3:3c:ad:d8:85:75:a6:9e:88:e6:1c:4d:a8:e7:fa:48:21:
cc:ae:99:93:d3:9e:be:c4:f8:8a:af:39:f9:68:d0:f3:d6:8b:
b0:d7:cc:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:00:49 2025 by rpki-client