Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32342d3234203d3e203634323937.roa
File: 3130332e37372e3230342e302f32342d3234203d3e203634323937.roa (raw, json)
Hash identifier: BXSq9b95eC9MSwvxuZ/AcJL572zXX4pRx3/J1qctsOw=
Subject key identifier: C9:9B:A0:8B:C6:45:D4:EF:FE:9D:C6:0D:3D:4C:9F:9C:A9:1E:81:A7
Certificate issuer: /CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49
Certificate serial: 3059F985F98614F95AF2CEA496C959F53BFB8AAF
Authority key identifier: A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32342d3234203d3e203634323937.roa
Signing time: Sat 08 Mar 2025 04:00:01 +0000
ROA not before: Sat 08 Mar 2025 03:55:01 +0000
ROA not after: Sat 07 Mar 2026 04:00:01 +0000
asID: 64297
IP address blocks: 103.77.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:59:f9:85:f9:86:14:f9:5a:f2:ce:a4:96:c9:59:f5:3b:fb:8a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49
Validity
Not Before: Mar 8 03:55:01 2025 GMT
Not After : Mar 7 04:00:01 2026 GMT
Subject: CN=C99BA08BC645D4EFFE9DC60D3D4C9F9CA91E81A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:24:b5:b5:ad:ad:25:a8:49:9f:c2:8a:5d:af:
a3:cf:d7:a4:4b:dc:03:b9:24:2f:c6:58:87:78:84:
d9:d2:dc:50:3e:94:72:fb:cf:4a:6e:72:d7:60:bf:
55:77:d1:87:e8:cc:cf:3f:21:25:e6:2d:c2:3a:a4:
4a:81:72:8f:33:2b:ac:9f:88:d2:7e:17:89:7c:79:
c9:b5:f1:e1:a7:d4:62:21:37:d4:f7:d4:67:44:57:
90:03:bc:e5:ff:3e:cc:22:d4:93:bb:8c:3a:11:08:
f8:2c:e7:44:ff:66:85:d4:91:40:01:9f:0d:5f:74:
fa:19:1f:86:5b:e8:f7:72:9c:23:05:57:ee:2a:96:
71:20:84:05:5d:2b:a7:ba:e6:40:ed:f1:d0:9a:24:
b3:5d:5f:a3:0c:10:53:af:13:2e:47:73:ef:a1:89:
e4:c3:03:f5:8e:5e:2b:c9:cd:e1:84:64:95:b9:01:
33:87:de:90:c3:3b:95:8f:cc:8d:12:9f:0d:8e:a9:
c0:48:8a:31:0a:77:66:9a:90:17:63:39:94:d5:c2:
81:5a:d4:d4:73:f4:c9:2a:53:68:93:3b:ce:d0:5f:
fd:03:c3:1f:4a:9d:22:80:7b:44:90:c5:1d:37:5d:
94:cd:cb:30:5b:0f:f8:95:2f:bb:69:e4:40:1f:8f:
97:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:9B:A0:8B:C6:45:D4:EF:FE:9D:C6:0D:3D:4C:9F:9C:A9:1E:81:A7
X509v3 Authority Key Identifier:
keyid:A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230342e302f32342d3234203d3e203634323937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.77.204.0/24
Signature Algorithm: sha256WithRSAEncryption
54:db:56:6e:d0:4a:ce:0a:1c:46:11:fd:b1:95:8d:f2:58:44:
da:b1:0b:bc:f4:56:c2:91:5e:af:f3:67:e3:84:f2:dd:f8:34:
80:ed:f1:98:0b:dc:16:d3:e6:f6:9e:a8:46:34:57:89:ae:ec:
38:68:41:9e:bb:09:97:8f:b8:2f:26:23:15:9e:14:21:4f:83:
03:14:29:f4:b1:57:9a:14:ee:6f:8f:4b:dd:49:49:d2:c9:dd:
dc:1f:0c:58:8f:c5:2a:61:e8:e5:69:b4:c1:b1:dd:4e:5c:96:
d6:14:d8:d4:93:2c:66:74:31:b5:67:01:72:e3:ac:10:4d:a3:
90:60:2e:42:a9:2b:73:b4:fc:bb:18:b7:91:22:6d:28:a6:49:
31:20:df:3b:fa:32:f0:25:cd:85:ce:a6:f9:59:4a:42:a5:ac:
6d:5f:17:04:9e:f4:9f:59:9a:08:6c:49:9b:2a:f3:7e:a9:d9:
93:38:5c:93:d9:b9:c8:26:cc:3a:29:38:24:a1:01:20:97:55:
b3:d4:80:ad:7c:c3:48:d6:85:32:76:55:83:b4:ee:24:73:4e:
fd:2a:ad:7c:1d:86:cf:1d:1a:b4:bd:7b:75:ff:15:45:78:12:
f5:3f:4b:72:92:3a:a1:51:8b:39:55:99:81:0d:20:37:c0:f2:
e0:cf:7e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:50:42 2025 by rpki-client