Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32322d3232203d3e203634323937.roa
File: 3130332e37372e3230342e302f32322d3232203d3e203634323937.roa (raw, json)
Hash identifier: DfpI3sfZfOso5gGyoS07WtJ/Jycy9ggknC4EuCpUXOM=
Subject key identifier: 65:43:8D:B4:65:78:7E:D6:22:02:6D:76:66:89:B6:11:38:6B:80:6F
Certificate issuer: /CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49
Certificate serial: 4C17CDA51D2288E3516EADBB2A9E168091E8A06E
Authority key identifier: A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32322d3232203d3e203634323937.roa
Signing time: Sat 08 Mar 2025 04:00:00 +0000
ROA not before: Sat 08 Mar 2025 03:55:00 +0000
ROA not after: Sat 07 Mar 2026 04:00:00 +0000
asID: 64297
IP address blocks: 103.77.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:17:cd:a5:1d:22:88:e3:51:6e:ad:bb:2a:9e:16:80:91:e8:a0:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49
Validity
Not Before: Mar 8 03:55:00 2025 GMT
Not After : Mar 7 04:00:00 2026 GMT
Subject: CN=65438DB465787ED622026D766689B611386B806F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:92:80:0a:91:f9:56:a2:95:d4:5d:d9:99:ab:
13:69:67:ee:a9:a5:d8:77:06:8e:59:4f:a1:eb:d2:
15:3f:77:d0:dd:85:8a:46:81:35:ad:6b:0f:92:2e:
f8:18:5e:67:6b:90:b0:59:4b:51:56:78:13:ae:f2:
c2:3a:40:66:ed:c7:f9:a4:14:45:d5:c2:f0:73:03:
8b:fd:47:7b:70:c5:45:7e:3f:a2:01:63:3f:4f:2d:
c5:29:35:87:a3:54:d1:d3:27:26:9f:d3:e9:88:78:
6e:77:e3:75:c1:30:4a:1a:7f:2b:5d:fe:8e:39:7c:
b4:31:7a:0a:eb:49:8a:bb:97:b9:e2:d4:12:98:a0:
a4:3a:d1:6c:e1:44:70:d9:f8:2d:2d:1e:b7:c3:d5:
12:fd:7d:5a:b6:19:63:0f:08:6d:6d:3f:d9:62:36:
ad:a9:43:c1:85:26:63:d2:01:78:b6:e1:3f:c8:3e:
ba:2f:38:ec:4a:31:5e:b0:b6:06:42:6e:b6:95:a5:
40:36:53:1a:28:b4:6a:34:ef:bc:7c:c1:ed:fb:23:
40:46:ae:a0:bf:67:a5:25:55:97:d7:cd:3d:72:4f:
17:6e:42:db:bb:21:c3:e5:20:b5:c6:15:46:2f:59:
5c:de:5f:ff:71:47:7c:97:b8:60:bb:40:9a:7c:e4:
93:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:43:8D:B4:65:78:7E:D6:22:02:6D:76:66:89:B6:11:38:6B:80:6F
X509v3 Authority Key Identifier:
keyid:A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32322d3232203d3e203634323937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.77.204.0/22
Signature Algorithm: sha256WithRSAEncryption
08:5c:68:9b:a2:9b:21:e7:44:dd:41:b0:e8:d8:60:bb:45:80:
14:11:8d:40:ea:01:c1:92:98:e6:b9:56:96:2a:d3:2e:9a:2f:
72:c1:1f:73:cb:ed:d1:86:4d:71:6b:71:b6:ad:23:1a:50:ca:
be:94:49:c2:d3:00:5c:e9:c4:35:6e:79:18:78:29:96:15:25:
70:cf:84:29:98:03:53:eb:7f:bc:34:c0:b6:e3:47:e3:9d:f1:
97:d6:b6:7a:98:a7:67:4d:c5:56:e2:87:9f:56:72:f5:61:45:
7a:62:b4:d7:66:9c:58:2d:8d:18:fd:61:2c:18:54:4c:c7:53:
d0:7a:13:22:8b:af:74:c7:39:92:65:6a:40:44:fc:f7:61:3e:
95:8e:d7:a6:8f:f7:a0:f1:77:b4:3e:be:60:85:bf:c9:25:ff:
2b:3d:4e:9a:01:64:4d:da:94:79:80:e3:62:2f:09:03:90:a4:
cf:97:79:d7:7b:6d:d9:9a:cc:07:86:a4:80:62:47:eb:64:f5:
30:b8:fc:71:bb:f7:bc:43:b4:c0:97:e7:a5:a1:ae:89:c6:0c:
28:ac:2f:a5:ed:c9:72:67:a1:3b:5c:3d:38:90:90:73:d1:a3:
3d:e3:3a:83:3c:2b:18:f1:0d:b6:c2:e8:b0:83:e3:63:92:63:
13:b2:dd:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:49:25 2025 by rpki-client