Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32332d3233203d3e203538333639.roa
File: 3130332e3133362e3137302e302f32332d3233203d3e203538333639.roa (raw, json)
Hash identifier: Z0Nbz1XibnxNyKBNr2zQqXw+MKf+eHjiJCZdkBIGrIo=
Subject key identifier: B0:39:B3:91:EB:F8:AD:D1:D9:CE:A7:2C:15:16:60:4F:4A:44:5B:45
Certificate issuer: /CN=47C87696529FAF404AF0E8681AAFA8F224187D59
Certificate serial: 45C963D96815B2ABC0006356112110F556F84384
Authority key identifier: 47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32332d3233203d3e203538333639.roa
Signing time: Fri 14 Mar 2025 06:01:12 +0000
ROA not before: Fri 14 Mar 2025 05:56:12 +0000
ROA not after: Fri 13 Mar 2026 06:01:12 +0000
asID: 58369
IP address blocks: 103.136.170.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:c9:63:d9:68:15:b2:ab:c0:00:63:56:11:21:10:f5:56:f8:43:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47C87696529FAF404AF0E8681AAFA8F224187D59
Validity
Not Before: Mar 14 05:56:12 2025 GMT
Not After : Mar 13 06:01:12 2026 GMT
Subject: CN=B039B391EBF8ADD1D9CEA72C1516604F4A445B45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:72:12:9e:a9:7d:99:63:86:dc:40:90:83:a0:
56:56:cc:71:3b:93:24:e6:05:1e:1e:4a:1e:b9:15:
1f:97:0f:1a:03:de:ca:f3:3e:8b:b5:11:b2:a0:69:
c2:4e:f1:ae:6c:2c:79:c7:79:9b:8c:4b:9e:84:b6:
bb:32:43:9a:8c:42:3d:f9:82:50:c6:34:d8:aa:82:
5a:e5:a4:7d:e6:50:e3:75:fa:69:06:26:e7:06:a8:
8b:70:6e:f9:e2:12:a3:ca:aa:15:6d:86:97:53:2b:
c3:e4:44:97:14:4b:a5:b9:ed:2b:c7:35:d8:41:d6:
04:de:ce:d9:cf:e5:a1:42:3a:af:0c:70:d1:77:af:
e8:de:c9:65:03:ce:e3:1f:3a:76:6e:ce:fa:b9:68:
90:90:64:c1:b1:9b:c5:82:59:19:c6:53:fa:2b:ac:
85:bf:e1:42:9f:4b:fc:e4:aa:55:60:8f:9f:a6:b0:
9c:49:78:99:e4:4b:89:a8:88:f6:84:94:50:04:10:
b6:6a:e6:62:7f:4f:44:07:c3:0b:23:d5:34:62:63:
3c:e2:93:19:47:3c:75:b0:b8:60:27:13:d0:6c:d5:
51:6c:63:fe:e9:3a:e9:ef:61:4a:2b:02:9b:52:5b:
32:4a:1a:a7:6d:ca:f1:ba:f4:2e:22:2b:49:08:f5:
57:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:39:B3:91:EB:F8:AD:D1:D9:CE:A7:2C:15:16:60:4F:4A:44:5B:45
X509v3 Authority Key Identifier:
keyid:47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32332d3233203d3e203538333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.136.170.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:5d:bd:4f:30:9d:09:34:f3:f4:45:4f:6f:88:6a:54:2b:f9:
a2:8f:c0:d3:e2:82:43:b2:9d:aa:46:8c:1e:37:da:4e:5d:1c:
3e:93:18:16:20:f1:dc:1b:e3:dc:31:7f:3b:93:bb:a2:c0:52:
80:21:d4:5d:e1:f5:54:43:b4:88:0c:a5:31:16:f9:1c:57:19:
77:d3:32:38:53:02:0a:a7:22:50:4a:8a:2b:99:84:15:df:d2:
c6:4a:de:09:3f:14:32:a2:89:77:54:09:24:31:3f:ac:a0:a1:
ed:8b:69:ff:47:ab:db:15:a7:d3:bd:d6:63:59:ec:39:53:2f:
bc:b3:86:bf:d9:0d:b5:7c:c8:80:5c:a9:2a:0e:bb:c1:5a:26:
9c:5c:90:71:6f:bc:e0:3a:9f:67:a7:0b:e7:06:63:6c:79:df:
36:4e:ee:48:74:f8:66:ca:dd:2d:bf:cd:12:5a:9e:8f:8c:b2:
3e:57:ca:1a:f6:d4:1c:85:7b:e4:2e:55:bb:0e:bf:18:f4:73:
4d:4b:33:2e:6e:69:86:3f:6e:d4:bc:c6:a5:93:40:a1:eb:92:
09:7d:ee:73:3e:f1:7e:a3:75:82:53:07:bb:50:4b:da:e3:35:
90:cb:fc:ac:31:7e:28:33:6b:86:ed:05:c6:5c:ca:85:8e:19:
63:c4:1b:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:53:26 2025 by rpki-client