Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32332d3233203d3e20313530323632.roa
File: 3130332e32372e3139322e302f32332d3233203d3e20313530323632.roa (raw, json)
Hash identifier: BnJZN8kM3S7TwdBig6pEraKaEILe1NjioWa2vU9OOYk=
Subject key identifier: 21:62:EE:98:A9:6E:C2:EC:8E:F4:B1:0E:CA:50:F7:B7:8D:73:E5:62
Certificate issuer: /CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897
Certificate serial: 747FEA6C502594897AA6C886F82210F54E8AE739
Authority key identifier: 7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32332d3233203d3e20313530323632.roa
Signing time: Wed 12 Mar 2025 10:00:02 +0000
ROA not before: Wed 12 Mar 2025 09:55:02 +0000
ROA not after: Wed 11 Mar 2026 10:00:02 +0000
asID: 150262
IP address blocks: 103.27.192.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:7f:ea:6c:50:25:94:89:7a:a6:c8:86:f8:22:10:f5:4e:8a:e7:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897
Validity
Not Before: Mar 12 09:55:02 2025 GMT
Not After : Mar 11 10:00:02 2026 GMT
Subject: CN=2162EE98A96EC2EC8EF4B10ECA50F7B78D73E562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:67:af:d5:de:b7:70:85:ce:99:f8:c6:aa:3b:
cf:d6:7f:a6:81:0a:52:05:db:19:3a:f0:ba:ac:0c:
e2:9c:e7:0a:6b:38:39:65:50:64:4a:92:c0:03:68:
5c:db:fb:79:ce:34:03:32:7b:22:7a:84:bf:2c:92:
04:ae:ff:56:2c:75:7c:87:16:1f:5a:01:a5:63:5e:
bd:c5:4c:39:38:ef:a9:2b:b9:f4:e2:49:70:a9:9c:
e8:b7:13:a6:d4:d3:2a:c1:82:1f:6c:89:b4:ed:1f:
ba:ad:4a:a2:f6:7b:c9:7b:18:9f:fb:6d:8a:bb:d3:
81:dc:8d:2b:ed:8b:d3:c6:a8:a8:2e:32:2f:6a:8b:
77:e5:be:39:ae:8a:5c:07:6a:eb:60:21:70:bc:dd:
92:ea:d3:22:d3:d2:a9:da:e8:1e:91:c0:d3:47:5c:
96:6f:53:76:d3:18:87:cc:bb:69:11:c5:fd:71:38:
54:ba:e2:82:3c:d2:ed:f7:2e:51:a2:a2:b1:31:ba:
ff:7c:64:6a:c0:0e:9a:83:b9:f1:cd:97:2f:b1:6c:
2b:52:41:1a:f3:a8:37:fe:c0:21:ac:88:c5:8d:3a:
93:77:41:c0:49:11:1f:ed:c8:4f:1a:e3:49:98:2b:
29:58:49:a0:2a:80:37:5f:c5:2e:1d:1b:7e:f9:f3:
4b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:62:EE:98:A9:6E:C2:EC:8E:F4:B1:0E:CA:50:F7:B7:8D:73:E5:62
X509v3 Authority Key Identifier:
keyid:7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32332d3233203d3e20313530323632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.27.192.0/23
Signature Algorithm: sha256WithRSAEncryption
89:51:12:38:0f:04:2f:a9:53:0e:f8:60:1f:e3:d1:8e:2a:2e:
68:f7:23:70:c9:ce:d0:e0:86:c2:11:27:21:6c:41:97:bb:53:
af:49:5c:e8:7b:a9:5c:27:be:6f:02:c6:4a:1e:47:d0:28:5b:
c7:bb:03:3e:2a:f0:eb:d7:c3:e8:78:fa:c6:a3:40:a7:ed:69:
f5:56:e2:0a:10:13:85:c2:f3:21:5f:d6:1a:af:59:9b:63:06:
e1:b2:49:c8:12:c7:e4:0b:8b:23:e3:52:28:2a:5a:58:d5:c9:
dc:56:da:84:96:3b:ad:df:8d:26:95:17:4b:cb:36:69:81:30:
38:91:86:6e:a9:5f:6e:d4:73:a3:40:f2:0b:26:59:95:dd:24:
c7:1c:82:a2:ba:76:d9:df:dd:fe:61:6c:d2:61:75:60:07:95:
90:bc:88:9e:c9:14:4c:f4:7b:1e:fc:b7:38:cf:31:e0:1b:df:
42:5a:4a:10:90:d2:9a:7b:ed:72:65:8e:73:21:b9:7f:7e:c6:
6a:89:d7:43:e4:be:0d:fe:00:ac:65:95:bb:71:0f:5b:e8:57:
45:db:82:13:19:72:bd:ed:b8:cb:bd:31:7f:eb:14:b6:ee:6e:
f6:ed:29:41:a5:fd:22:ca:38:98:fe:61:56:f9:36:f6:4e:37:
45:16:44:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:10 2025 by rpki-client