Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134322e302f32342d3234203d3e20313437303930.roa
File: 3130332e3137332e3134322e302f32342d3234203d3e20313437303930.roa (raw, json)
Hash identifier: HBcmtBf124LaJLrEpyA0+OcG5c4rLC3yDarVnj9n8nQ=
Subject key identifier: E8:9D:AC:E1:6C:A7:F6:4F:A1:F7:64:EB:A8:1A:AD:EB:70:4E:A2:1B
Certificate issuer: /CN=4515472806DD01B59715410103D51C05E4F28B96
Certificate serial: 0CFE9806ABB7CA31B59E4C5C413E58A40208A8F8
Authority key identifier: 45:15:47:28:06:DD:01:B5:97:15:41:01:03:D5:1C:05:E4:F2:8B:96
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134322e302f32342d3234203d3e20313437303930.roa
Signing time: Thu 23 Jan 2025 02:00:00 +0000
ROA not before: Thu 23 Jan 2025 01:55:00 +0000
ROA not after: Thu 22 Jan 2026 02:00:00 +0000
asID: 147090
IP address blocks: 103.173.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:fe:98:06:ab:b7:ca:31:b5:9e:4c:5c:41:3e:58:a4:02:08:a8:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4515472806DD01B59715410103D51C05E4F28B96
Validity
Not Before: Jan 23 01:55:00 2025 GMT
Not After : Jan 22 02:00:00 2026 GMT
Subject: CN=E89DACE16CA7F64FA1F764EBA81AADEB704EA21B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c4:6d:a2:60:a5:b9:a4:e7:c9:07:fe:0c:2d:
07:3c:cc:05:3a:ba:b4:a4:d8:58:ca:a1:b7:b4:d6:
b6:cf:16:33:09:71:eb:a5:b7:9c:89:e1:35:f2:1b:
a6:e3:e0:1e:84:22:6c:5d:cf:f3:48:fb:8e:fb:46:
08:4a:dc:d5:f5:93:01:a8:c9:b0:08:e6:a0:08:f7:
f2:26:09:76:31:a4:f4:63:5e:a6:a4:0f:54:4c:e3:
09:e1:94:54:c0:6e:83:e1:6a:28:68:e6:38:dd:dc:
5b:ca:38:73:da:52:aa:ec:aa:f3:b9:5d:02:64:19:
d1:e2:ed:a4:9b:b2:43:52:12:5b:20:48:be:ff:0e:
69:45:44:fb:6d:d6:d5:9a:7d:e7:6a:e5:86:84:d1:
fb:c0:82:39:50:63:e0:53:d2:a6:91:48:b8:68:25:
e3:a3:f1:d2:fc:84:61:8d:48:95:d7:45:86:93:2e:
49:49:34:c3:54:32:64:f0:95:4e:61:42:bb:6f:8a:
1d:43:62:33:a6:8c:19:ff:0d:d8:e2:69:41:3d:f0:
18:ca:26:37:4d:bb:d1:0e:26:6d:4e:03:5d:a9:df:
af:94:37:6d:c9:ea:ad:06:eb:64:41:c3:54:35:9a:
50:a7:f5:e8:8d:d6:2e:d3:d1:66:a7:3a:60:db:dd:
5c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9D:AC:E1:6C:A7:F6:4F:A1:F7:64:EB:A8:1A:AD:EB:70:4E:A2:1B
X509v3 Authority Key Identifier:
keyid:45:15:47:28:06:DD:01:B5:97:15:41:01:03:D5:1C:05:E4:F2:8B:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134322e302f32342d3234203d3e20313437303930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.173.142.0/24
Signature Algorithm: sha256WithRSAEncryption
54:af:05:d8:ba:0e:56:a2:58:91:f1:98:f8:68:6a:d0:cd:38:
c2:51:8d:81:e3:d6:1b:ee:88:65:f5:93:d7:d4:33:63:be:db:
cd:bc:b7:38:16:d9:27:f8:af:29:00:98:d4:f2:c0:17:c1:3a:
93:f2:d6:29:72:71:df:ab:e0:b4:c6:41:50:98:83:eb:5c:5c:
68:80:8d:00:b0:15:59:a7:12:9b:42:8d:5b:49:0f:58:8f:09:
d3:fb:ee:2f:c4:4b:d7:62:c0:f3:49:c5:0d:fc:ed:74:7c:2a:
e5:42:76:72:a9:98:f5:a5:05:c0:6b:e1:e4:38:df:24:30:4c:
fe:bb:96:80:14:e7:ca:82:d0:d3:3e:ce:a8:ff:28:57:0c:bc:
af:ec:c2:e3:bf:46:f4:14:87:06:c7:0e:e2:11:a2:2d:d5:b3:
aa:7a:d8:31:fc:f7:eb:14:cd:08:9b:44:21:a3:53:d1:2e:7f:
4c:0c:7a:a0:54:1c:a4:bd:60:71:19:5e:3f:72:0c:f1:2e:7b:
7a:b7:87:5a:2e:ae:d0:ad:cd:d7:a6:c9:8a:84:d9:60:e5:d4:
1a:5f:b8:7d:d8:a6:08:17:c7:f6:3e:83:8d:d5:ea:89:53:cd:
ef:be:f6:7c:7d:5d:75:5d:f5:07:b4:59:3c:51:81:18:88:ff:
0f:0b:2a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:36:54 2025 by rpki-client