Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e203530313034.roa
File: 3130332e3131382e3137352e302f32342d3234203d3e203530313034.roa (raw, json)
Hash identifier: 0f2PA52uub2AIW3HVhP+kRWDT2sjTpqTW3vdzs5HzME=
Subject key identifier: 2D:53:FA:08:8A:6C:96:35:8E:FB:DD:39:39:8A:8C:E0:3E:34:F9:74
Certificate issuer: /CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3
Certificate serial: 6FF2280BA2B1D3B22965BEBF5DCD53593C154A01
Authority key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e203530313034.roa
Signing time: Tue 25 Feb 2025 03:00:00 +0000
ROA not before: Tue 25 Feb 2025 02:55:00 +0000
ROA not after: Tue 24 Feb 2026 03:00:00 +0000
asID: 50104
IP address blocks: 103.118.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:f2:28:0b:a2:b1:d3:b2:29:65:be:bf:5d:cd:53:59:3c:15:4a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3
Validity
Not Before: Feb 25 02:55:00 2025 GMT
Not After : Feb 24 03:00:00 2026 GMT
Subject: CN=2D53FA088A6C96358EFBDD39398A8CE03E34F974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a2:e6:4e:74:44:19:de:a0:59:3f:f7:b3:c0:
d9:f0:1a:ba:7b:04:70:3f:ac:c9:14:74:aa:14:83:
30:d1:7a:df:3f:75:39:f3:9a:1b:89:e2:b3:c0:45:
21:f7:87:ba:ca:a6:ba:27:61:d4:f5:b7:a6:f6:cb:
d9:05:21:a0:53:cf:23:47:86:17:2b:88:4c:2e:7b:
c9:95:84:ed:01:96:a3:3f:d2:6d:31:1f:75:0b:c1:
56:33:63:4a:38:72:5f:8a:f6:44:c3:5e:24:1e:32:
99:89:fe:b5:f8:6c:4e:82:8f:76:f2:1d:eb:c5:28:
8b:c3:66:3f:24:65:5f:9c:15:0c:97:9f:12:92:9f:
ae:ba:e9:70:6c:e1:d1:7c:f9:ff:bd:45:b7:bb:48:
12:f1:0e:04:4a:5e:78:29:ac:5e:f9:35:0c:12:7b:
e4:97:a4:c2:a3:f3:4d:f4:e5:8f:18:96:dd:58:72:
54:58:fb:f6:32:c1:5b:0a:12:bf:6f:4d:9a:d3:e3:
66:d4:d1:6e:66:dd:f7:4c:b6:8d:b9:2f:e9:39:66:
49:17:8a:f9:15:16:51:fb:19:9f:99:ed:8b:3e:36:
92:c3:98:cb:57:e3:bd:76:44:38:18:2f:e5:e9:13:
4a:e7:f4:79:0c:d4:43:42:20:30:52:63:d0:c8:94:
59:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:53:FA:08:8A:6C:96:35:8E:FB:DD:39:39:8A:8C:E0:3E:34:F9:74
X509v3 Authority Key Identifier:
keyid:DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/3130332e3131382e3137352e302f32342d3234203d3e203530313034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.118.175.0/24
Signature Algorithm: sha256WithRSAEncryption
91:df:b0:10:78:fa:ff:56:b6:0c:b1:7b:f3:4a:c4:62:12:a5:
f3:01:e0:46:09:35:54:81:91:76:52:86:11:41:3d:96:d0:41:
1a:71:a7:99:31:46:fd:75:72:cc:90:d3:02:52:a2:38:4b:25:
34:a5:28:53:15:59:d4:07:ac:27:96:db:b2:ff:ff:0d:f3:a6:
5c:39:07:be:e5:66:52:50:2e:71:df:d7:7b:c3:3a:9c:fb:aa:
d5:91:4f:75:79:e3:56:71:db:21:c7:41:73:2e:c1:12:81:c1:
6e:82:98:b9:cc:af:a9:b2:ed:b8:3a:43:45:c4:e7:0f:d4:71:
44:b5:7e:f2:82:02:9f:e9:dd:9a:88:11:a4:57:95:67:a2:e3:
97:23:24:ff:7e:17:00:c1:e9:92:89:37:04:e6:55:a6:2c:e9:
31:31:b4:36:e8:b9:65:25:32:b2:a7:e1:74:4e:31:e2:c1:6e:
a7:48:6c:03:bd:b0:47:88:89:45:9d:0e:c1:2b:f1:22:b0:b4:
44:67:3b:a5:0c:29:35:12:44:00:9d:bb:ea:39:7c:fc:9f:92:
ec:b0:56:d3:b7:25:65:95:77:e1:12:a0:63:c2:73:b1:39:06:
51:2b:bd:0d:fe:71:59:55:cf:e1:ce:00:22:bf:0e:d8:2d:ff:
77:53:11:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:10:07 2025 by rpki-client