Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32342d3234203d3e20313530323632.roa
File: 3130332e32372e3139322e302f32342d3234203d3e20313530323632.roa (raw, json)
Hash identifier: +MyXIra1tEzUh3Bqp100pCTB+NpiC7GT2NfbRpY5B8s=
Subject key identifier: 84:29:F8:F0:58:D9:FF:64:38:D2:A8:F8:3B:2B:9B:0D:0B:29:90:B0
Certificate issuer: /CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897
Certificate serial: 42BFAD4CF60C57EEEFA81AB577ABD55CB55E39DD
Authority key identifier: 7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32342d3234203d3e20313530323632.roa
Signing time: Wed 12 Mar 2025 10:00:03 +0000
ROA not before: Wed 12 Mar 2025 09:55:03 +0000
ROA not after: Wed 11 Mar 2026 10:00:03 +0000
asID: 150262
IP address blocks: 103.27.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:bf:ad:4c:f6:0c:57:ee:ef:a8:1a:b5:77:ab:d5:5c:b5:5e:39:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897
Validity
Not Before: Mar 12 09:55:03 2025 GMT
Not After : Mar 11 10:00:03 2026 GMT
Subject: CN=8429F8F058D9FF6438D2A8F83B2B9B0D0B2990B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:17:5b:de:10:94:a8:d4:a4:0f:ef:85:12:36:
dc:50:2f:cb:05:6c:1a:d8:c6:c8:ac:d5:ae:6b:3d:
3b:8f:1a:75:ec:59:a5:bb:81:d7:4c:c5:f8:75:d1:
dc:44:d0:ca:47:31:21:af:39:66:17:c8:42:bd:d1:
59:85:d9:7d:b5:5e:77:95:40:13:40:14:86:29:e4:
6c:06:78:48:92:1b:59:24:e1:ee:64:0b:9b:bc:05:
44:b2:1f:fd:73:a9:ff:bd:64:49:61:47:b0:19:8b:
92:05:6e:b3:49:0a:5c:b8:22:0e:09:ec:a6:2b:b0:
90:7e:81:9a:86:cd:e5:e5:b7:55:ed:e5:84:d9:21:
62:22:e6:a2:4c:0d:c4:4b:62:83:ad:e9:43:8f:2e:
05:7c:1e:2a:58:92:7d:be:63:d6:5e:a6:cd:6a:69:
07:51:de:75:e3:5c:a8:13:71:3a:d8:c0:9b:5f:18:
c5:01:7a:63:e4:77:fb:64:87:2e:b0:1c:16:ca:3b:
4d:42:ee:92:e0:1c:cf:05:ac:10:ab:ba:0c:53:bd:
32:4b:ee:07:e2:e0:51:1f:31:f1:90:51:bf:5a:36:
24:4a:0f:03:81:a8:1a:c9:8e:11:70:56:7c:cd:f0:
e2:fc:66:ee:9c:ac:6a:d1:d7:88:d9:1b:2d:ec:2b:
dd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:29:F8:F0:58:D9:FF:64:38:D2:A8:F8:3B:2B:9B:0D:0B:29:90:B0
X509v3 Authority Key Identifier:
keyid:7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/3130332e32372e3139322e302f32342d3234203d3e20313530323632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.27.192.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:b2:d8:6b:6c:97:bf:db:22:8a:e9:b1:6f:c4:4b:91:74:47:
68:89:cd:09:5a:d1:d4:b9:91:0f:3b:6a:a4:da:dc:27:fd:a7:
9c:85:18:56:36:7d:c2:32:0b:f2:54:cd:fc:67:c6:20:41:d2:
2e:6e:76:05:e6:b8:3d:4d:04:c4:5a:77:f0:da:53:6c:44:bd:
a5:19:b6:5f:a6:35:14:b1:26:b3:3c:97:fb:df:a2:d7:1e:bb:
d3:8c:bb:52:cd:dc:0e:58:1d:a3:50:99:d8:7d:7c:6f:4b:e1:
17:74:d0:b6:cc:94:33:4c:92:21:79:eb:25:86:87:a4:f8:c3:
04:22:96:01:91:81:74:20:7e:40:7c:4e:8d:06:47:21:c5:78:
c9:3a:86:a7:33:e5:d4:43:81:a3:1f:6d:b1:dd:8e:3b:f4:91:
a7:12:6c:d4:85:06:0a:63:42:38:41:83:c1:71:59:1a:72:6f:
3b:c2:3e:ca:be:18:b4:8f:a7:3a:9b:da:ab:e4:9c:c4:f5:bc:
b5:41:7a:f2:0d:27:48:65:09:d7:67:22:ec:84:30:ef:11:5d:
c4:40:ba:ac:b9:57:9f:0f:e8:5e:1f:4b:53:66:fc:7b:b3:52:
10:46:aa:59:5a:6a:23:c9:41:f2:6f:79:87:7f:3f:11:12:0d:
98:4b:b3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:34 2025 by rpki-client