Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/3130332e3130372e31382e302f32342d3234203d3e20313337323838.roa
File: 3130332e3130372e31382e302f32342d3234203d3e20313337323838.roa (raw, json)
Hash identifier: FCHx6FaRMarTOvIyDDJKyaewpvcQNtFaDUPbc3o5Lx0=
Subject key identifier: F8:6E:3D:13:86:DE:F0:95:9E:59:55:F8:24:7B:66:1E:82:26:B4:33
Certificate issuer: /CN=30FC12E903AE0EE87BD1A1E58A062C8026A0CE51
Certificate serial: 560DF19E1425D9D070D828EF71EA454ED20B3C02
Authority key identifier: 30:FC:12:E9:03:AE:0E:E8:7B:D1:A1:E5:8A:06:2C:80:26:A0:CE:51
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/3130332e3130372e31382e302f32342d3234203d3e20313337323838.roa
Signing time: Wed 22 Jan 2025 06:00:07 +0000
ROA not before: Wed 22 Jan 2025 05:55:07 +0000
ROA not after: Wed 21 Jan 2026 06:00:07 +0000
asID: 137288
IP address blocks: 103.107.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:0d:f1:9e:14:25:d9:d0:70:d8:28:ef:71:ea:45:4e:d2:0b:3c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30FC12E903AE0EE87BD1A1E58A062C8026A0CE51
Validity
Not Before: Jan 22 05:55:07 2025 GMT
Not After : Jan 21 06:00:07 2026 GMT
Subject: CN=F86E3D1386DEF0959E5955F8247B661E8226B433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f3:c0:41:75:cb:0b:04:48:7a:44:3e:33:78:
25:ba:3d:48:d0:42:6a:06:bc:fb:4d:89:63:d9:c2:
12:47:3d:c9:38:9a:17:ec:33:80:75:bb:87:eb:1d:
37:c1:97:89:f0:a2:70:f8:c8:c9:96:10:07:7e:b0:
36:9f:b9:4d:1b:b3:c0:ad:82:b7:27:41:fb:c8:99:
35:4d:27:ef:93:20:51:83:bf:58:72:ed:fa:5f:36:
1b:0e:b5:48:31:48:a8:ce:30:a4:f0:e0:a2:db:09:
0c:05:c4:33:29:e7:15:7e:01:8f:f3:3a:f0:37:ff:
c6:10:d5:a0:1c:a1:43:2a:e4:15:82:10:96:62:b8:
19:e7:c8:a9:35:44:0d:30:c4:c9:96:a9:5d:72:5d:
8a:de:4d:35:7a:28:6b:c2:59:f7:2b:bf:70:d0:ec:
7e:09:e8:81:97:df:cf:e6:f8:b9:db:4b:42:cc:8a:
7b:6d:19:a5:91:fb:7a:e4:82:4e:9b:fa:b1:cb:e3:
79:ac:7c:b5:7d:e6:cd:f2:e2:28:ff:00:ae:5b:42:
ab:c9:2d:80:64:94:a6:d7:02:94:f7:9d:2a:6c:14:
97:27:f6:96:9b:9e:e0:4b:e6:3c:67:d0:c1:da:22:
c9:5c:ff:ea:26:82:88:b7:f4:80:da:22:e3:dd:e4:
d4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:6E:3D:13:86:DE:F0:95:9E:59:55:F8:24:7B:66:1E:82:26:B4:33
X509v3 Authority Key Identifier:
keyid:30:FC:12:E9:03:AE:0E:E8:7B:D1:A1:E5:8A:06:2C:80:26:A0:CE:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/30FC12E903AE0EE87BD1A1E58A062C8026A0CE51.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4711c110-7ab1-4a39-b9ca-3a9b0e81bcf5/0/3130332e3130372e31382e302f32342d3234203d3e20313337323838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.107.18.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:ed:48:19:82:5b:79:29:b3:c3:f5:b0:78:64:f2:a9:74:05:
b9:61:7a:1b:ef:40:60:e8:92:db:43:78:68:13:ab:42:c1:53:
92:ef:ba:1c:65:dd:26:15:6a:62:2d:9a:42:e7:2b:aa:a0:31:
e0:ec:a5:c9:2a:58:7f:13:d2:94:cc:69:ac:ec:2b:11:05:50:
bc:95:f8:aa:1c:54:ab:78:dc:f6:ff:82:dd:45:59:57:b4:91:
f4:36:61:2e:a5:1e:2b:cf:5f:b1:ad:7b:16:09:97:2a:9b:4f:
f0:14:8d:ec:01:b9:8e:b4:f7:42:ac:20:cd:8f:b1:7e:a7:97:
b2:54:3c:5a:90:de:f3:d6:f2:eb:ac:af:b7:e2:7a:73:a7:80:
a3:89:5b:d8:53:40:e2:d9:8f:32:c3:5f:8a:0a:2d:b5:50:1a:
d9:38:12:d6:4e:59:ff:16:31:a3:86:ad:90:ca:e8:82:20:58:
3e:47:6e:0d:c7:76:0c:86:c4:2e:23:76:24:47:cb:a1:5f:37:
a9:53:33:d1:aa:21:4e:b4:73:fc:4e:bf:5a:eb:30:4f:7d:d1:
58:a1:31:4a:ce:d3:87:52:ba:49:90:e6:bd:d4:8e:f4:00:05:
b5:ad:21:bf:08:da:6a:d9:b6:ad:72:dc:12:5f:8e:90:3e:92:
4a:9d:4d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:02:27 2025 by rpki-client