Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38302e302f32342d3234203d3e203435373233.roa
File: 3130332e32382e38302e302f32342d3234203d3e203435373233.roa (raw, json)
Hash identifier: IT26BOddfxbCQwV3l1VwMkd/4U8F416/+EJn9EJQonk=
Subject key identifier: 46:C4:94:82:B8:86:57:9D:3D:15:57:4D:68:D4:05:4A:FC:35:A2:B7
Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25
Certificate serial: 64D04DA5EBB4530CA23CB77841C6A8C13B27F83E
Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38302e302f32342d3234203d3e203435373233.roa
Signing time: Tue 28 Jan 2025 04:00:00 +0000
ROA not before: Tue 28 Jan 2025 03:55:00 +0000
ROA not after: Tue 27 Jan 2026 04:00:00 +0000
asID: 45723
IP address blocks: 103.28.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:d0:4d:a5:eb:b4:53:0c:a2:3c:b7:78:41:c6:a8:c1:3b:27:f8:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25
Validity
Not Before: Jan 28 03:55:00 2025 GMT
Not After : Jan 27 04:00:00 2026 GMT
Subject: CN=46C49482B886579D3D15574D68D4054AFC35A2B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a3:41:16:89:92:79:6e:5f:65:b6:e2:c2:dc:
4f:ee:f9:27:2b:99:0b:49:41:da:b7:d8:81:54:9b:
15:e6:66:8b:ee:45:bf:25:a0:8c:fd:36:80:8f:a5:
00:6a:c5:0e:f6:2a:56:5c:e2:05:f0:9f:70:31:69:
0e:c7:ac:6b:26:59:ad:1f:d5:ec:96:8e:a5:82:fd:
71:1e:a5:2d:5c:1e:d4:cd:40:09:84:c9:fd:4c:1a:
fb:13:01:21:dd:55:1a:c1:e8:5d:55:3d:cd:28:2b:
de:ff:1d:b9:bf:33:5e:ca:86:fe:c7:9d:4a:2d:b5:
c8:12:8c:80:67:39:31:c1:91:b9:26:30:42:fc:54:
61:49:af:98:21:b3:30:df:fc:96:af:a0:e0:27:76:
f9:e9:bd:9e:d3:51:b3:95:90:fe:b7:06:db:b1:2c:
61:cc:a0:8d:14:cb:b1:38:1e:10:2d:8b:9d:03:2b:
58:14:d2:8e:b6:5e:3a:60:49:8e:dc:63:ea:1f:39:
c5:62:ab:fd:ac:35:6e:06:02:d2:68:0d:4b:e0:fd:
e1:ae:d4:b3:34:c6:3b:c1:ff:cf:5a:92:a5:35:37:
9d:9c:f4:2d:9d:d8:d0:cf:75:5d:c4:13:bd:b0:c1:
25:ed:56:12:80:29:be:98:c9:fb:7c:2a:73:00:4b:
a3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C4:94:82:B8:86:57:9D:3D:15:57:4D:68:D4:05:4A:FC:35:A2:B7
X509v3 Authority Key Identifier:
keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3130332e32382e38302e302f32342d3234203d3e203435373233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.28.80.0/24
Signature Algorithm: sha256WithRSAEncryption
86:3f:87:0d:54:fd:69:9d:66:d7:fc:c7:45:ee:a3:38:e3:87:
4b:72:19:03:a2:16:9a:8f:1c:42:09:bd:11:cf:b7:4d:0f:c7:
44:eb:fb:82:71:02:ad:45:68:72:22:76:75:ac:91:3b:76:cf:
83:ac:fb:23:7e:73:f1:d8:35:92:fe:44:a2:27:f1:83:8b:a6:
6d:13:55:f3:15:b8:6b:2f:3f:9e:ac:6a:af:c3:53:c8:ef:a8:
6b:6c:00:54:9c:f0:37:71:89:d5:29:a1:cf:8b:1f:73:21:94:
24:77:0f:51:1b:ea:b4:b6:f5:ef:68:8d:45:f8:8d:96:14:c8:
38:83:a2:07:8d:0e:56:83:dd:ee:f5:ed:5e:4b:d7:de:54:88:
fc:cd:ed:d0:fc:44:2a:8a:69:ae:fa:bd:ab:32:54:53:93:3b:
47:b4:83:f9:2a:04:52:f9:63:40:ba:32:13:e1:a8:53:8a:37:
14:f1:0e:32:81:b6:f9:bd:93:e3:7f:47:aa:78:5f:0e:ac:c2:
e1:d8:06:44:e6:d5:43:c4:f9:48:e7:92:96:ba:b5:85:96:16:
f8:45:0c:01:0e:1c:9b:95:41:a0:f2:c6:91:e2:da:d9:1f:b3:
94:9e:93:54:5d:dc:2c:68:9e:ad:47:9d:8b:6e:02:28:ce:96:
81:1c:3b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:25:42 2025 by rpki-client