Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa
File: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (raw, json)
Hash identifier: geET9/YOwUtWNeEIEWu0ZCElrUfY/yNFJvOG/4u0aBI=
Subject key identifier: 2C:C2:1D:7D:EF:EF:AB:D6:65:19:DC:E5:CE:B8:D6:28:16:0F:7E:07
Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16
Certificate serial: 1939F86BD3EC2E25FEA3E3ACD50CDFAB11A30F93
Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa
Signing time: Mon 03 Feb 2025 09:00:00 +0000
ROA not before: Mon 03 Feb 2025 08:55:00 +0000
ROA not after: Mon 02 Feb 2026 09:00:00 +0000
asID: 131769
IP address blocks: 103.177.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:39:f8:6b:d3:ec:2e:25:fe:a3:e3:ac:d5:0c:df:ab:11:a3:0f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16
Validity
Not Before: Feb 3 08:55:00 2025 GMT
Not After : Feb 2 09:00:00 2026 GMT
Subject: CN=2CC21D7DEFEFABD66519DCE5CEB8D628160F7E07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2d:d4:67:34:ac:28:26:c1:1c:86:b0:d6:b1:
13:11:c0:6c:fd:0e:36:e8:9d:be:67:be:0d:7e:4b:
e2:f1:c6:9e:95:24:1d:cf:a6:5c:40:17:dc:7b:3d:
32:dc:61:f9:10:ef:e4:08:7d:d6:95:04:0f:8c:0b:
fd:ce:38:a5:bb:fc:bc:60:cb:42:42:ff:47:38:f6:
f0:52:30:d7:8e:41:4f:d4:ae:13:c8:80:31:98:5b:
8d:fe:b1:e4:9e:2b:9d:20:9c:1f:cc:b6:99:68:64:
7e:9b:11:ae:ca:42:be:8e:c9:d8:1b:eb:77:9c:2b:
ae:2b:e0:89:de:fd:b3:cf:6c:fe:60:c7:f8:94:45:
d8:8a:05:0a:4c:25:dd:b9:fe:a0:b8:9d:c3:a0:6b:
24:40:9c:54:57:24:3a:0d:fd:d5:21:b8:40:82:01:
07:54:61:c2:80:f9:66:4f:d6:a1:a0:cf:ee:af:4f:
11:94:af:2a:be:39:4c:22:57:af:fe:45:4b:f1:c0:
64:65:21:18:3e:a2:c6:05:34:fd:85:9a:03:22:32:
a6:e1:29:a3:f7:af:1a:0a:1a:3b:27:1e:0c:63:e8:
f6:30:b7:34:c4:f8:8c:fa:98:ad:e9:f0:34:b2:2d:
3c:4e:74:7a:7d:eb:91:68:9b:88:a4:22:d2:9d:43:
60:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C2:1D:7D:EF:EF:AB:D6:65:19:DC:E5:CE:B8:D6:28:16:0F:7E:07
X509v3 Authority Key Identifier:
keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.177.218.0/24
Signature Algorithm: sha256WithRSAEncryption
98:e5:c2:3a:2d:73:14:e7:78:46:40:24:0d:94:26:66:dd:f6:
af:cd:15:ae:9f:df:b0:09:29:74:f6:eb:3f:5a:89:b6:bb:f9:
15:d2:bb:c6:4b:44:26:fa:c0:c1:c7:3c:b0:83:c2:26:ac:63:
0b:4f:5c:95:06:df:cf:7e:76:ef:ef:5d:51:c8:58:bf:86:04:
fe:39:90:2f:bd:0a:cb:66:ea:06:19:1e:5a:a5:85:29:6d:f1:
fd:66:50:d8:04:5b:98:8d:4b:7c:fd:6f:33:de:41:9e:48:12:
e5:de:d3:ec:a4:d1:60:de:12:16:96:a9:cc:51:08:05:94:ff:
7b:d3:6e:12:d5:a8:53:2c:87:54:e5:62:81:68:7a:bf:2d:4a:
2f:f6:42:73:95:21:55:79:4c:32:de:8f:5e:6f:5d:a2:a6:2b:
07:d6:49:a6:83:5f:81:9a:8b:bd:a6:02:c4:e9:92:fc:0a:3a:
c0:9a:86:f8:c3:c1:ac:c8:34:4e:de:c8:c0:2d:b9:d5:0b:b4:
99:a0:54:eb:2c:ed:65:a7:5d:61:94:04:30:6c:d6:57:54:53:
38:eb:9b:f9:a6:21:d9:82:70:f9:5b:1d:4d:9a:cc:b5:64:2e:
f7:b6:0a:91:88:34:d8:33:22:15:75:3e:49:15:6e:02:fc:7e:
d3:bc:a7:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:58:39 2025 by rpki-client