Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa
File: 3130332e3234372e32322e302f32342d3234203d3e203538343835.roa (raw, json)
Hash identifier: saNY2uHlV/XnejqjSZTyfzI/prOYKq0PQeW13/pFt9k=
Subject key identifier: 32:6F:22:7A:CC:77:EF:9F:02:9E:65:BD:C1:B7:92:83:93:DC:02:79
Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39
Certificate serial: 2CA73F3FA4CBB6D7910F0662CD2836DD017F6A48
Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa
Signing time: Sun 09 Mar 2025 05:35:55 +0000
ROA not before: Sun 09 Mar 2025 05:30:55 +0000
ROA not after: Sun 08 Mar 2026 05:35:55 +0000
asID: 58485
IP address blocks: 103.247.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:a7:3f:3f:a4:cb:b6:d7:91:0f:06:62:cd:28:36:dd:01:7f:6a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39
Validity
Not Before: Mar 9 05:30:55 2025 GMT
Not After : Mar 8 05:35:55 2026 GMT
Subject: CN=326F227ACC77EF9F029E65BDC1B7928393DC0279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e9:d0:7b:e3:b3:ee:90:59:cc:fc:87:53:50:
2d:ab:1b:31:ac:c5:fc:29:9b:82:12:19:95:8f:b2:
dd:85:de:0d:5f:d5:f6:8f:ec:c9:76:25:d5:99:ec:
65:05:49:a0:11:cd:0c:e4:c4:49:31:c1:dc:81:25:
f1:81:91:dd:00:53:9b:06:d7:cd:6c:e0:3f:6d:1a:
65:45:03:45:2c:50:67:bc:8a:06:19:b4:ea:5e:34:
66:f9:6f:fa:3f:ce:b1:a7:b9:a1:f4:35:f5:b8:d6:
31:1a:00:c7:3b:26:24:68:07:d9:4e:8d:f0:24:54:
cd:9f:94:02:86:90:83:d7:f3:1a:3c:01:d6:f9:8c:
4c:9c:43:76:28:54:ca:3b:72:45:f1:97:ed:41:cb:
56:5e:7b:30:dd:03:67:fe:4e:de:c2:2a:2d:55:44:
e5:74:5e:ab:25:aa:29:00:5b:c2:4a:93:22:e1:b8:
0d:4d:3f:33:fc:8e:20:db:da:eb:f5:8d:9c:fa:6f:
92:b8:ba:08:5a:e0:6f:c7:3e:30:81:24:21:d0:da:
b2:a6:1c:dc:18:7f:cb:74:55:f1:c3:f8:61:0d:8b:
94:f3:a6:62:1e:5c:75:a9:e6:77:8b:96:18:4a:49:
26:32:4b:ed:6c:ee:f8:87:45:d9:ed:6a:d5:e6:69:
40:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6F:22:7A:CC:77:EF:9F:02:9E:65:BD:C1:B7:92:83:93:DC:02:79
X509v3 Authority Key Identifier:
keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.22.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:c8:36:9e:47:e9:62:07:ff:08:d5:aa:f5:1c:09:bc:87:c6:
3b:25:a8:11:06:41:74:25:bc:57:32:38:a1:96:49:e0:45:dd:
02:4d:e7:7a:5b:a4:0a:01:da:6b:2c:ae:52:14:d2:43:39:2e:
e4:2c:29:ae:f2:c2:57:34:a5:51:04:b1:e6:1c:8d:89:8e:ef:
90:5e:8a:d5:65:fe:58:f1:84:89:9e:ef:48:26:6d:0e:8b:c9:
0a:ac:0e:52:6b:65:e5:eb:90:29:89:3c:6b:93:50:e7:41:91:
34:9b:47:ff:7a:ed:c4:02:b0:47:8c:41:a8:56:d1:dd:40:9a:
43:ce:7c:65:87:cb:28:24:82:ad:d0:d2:68:a6:06:fd:c6:97:
e6:53:85:44:79:b9:49:b7:ca:10:93:eb:c8:1b:81:69:d3:e1:
e0:9d:ed:59:17:2d:09:f8:b2:85:e6:99:fb:df:dc:4d:8b:62:
4b:37:40:97:90:66:3b:32:af:18:45:f7:e4:d7:aa:f7:9d:28:
91:7b:54:7d:a2:3b:6b:b5:14:73:8d:b4:cc:1f:83:c9:64:63:
6e:ac:42:dc:c4:16:6e:bc:d3:7e:e7:83:c2:a4:aa:d3:52:7b:
8d:f4:f7:2b:88:75:b1:53:43:bf:69:eb:40:1c:e4:eb:e7:01:
0d:ad:72:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:27:48 2025 by rpki-client