Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa
File: 3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa (raw, json)
Hash identifier: 0+ulOJPEXxfRU9rDzPOyAhCIeStaBB8o7bfVtpS93+A=
Subject key identifier: 55:05:0E:6B:19:A7:FD:FC:01:B3:ED:90:0D:9C:6E:A6:35:E2:6B:A4
Certificate issuer: /CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F
Certificate serial: 210BC3CB32E89C823F2BEF2763E683B4E62D9BAE
Authority key identifier: E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa
Signing time: Tue 18 Mar 2025 10:00:02 +0000
ROA not before: Tue 18 Mar 2025 09:55:02 +0000
ROA not after: Tue 17 Mar 2026 10:00:02 +0000
asID: 141920
IP address blocks: 103.165.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:0b:c3:cb:32:e8:9c:82:3f:2b:ef:27:63:e6:83:b4:e6:2d:9b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F
Validity
Not Before: Mar 18 09:55:02 2025 GMT
Not After : Mar 17 10:00:02 2026 GMT
Subject: CN=55050E6B19A7FDFC01B3ED900D9C6EA635E26BA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:16:c4:ba:15:42:64:09:28:98:f1:d5:1e:6a:
7c:0c:95:4d:df:34:2b:28:09:08:a5:c1:d7:21:bd:
2b:9c:b5:fb:5f:da:65:02:ac:88:b8:4a:5d:99:d2:
26:97:14:29:ac:bd:ba:2e:19:c7:04:02:a2:af:81:
07:e0:fd:51:4c:63:f3:7b:31:1a:a5:ce:af:26:d9:
a9:09:01:a6:4e:80:62:ee:38:76:e8:38:85:62:5c:
37:7b:5c:f5:d4:4a:b0:12:16:bd:86:fe:65:a8:68:
63:62:af:9b:77:e7:9e:cc:76:64:84:af:45:8f:09:
64:13:0f:a2:3a:35:ac:58:cf:4f:fb:3d:b0:9b:f1:
6f:71:cc:5c:49:f6:1e:fa:f9:f2:ad:cb:f7:10:f4:
08:17:26:c1:ec:8a:d2:e0:4b:21:10:be:23:a4:d8:
21:18:ab:d9:b9:18:a3:0f:4c:b8:79:0f:8d:d3:b7:
71:14:63:1c:8f:16:b2:5a:45:15:69:74:9e:5d:0b:
36:6f:6a:a4:07:0c:ed:65:db:34:9b:8b:37:b6:9f:
30:60:1c:b0:ea:41:3f:d8:45:61:53:3e:c9:d0:e7:
44:f4:d5:e3:f4:c5:00:d1:fe:3a:ba:bc:26:65:44:
a1:a7:6f:60:4a:0b:28:01:c5:6a:0c:62:77:f1:35:
fb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:05:0E:6B:19:A7:FD:FC:01:B3:ED:90:0D:9C:6E:A6:35:E2:6B:A4
X509v3 Authority Key Identifier:
keyid:E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134392e302f32342d3234203d3e20313431393230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.165.149.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:93:23:69:5e:f0:6e:dd:b7:c4:da:17:23:ac:7d:c6:66:51:
e9:17:50:d4:08:e8:2b:89:d7:cb:34:e8:a5:3a:40:b1:6f:4e:
a0:29:23:37:1e:ad:85:42:8f:b5:74:77:76:b8:3b:bc:4c:9d:
51:27:6e:ba:ac:c9:a5:6f:8f:49:1a:d2:0d:17:0d:07:5b:c5:
eb:09:a3:d9:d7:24:65:87:91:f1:ed:b7:19:e7:d3:d7:d5:de:
d9:97:aa:35:05:6c:b9:5b:40:cf:fd:ca:22:9a:fe:b8:3d:98:
bd:bd:03:ca:65:c1:85:58:71:95:f4:23:4c:6d:48:60:87:13:
50:5a:f6:41:cc:03:0f:4c:a4:53:f4:ff:d7:ce:0d:4e:92:c8:
d4:3e:f7:5c:28:41:b9:00:ee:38:8c:a3:37:27:88:34:b7:32:
6c:f0:95:77:7c:a7:c2:d0:02:e0:e7:78:86:d0:f0:5b:53:ba:
71:00:4f:c1:76:25:e7:d4:01:fb:70:b7:97:ec:c1:32:55:a9:
37:11:79:32:c9:c1:b3:e5:d1:90:1a:32:81:3c:8a:77:ba:ea:
37:e0:e8:57:14:48:67:01:54:00:72:12:5b:5b:21:a3:bf:4a:
4d:36:ba:3a:79:87:ba:3d:94:14:bc:d8:bd:f2:b0:8e:fd:c9:
55:90:b4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:57:38 2025 by rpki-client