Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32342d3234203d3e20313531353838.roa
File: 3130332e35352e3235322e302f32342d3234203d3e20313531353838.roa (raw, json)
Hash identifier: 40JRxNw6stZoA1fUKj/zKco7HRJV/HtMAMb74Ejikyo=
Subject key identifier: 63:C7:73:E4:8B:26:1C:92:23:CB:B3:F9:57:73:0F:89:31:33:0A:BC
Certificate issuer: /CN=782659A7F6433029248A38A1C68F2E9971161391
Certificate serial: 7C174A3C9B1C97E48357321DE85D2E3B7A359BEF
Authority key identifier: 78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32342d3234203d3e20313531353838.roa
Signing time: Sat 18 Jan 2025 14:00:00 +0000
ROA not before: Sat 18 Jan 2025 13:55:00 +0000
ROA not after: Sat 17 Jan 2026 14:00:00 +0000
asID: 151588
IP address blocks: 103.55.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:17:4a:3c:9b:1c:97:e4:83:57:32:1d:e8:5d:2e:3b:7a:35:9b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=782659A7F6433029248A38A1C68F2E9971161391
Validity
Not Before: Jan 18 13:55:00 2025 GMT
Not After : Jan 17 14:00:00 2026 GMT
Subject: CN=63C773E48B261C9223CBB3F957730F8931330ABC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:79:61:f6:71:7f:d6:e3:6d:19:7a:ed:0e:76:
25:9c:85:97:43:a9:da:d8:8c:91:60:73:13:97:39:
64:38:2d:c2:30:55:0a:ee:bd:d0:c9:ca:5a:54:10:
7c:b5:80:d4:1e:4d:e2:3c:b0:42:fc:0a:9a:35:f5:
62:2a:35:2d:ca:df:4c:9f:73:b5:87:84:56:00:5b:
a1:1e:d5:83:17:db:47:eb:b8:3b:87:54:dd:51:5f:
25:e0:bb:51:6b:d0:81:f4:f0:23:9a:91:4d:35:ce:
7f:fb:eb:93:33:07:53:31:11:db:01:21:50:48:20:
6b:cd:ab:ad:b3:ce:43:fb:39:37:86:10:cd:d1:c4:
73:79:21:5d:03:41:26:34:48:f5:a3:1f:f4:c4:b9:
31:ca:ad:3c:bd:99:f9:99:55:77:aa:25:80:b1:33:
cc:f4:d9:b6:02:4a:29:c2:64:a5:23:99:98:37:ed:
b9:f4:0f:44:78:58:82:06:71:f7:9f:83:e0:dd:2b:
2c:9b:d1:66:e4:63:74:06:46:c7:13:db:21:b4:aa:
d3:89:cd:14:48:c6:9c:ca:44:00:69:ad:66:ca:e5:
11:53:91:2a:ce:2e:24:e3:60:79:f3:71:a7:9b:a9:
37:e0:d3:9f:7c:22:c4:47:4a:a6:4b:bc:35:ea:41:
98:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C7:73:E4:8B:26:1C:92:23:CB:B3:F9:57:73:0F:89:31:33:0A:BC
X509v3 Authority Key Identifier:
keyid:78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/3130332e35352e3235322e302f32342d3234203d3e20313531353838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.55.252.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:c5:91:71:e9:28:77:80:ae:cb:43:86:c2:17:92:24:1a:8f:
a1:ae:50:67:32:c1:fa:95:9d:4e:55:47:e7:34:3c:c5:52:fb:
a4:8f:1b:83:0b:d4:c4:ae:28:ae:4f:41:e5:ab:a7:87:f6:fd:
6a:96:65:8f:ed:41:63:50:2b:8f:a5:0e:18:dc:ce:fc:a8:a4:
06:7b:83:9b:87:41:ea:96:8e:e6:24:c2:b3:11:93:b3:b0:31:
ec:6e:a6:d6:e1:f9:6f:fc:3c:0d:04:bd:0f:a3:d9:82:2e:29:
55:2e:53:d8:e6:8e:d6:1b:9a:34:74:03:37:17:3d:ef:b6:5c:
6d:79:98:a1:20:0b:c3:a7:62:24:d9:53:cc:64:06:46:16:8c:
f5:d5:04:81:ce:4e:53:33:63:7f:95:24:bf:a7:24:fd:66:e7:
27:70:1d:71:4b:53:ed:4d:fe:4c:72:cc:16:7e:80:5e:87:f9:
3c:6e:46:06:31:51:6c:b9:1f:0c:92:6c:83:bc:34:9a:89:a5:
74:4a:0f:fc:3a:94:6c:7e:60:d5:8a:c9:7a:77:51:a5:5e:0f:
47:cf:ae:01:81:97:e6:b5:05:ea:72:92:53:e4:59:7b:60:12:
02:61:36:d4:9c:3d:83:4c:dd:1f:39:4b:a6:28:74:37:b4:2c:
b6:ca:d4:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:53:25 2025 by rpki-client