Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/50d00718-5210-4438-b64d-62ec1f3ebcd0/0/3130332e3131332e3132342e302f32322d3232203d3e20313337333433.roa
File: 3130332e3131332e3132342e302f32322d3232203d3e20313337333433.roa (raw, json)
Hash identifier: PA93RwBGZzvBREAFM1iYNGPBBAoGkHxnKXuygsv1ptE=
Subject key identifier: F5:D9:C4:92:8A:0E:91:74:86:CA:D2:7E:F1:76:D6:DC:D5:55:DF:1D
Certificate issuer: /CN=94F6C26027B9F72AA8701D1296627FA57809A6F3
Certificate serial: 23151E36FDF159B1B3C6B166492F66BB35E7ACA1
Authority key identifier: 94:F6:C2:60:27:B9:F7:2A:A8:70:1D:12:96:62:7F:A5:78:09:A6:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F6C26027B9F72AA8701D1296627FA57809A6F3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/50d00718-5210-4438-b64d-62ec1f3ebcd0/0/3130332e3131332e3132342e302f32322d3232203d3e20313337333433.roa
Signing time: Fri 24 Jan 2025 03:00:02 +0000
ROA not before: Fri 24 Jan 2025 02:55:02 +0000
ROA not after: Fri 23 Jan 2026 03:00:02 +0000
asID: 137343
IP address blocks: 103.113.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:15:1e:36:fd:f1:59:b1:b3:c6:b1:66:49:2f:66:bb:35:e7:ac:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94F6C26027B9F72AA8701D1296627FA57809A6F3
Validity
Not Before: Jan 24 02:55:02 2025 GMT
Not After : Jan 23 03:00:02 2026 GMT
Subject: CN=F5D9C4928A0E917486CAD27EF176D6DCD555DF1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:22:20:2c:33:74:e8:9e:6f:cc:17:5b:ce:bd:
c1:27:dd:25:08:d4:5a:75:b3:9c:df:7d:36:23:83:
89:9a:b8:39:d6:48:8a:78:76:c1:23:71:5e:e2:b0:
f1:d7:f8:c1:a2:bc:3a:f8:2f:cb:62:0a:97:f4:bb:
9e:2d:2e:35:e6:09:b1:5e:a4:96:20:c4:59:2d:df:
42:69:87:65:47:d3:39:29:4b:dd:c7:c6:94:02:ce:
a2:37:ac:59:34:3e:c6:44:bc:7e:36:74:19:86:38:
3f:96:fe:c5:69:37:28:17:e7:12:af:64:3d:58:f0:
23:91:c4:cf:40:91:f3:29:2b:3b:1e:7e:32:8f:fd:
db:da:39:60:55:0c:39:e8:ee:22:94:3f:bb:c1:9e:
24:1c:41:d0:68:f7:b8:13:fe:5f:dc:05:6e:ce:31:
86:43:5c:51:4d:20:ab:dc:0f:10:72:fc:37:4a:01:
5e:a1:a6:35:00:01:8a:e2:05:0b:f8:a0:45:26:14:
3b:bf:04:e1:69:f1:d6:e1:ee:55:59:2d:66:d2:cc:
c5:47:4e:20:92:f9:57:d8:e5:82:49:66:c5:fa:7c:
e7:eb:a7:4d:9e:ed:c6:97:37:c2:3e:63:3b:28:2a:
5a:6e:71:57:26:1a:f4:e7:39:85:a6:4d:79:3c:c6:
02:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D9:C4:92:8A:0E:91:74:86:CA:D2:7E:F1:76:D6:DC:D5:55:DF:1D
X509v3 Authority Key Identifier:
keyid:94:F6:C2:60:27:B9:F7:2A:A8:70:1D:12:96:62:7F:A5:78:09:A6:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/50d00718-5210-4438-b64d-62ec1f3ebcd0/0/94F6C26027B9F72AA8701D1296627FA57809A6F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/94F6C26027B9F72AA8701D1296627FA57809A6F3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50d00718-5210-4438-b64d-62ec1f3ebcd0/0/3130332e3131332e3132342e302f32322d3232203d3e20313337333433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.113.124.0/22
Signature Algorithm: sha256WithRSAEncryption
29:cd:bb:81:bf:75:6a:46:5a:5f:1d:b4:10:b8:2d:9f:c3:bf:
f1:c7:71:56:8e:6c:41:1e:4c:1b:eb:46:e7:cd:0c:12:50:ed:
ec:79:12:49:58:87:85:04:9d:38:bb:f3:38:05:b5:3f:f5:2a:
ec:c5:a6:a5:33:2f:24:61:ec:b2:c5:43:95:c9:e1:f8:43:56:
db:4a:40:67:7f:99:fb:62:f8:e8:b7:91:5f:47:21:ea:92:da:
57:ef:d9:59:48:22:37:4a:17:1c:81:32:90:66:6b:0e:66:7c:
83:69:f2:08:69:4a:20:4f:39:6e:01:ef:b0:e4:48:a1:94:59:
84:67:8a:90:d3:7d:33:42:43:82:66:c2:3f:4f:08:cd:78:49:
0f:cb:b6:1e:70:7d:03:c3:1c:94:49:5f:ac:3b:97:3d:0f:a3:
c5:ff:1c:6f:d0:5b:84:10:10:c7:c3:fe:a9:d0:db:e5:20:34:
a2:01:c1:dd:1a:7e:9a:6e:1c:4e:dc:a5:d4:4b:13:94:08:09:
1f:90:6e:77:e6:8c:78:e5:bf:b5:5c:d3:4e:85:2c:3f:a5:2e:
65:7e:38:41:4a:b1:39:29:62:b6:28:e5:f2:77:c9:0c:35:18:
79:7e:d1:c7:e6:85:dd:b2:fe:41:48:5d:56:86:47:7d:a5:82:
04:9f:08:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:34:50 2025 by rpki-client