Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32342d3234203d3e20313530393830.roa
File: 3130332e37302e3132322e302f32342d3234203d3e20313530393830.roa (raw, json)
Hash identifier: 6+zEkFvJJLps0Ow0oFFDpd+JwPXLZVdctd3PSfCUG8Q=
Subject key identifier: C9:D4:BA:94:E3:27:80:CA:9F:3C:DF:00:13:DC:AA:E9:FF:BE:D9:12
Certificate issuer: /CN=DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16
Certificate serial: 21C383DADEAFB84421DE416E914DD33E6B5B0E0D
Authority key identifier: DD:5A:CD:C0:B2:D0:91:54:5E:18:5E:B1:FA:80:C0:00:7C:9A:FA:16
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32342d3234203d3e20313530393830.roa
Signing time: Thu 27 Mar 2025 15:00:00 +0000
ROA not before: Thu 27 Mar 2025 14:55:00 +0000
ROA not after: Thu 26 Mar 2026 15:00:00 +0000
asID: 150980
IP address blocks: 103.70.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:c3:83:da:de:af:b8:44:21:de:41:6e:91:4d:d3:3e:6b:5b:0e:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16
Validity
Not Before: Mar 27 14:55:00 2025 GMT
Not After : Mar 26 15:00:00 2026 GMT
Subject: CN=C9D4BA94E32780CA9F3CDF0013DCAAE9FFBED912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4f:0f:4f:41:85:e8:a2:aa:ba:0c:c5:37:a2:
9c:47:d1:ae:ed:73:64:6b:da:95:79:65:95:12:44:
39:29:19:88:2e:d1:4e:7e:50:29:02:7a:9d:b9:f4:
dc:1d:ac:ef:6b:ff:8b:d5:b2:64:c8:df:9c:f3:51:
fd:b0:48:97:2e:e3:d4:38:d5:d9:5c:4d:36:ca:37:
c5:e3:c9:38:51:68:97:05:97:8a:96:c8:8b:04:91:
b6:25:5f:4e:69:33:04:28:d4:b7:9a:67:08:84:8c:
75:83:7d:d8:7d:50:5b:6d:bf:63:eb:87:d1:63:75:
32:70:f1:29:6e:43:2b:a0:73:12:dd:40:c0:a2:52:
6c:c4:26:25:f8:f4:d4:20:20:2c:bd:55:8a:95:25:
97:05:99:df:ce:10:ce:7a:fd:ca:a4:e8:fc:83:74:
a4:be:1c:65:f6:ef:59:dc:32:8d:4f:16:22:d6:02:
28:50:33:e4:87:ca:80:4f:0d:ee:25:19:87:e6:36:
b6:77:3a:d9:69:c9:ac:ff:1b:08:fc:f1:b9:28:2a:
78:65:54:e1:fc:2d:35:dc:c2:b9:64:b7:7a:1c:74:
aa:61:00:f7:d0:cd:21:dc:0b:8e:38:b0:1d:91:83:
46:6a:2a:2a:12:af:86:c9:ef:63:eb:87:c9:72:62:
ca:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D4:BA:94:E3:27:80:CA:9F:3C:DF:00:13:DC:AA:E9:FF:BE:D9:12
X509v3 Authority Key Identifier:
keyid:DD:5A:CD:C0:B2:D0:91:54:5E:18:5E:B1:FA:80:C0:00:7C:9A:FA:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD5ACDC0B2D091545E185EB1FA80C0007C9AFA16.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/53250662-3eef-4aa9-9ede-5629d5b6ea95/0/3130332e37302e3132322e302f32342d3234203d3e20313530393830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.70.122.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:8d:4c:79:fd:6d:4c:11:88:d1:61:33:69:71:82:37:49:a5:
72:23:59:81:57:52:ae:58:28:d8:d7:f6:16:27:80:94:96:a3:
32:ac:27:e7:1b:d6:3c:6c:6e:89:d3:ce:3c:9b:eb:7e:55:f7:
ee:12:f0:37:fb:9b:13:8d:0b:7f:11:4b:56:54:0d:79:89:78:
56:d1:f9:71:84:ae:ca:c1:22:5e:84:2a:26:fd:3a:2b:c5:b5:
75:1a:f9:83:e2:f6:b6:de:94:b8:f7:01:cb:8a:85:11:fa:45:
1c:9c:bb:6e:4d:b3:16:bb:0e:2c:2d:86:81:88:80:51:17:b7:
ce:28:96:c9:f0:14:e2:28:7e:29:8d:42:ce:c8:2d:cc:ed:c6:
82:b0:c5:7f:9d:ed:1f:78:8b:8e:2e:06:b5:cf:11:dd:f1:f6:
1a:20:c2:af:75:25:97:af:29:b3:c3:71:d6:7c:ac:79:a6:0c:
37:cf:ec:e4:33:e7:5a:9a:dd:d3:bb:53:fe:2f:ef:4e:bf:8c:
e8:53:9b:f3:61:8d:5d:42:93:7c:7f:65:34:36:64:b0:de:76:
c1:46:96:03:36:ee:ee:08:6b:9f:a1:71:52:f8:15:d3:b1:f7:
d3:28:01:c5:1c:f0:dd:0d:4a:4a:a6:b3:50:97:7a:e1:03:66:
d9:da:06:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:01:31 2025 by rpki-client