Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa
File: 3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa (raw, json)
Hash identifier: M+p5nzecECxGFfN8VhgDof1M+5/v42AUXWVnabcezYY=
Subject key identifier: 6A:26:41:B6:63:9B:9D:2E:5C:B3:F2:DA:5F:8A:5A:9D:81:DB:D7:22
Certificate issuer: /CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D
Certificate serial: 4270EEB7B2293FEA29FC866DA231AF2E942C0786
Authority key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa
Signing time: Thu 13 Feb 2025 10:00:02 +0000
ROA not before: Thu 13 Feb 2025 09:55:02 +0000
ROA not after: Thu 12 Feb 2026 10:00:02 +0000
asID: 140470
IP address blocks: 103.159.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:70:ee:b7:b2:29:3f:ea:29:fc:86:6d:a2:31:af:2e:94:2c:07:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D
Validity
Not Before: Feb 13 09:55:02 2025 GMT
Not After : Feb 12 10:00:02 2026 GMT
Subject: CN=6A2641B6639B9D2E5CB3F2DA5F8A5A9D81DBD722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:27:2e:12:af:e7:dc:61:f3:de:49:30:f9:36:
da:8b:5a:06:10:05:a2:22:73:54:12:34:c7:ef:ae:
0f:b9:73:5d:8b:6f:04:22:4a:8f:9a:1a:0b:f5:0e:
4d:a9:85:aa:47:fc:83:32:06:ea:79:79:52:74:fc:
cc:5f:05:df:38:b8:31:3c:d1:9c:80:98:7b:ac:b0:
47:46:05:c7:f1:e3:41:ca:e2:b4:e3:e3:92:02:1a:
e3:76:be:6b:82:a7:c0:8b:56:75:14:11:5c:41:2d:
93:e2:3c:8b:19:cb:40:43:c4:ff:3b:ff:c0:00:1e:
98:83:49:50:99:14:b8:9e:a5:b7:98:21:54:43:f3:
17:30:d5:51:9e:98:40:01:b0:c5:be:23:44:f3:49:
4c:9b:07:3d:40:b0:8c:36:ac:d0:9c:2b:26:de:8c:
69:a3:36:26:fe:b1:54:87:93:dc:31:5f:25:48:13:
1d:ea:ea:fb:c3:5b:f6:1c:ac:08:56:fc:5b:d8:fa:
a0:94:0d:51:ee:2f:7a:b9:4c:d0:81:ee:9c:7d:49:
36:9d:65:11:bf:58:84:3d:b0:aa:7c:5f:0a:6e:2a:
45:42:2a:78:a3:9c:12:a4:28:b5:e1:c3:d6:b2:69:
52:a6:34:0e:22:45:8f:66:72:05:da:0f:a9:32:d0:
ec:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:26:41:B6:63:9B:9D:2E:5C:B3:F2:DA:5F:8A:5A:9D:81:DB:D7:22
X509v3 Authority Key Identifier:
keyid:F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.159.197.0/24
Signature Algorithm: sha256WithRSAEncryption
23:55:bd:24:3f:b1:0d:88:eb:b7:f7:c5:9f:67:05:89:cc:58:
82:07:10:6f:61:2c:d7:e6:d7:74:52:af:bf:07:1d:30:a0:57:
ea:6d:1e:3c:c1:2c:ce:ed:4d:f9:3b:35:66:f3:70:32:67:6f:
b9:fa:f6:c8:ee:b7:4b:1c:ff:a7:ec:d8:1f:0c:c7:e5:7e:42:
c6:7b:18:94:5b:4b:d7:f9:ba:b3:1a:1d:ac:02:51:5d:d9:82:
c1:10:d7:70:50:3a:4a:3f:2e:40:11:64:05:18:d1:b2:af:44:
7d:79:d1:0b:e0:15:21:cb:51:53:fa:33:20:29:47:c3:42:ed:
9d:17:ff:4b:c4:b7:55:08:25:2e:28:4b:55:f1:d4:76:a7:5a:
0e:89:d5:f6:b1:02:2a:83:b6:4e:2d:8d:a1:db:8b:0f:34:55:
fc:77:58:04:6b:77:31:c5:6f:b7:8a:95:11:9c:ef:24:87:81:
8c:f8:d1:ba:9c:c4:21:67:0e:54:c9:b4:c4:35:69:f8:bb:8f:
0c:6d:03:31:ab:96:53:1f:d5:31:11:69:fe:8b:d7:73:6f:45:
bd:9a:17:a2:17:fc:62:06:03:53:9a:8d:02:f6:a9:37:f3:e4:
5d:73:7b:1d:f0:08:e2:61:12:d3:8a:40:da:01:77:cd:fa:b4:
46:a9:93:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 14:10:24 2025 by rpki-client