Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32332d3233203d3e20313531353838.roa
File: 3130332e35352e3235322e302f32332d3233203d3e20313531353838.roa (raw, json)
Hash identifier: 4SzxYxsm34j+//J0Zj7fCtaaSGBPCJKKVqr4apFWEx0=
Subject key identifier: 7B:B6:57:41:F0:02:BE:D7:BF:B3:25:28:34:54:9C:0B:54:FF:D4:E6
Certificate issuer: /CN=782659A7F6433029248A38A1C68F2E9971161391
Certificate serial: 5066FD2A5E00A6D78E5FB6757406535325E9E12D
Authority key identifier: 78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32332d3233203d3e20313531353838.roa
Signing time: Fri 17 Jan 2025 05:00:00 +0000
ROA not before: Fri 17 Jan 2025 04:55:00 +0000
ROA not after: Fri 16 Jan 2026 05:00:00 +0000
asID: 151588
IP address blocks: 103.55.252.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:66:fd:2a:5e:00:a6:d7:8e:5f:b6:75:74:06:53:53:25:e9:e1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=782659A7F6433029248A38A1C68F2E9971161391
Validity
Not Before: Jan 17 04:55:00 2025 GMT
Not After : Jan 16 05:00:00 2026 GMT
Subject: CN=7BB65741F002BED7BFB3252834549C0B54FFD4E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:4e:b9:f6:a0:19:81:a3:ec:a6:14:46:cf:
aa:db:92:ee:4e:a9:d9:c2:aa:87:5b:96:53:c9:f9:
e6:f4:2d:3c:88:81:38:bc:81:6a:d6:a4:cd:bd:ba:
e0:10:02:18:69:69:5d:e8:fa:db:2f:8b:0d:83:28:
c8:8e:2e:08:44:0f:0e:8d:78:49:9c:24:52:51:63:
31:b8:f4:bc:5b:45:9f:2c:18:e7:40:77:9c:7f:35:
f0:1a:a9:a7:ea:f2:ee:fe:99:95:4a:3e:9f:79:8f:
79:2d:52:88:4a:eb:c5:98:96:88:2e:4a:0b:6b:d8:
e5:d3:52:25:d7:3f:db:82:17:93:c4:39:5a:cb:e1:
a8:1e:79:d8:4f:b7:71:c3:2a:00:4d:c6:a8:93:45:
39:10:b9:93:87:9f:e1:9f:0a:f7:cd:26:e7:6e:14:
70:48:bc:da:e4:6b:09:e4:7a:a0:a4:06:40:7b:63:
ca:50:2c:49:a3:08:64:63:eb:4b:d1:3b:e0:11:6c:
63:cc:b7:69:d0:04:78:07:a2:ce:67:27:f7:50:ef:
1d:d1:47:87:02:f3:30:19:0d:79:3e:82:47:b6:71:
2f:20:e8:5a:bc:5e:87:a2:45:3b:80:8d:d9:9a:d1:
81:b6:be:fa:59:10:0e:8e:35:a1:0a:ba:3a:c4:f9:
9c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B6:57:41:F0:02:BE:D7:BF:B3:25:28:34:54:9C:0B:54:FF:D4:E6
X509v3 Authority Key Identifier:
keyid:78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32332d3233203d3e20313531353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.55.252.0/23
Signature Algorithm: sha256WithRSAEncryption
82:02:09:0f:90:29:07:d0:9d:2e:2e:ad:76:22:54:86:7f:b6:
57:1f:a8:b1:69:bc:47:b1:79:bc:f9:09:d3:36:bd:a3:af:d1:
41:52:88:a4:91:36:34:cb:2c:8b:49:fe:f3:5b:2c:58:5a:89:
66:b9:24:26:2e:b4:8e:16:b9:92:7e:24:6d:84:86:37:25:77:
1a:fe:8a:88:ec:70:b5:dc:a6:ea:59:03:9f:22:1e:4e:11:3f:
a7:05:48:47:5a:ae:82:23:b0:be:11:e3:73:01:04:9a:82:c9:
ae:37:12:9c:f8:88:1b:21:2d:1a:ae:4f:64:b5:64:e6:00:71:
1f:34:07:1c:b6:55:ff:52:06:8f:10:8f:68:fc:55:ce:ae:e4:
13:f3:24:73:cc:58:70:b5:98:52:53:87:b2:d1:e9:92:2a:ac:
ed:27:b5:9f:a5:f8:ae:d8:a4:20:81:50:ff:26:f5:77:0a:57:
d0:5d:67:1e:8c:cc:81:e1:c6:4b:12:54:c8:cc:ea:a1:4f:62:
b7:8a:8f:27:95:ed:ee:e5:b1:24:89:5b:b9:b5:13:da:ef:51:
b3:b6:55:fb:de:20:4c:e3:78:3a:b1:a3:16:91:d7:ee:10:22:
50:5a:64:67:59:e6:35:40:f4:eb:bb:5d:cb:3f:c3:a6:8a:43:
b1:f5:f5:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:24:04 2025 by rpki-client