Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/3130332e3138302e39352e302f32342d3234203d3e20313439333538.roa
File: 3130332e3138302e39352e302f32342d3234203d3e20313439333538.roa (raw, json)
Hash identifier: gZ7MIdwunPoLq27viYGE8zwAvrRl3NrvQYfYS07O7wA=
Subject key identifier: 42:E1:74:FD:FB:2E:C4:A3:AD:78:81:DE:CB:31:6A:4B:12:6C:06:78
Certificate issuer: /CN=8E5335B45EE371DC463E5C65783A244FD1846656
Certificate serial: 2CF94C23A9081300619ABB3CB11F08CCD9E291EF
Authority key identifier: 8E:53:35:B4:5E:E3:71:DC:46:3E:5C:65:78:3A:24:4F:D1:84:66:56
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E5335B45EE371DC463E5C65783A244FD1846656.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/3130332e3138302e39352e302f32342d3234203d3e20313439333538.roa
Signing time: Tue 04 Mar 2025 08:00:01 +0000
ROA not before: Tue 04 Mar 2025 07:55:01 +0000
ROA not after: Tue 03 Mar 2026 08:00:01 +0000
asID: 149358
IP address blocks: 103.180.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:f9:4c:23:a9:08:13:00:61:9a:bb:3c:b1:1f:08:cc:d9:e2:91:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E5335B45EE371DC463E5C65783A244FD1846656
Validity
Not Before: Mar 4 07:55:01 2025 GMT
Not After : Mar 3 08:00:01 2026 GMT
Subject: CN=42E174FDFB2EC4A3AD7881DECB316A4B126C0678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ba:f0:a8:da:58:ac:d8:98:9d:9d:5d:4c:cf:
2a:dc:ac:a5:62:2f:7c:dd:21:90:db:74:45:9b:d9:
22:40:64:9e:5c:7a:b5:59:54:5f:92:71:e0:a8:bd:
2f:63:f2:f7:5d:c1:57:0c:1e:1c:76:32:5d:44:a1:
e3:6c:f8:ea:c7:b4:88:d8:a7:36:ce:e8:c7:08:33:
46:51:71:c0:35:3e:71:e7:3c:bc:c2:44:04:72:51:
d5:44:37:13:eb:c8:1e:12:43:b7:eb:ce:e6:ba:fe:
34:f1:5a:a6:db:56:2d:ee:5c:59:b1:30:c6:27:df:
b0:8c:9b:41:5d:a4:38:20:92:3a:65:c8:01:d7:b3:
87:fc:d1:cc:c7:a6:a5:37:ee:86:9b:31:5a:33:52:
e8:67:1e:52:8d:80:fc:c4:4c:29:84:0f:f9:ae:8d:
c1:b1:45:f5:bc:70:e9:7b:83:ae:28:fe:5e:d4:df:
d5:9e:f9:04:db:9c:ad:0d:95:6a:ab:a9:97:09:05:
7b:9c:8d:d0:cf:c2:84:50:df:23:4a:27:85:ff:ca:
1e:a4:2e:9f:fc:d4:fb:2a:27:64:f3:a7:ff:c2:c5:
a2:bf:22:16:62:88:56:41:02:73:7e:28:d5:3b:ff:
3d:b7:93:0f:8d:be:04:82:51:15:b5:1d:6c:38:96:
48:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E1:74:FD:FB:2E:C4:A3:AD:78:81:DE:CB:31:6A:4B:12:6C:06:78
X509v3 Authority Key Identifier:
keyid:8E:53:35:B4:5E:E3:71:DC:46:3E:5C:65:78:3A:24:4F:D1:84:66:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/8E5335B45EE371DC463E5C65783A244FD1846656.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8E5335B45EE371DC463E5C65783A244FD1846656.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cc2e5b-3b91-42af-8203-5e3b91704843/0/3130332e3138302e39352e302f32342d3234203d3e20313439333538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.180.95.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:cb:0f:fc:6c:0c:72:fc:e8:c3:43:dd:9f:99:ef:fe:11:3c:
23:d4:39:69:90:25:14:59:0a:f3:c5:db:ff:27:f5:5f:4a:64:
82:4d:33:d6:81:3c:81:bc:f1:23:a3:7a:71:95:95:2a:5a:63:
7c:0a:01:7c:0d:99:46:7d:c1:9b:6e:86:03:56:21:02:f8:fe:
dd:1c:22:ae:09:37:4d:99:f1:96:0e:db:df:69:ec:1d:2c:3c:
78:b9:3f:18:d6:4d:e9:67:7a:90:cb:77:3b:c5:db:d1:6a:97:
73:d1:00:66:d2:c5:fb:ba:ce:02:4c:3d:af:25:ed:a7:a0:22:
a6:c4:a4:1c:6d:18:b8:33:b1:52:a7:47:3d:de:39:8c:e1:7e:
8e:5f:f5:76:fe:0f:21:aa:d6:ef:53:97:63:6d:ca:3a:06:ee:
94:8b:3c:51:ab:ae:e6:30:d5:53:c1:c4:28:31:62:51:56:cf:
4b:2d:b9:c1:98:51:fd:bb:77:a9:87:64:9c:72:20:fe:7c:43:
c7:a5:88:f7:c2:3f:94:f6:35:38:d4:d4:bf:b5:42:c2:a8:74:
68:85:3a:85:2c:fd:9e:c1:6f:88:33:b8:32:76:51:94:c8:85:
36:3d:fb:3f:8d:2b:fd:8c:66:bd:af:e0:cc:36:69:3e:bc:e7:
00:63:4a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:10:56 2025 by rpki-client