Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa
File: 3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa (raw, json)
Hash identifier: XUjYjomn+FDHeFP35eIIQvW7MGG7ocItLx8+BF1P+J0=
Subject key identifier: 1A:09:A5:A3:9A:2E:23:6D:18:F8:91:B1:F4:6B:F5:13:D8:29:73:A9
Certificate issuer: /CN=F075D91933F7B3147C303794D6C498142A2D33C6
Certificate serial: 747FB0FF28C2A78D9F628CD95003CAB2EE28DC26
Authority key identifier: F0:75:D9:19:33:F7:B3:14:7C:30:37:94:D6:C4:98:14:2A:2D:33:C6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F075D91933F7B3147C303794D6C498142A2D33C6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa
Signing time: Tue 25 Mar 2025 07:00:01 +0000
ROA not before: Tue 25 Mar 2025 06:55:01 +0000
ROA not after: Tue 24 Mar 2026 07:00:01 +0000
asID: 59142
IP address blocks: 103.253.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:7f:b0:ff:28:c2:a7:8d:9f:62:8c:d9:50:03:ca:b2:ee:28:dc:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F075D91933F7B3147C303794D6C498142A2D33C6
Validity
Not Before: Mar 25 06:55:01 2025 GMT
Not After : Mar 24 07:00:01 2026 GMT
Subject: CN=1A09A5A39A2E236D18F891B1F46BF513D82973A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ae:55:eb:f0:be:f4:ef:01:c1:9c:42:7e:81:
d2:69:32:37:12:a4:e6:1b:93:b0:7a:d2:65:f0:9f:
11:48:73:ee:56:03:07:8e:d0:77:05:ee:19:cf:b2:
27:5c:77:91:04:5e:2b:5e:bc:c4:c7:8b:6d:bf:1a:
25:6b:75:55:42:9c:25:52:f1:aa:4a:e2:91:58:b3:
1a:35:38:45:33:63:78:bc:12:17:e9:ec:22:6a:12:
f8:0c:52:b1:8c:ab:76:02:26:93:41:9c:3b:cb:5d:
ce:5a:81:c9:67:83:71:10:08:56:81:ff:a6:11:51:
66:9c:2d:33:2a:71:9a:12:bd:1e:1d:0a:45:2f:a0:
88:f5:39:2d:e7:8a:8d:44:3b:79:50:f9:2d:85:9d:
e0:26:13:d1:2d:4d:28:4c:2f:71:b7:56:b2:54:dc:
94:a1:64:45:00:51:2a:ff:39:08:07:f3:4e:8c:f5:
82:90:8d:c4:6c:45:cd:9e:2f:22:f3:5b:9b:cd:b7:
9f:5f:a3:0a:ca:07:6e:83:fd:cd:45:98:d1:a9:7c:
54:35:1b:bd:ae:7c:8d:18:17:99:8c:ce:83:92:a2:
b8:04:09:d9:a8:88:46:19:2d:79:c2:64:78:20:69:
51:de:5a:fe:ff:d7:5b:7b:ed:41:62:7a:74:3d:e4:
8f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:09:A5:A3:9A:2E:23:6D:18:F8:91:B1:F4:6B:F5:13:D8:29:73:A9
X509v3 Authority Key Identifier:
keyid:F0:75:D9:19:33:F7:B3:14:7C:30:37:94:D6:C4:98:14:2A:2D:33:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/F075D91933F7B3147C303794D6C498142A2D33C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F075D91933F7B3147C303794D6C498142A2D33C6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/532c5121-f749-4a54-a9ec-f6c349f34310/0/3130332e3235332e3132342e302f32342d3234203d3e203539313432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.253.124.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:07:ff:1d:e0:71:e9:4d:f7:e0:2e:eb:fd:dd:82:80:ac:b0:
2c:c0:34:66:e7:22:44:0b:73:e9:8c:24:82:06:a6:8b:59:3e:
b1:09:9f:03:47:eb:51:ef:07:25:d4:53:bb:7b:2c:7f:c3:f3:
12:6b:31:66:80:85:ac:4b:f9:df:c4:7b:f4:e9:35:4e:92:b2:
95:54:8c:be:e1:03:7b:3b:54:86:97:c8:1e:fc:4a:ed:70:10:
91:bf:61:e6:f0:71:25:68:c6:ea:fd:68:c9:55:eb:b8:8d:c8:
27:cd:c7:b7:80:60:22:c1:95:c9:e4:74:85:b4:be:cc:ad:52:
7b:ec:15:15:b9:2c:16:42:1c:e1:e7:d1:9c:f9:d1:b3:3a:51:
e0:a0:61:43:e2:18:43:9c:d8:b6:a6:25:30:b7:d5:5d:14:f4:
29:e2:16:5e:a7:87:c3:6b:9f:ad:a8:79:f3:90:20:35:f7:34:
85:fc:a8:6e:26:52:ec:25:8f:ba:17:48:a1:11:cd:10:12:90:
b9:df:70:75:59:20:54:62:51:36:98:7c:2d:ef:7b:a9:7f:62:
a1:56:7d:81:b4:ff:7a:b7:e8:6d:3a:16:a9:ad:ad:b5:10:3c:
e0:8a:1f:d7:59:3b:02:a4:f3:58:d5:99:9d:ef:29:6d:bd:89:
1f:e1:94:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:54 2025 by rpki-client