Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa
File: 3130332e3134332e32342e302f32342d3234203d3e203536323432.roa (raw, json)
Hash identifier: 8zQK8AXHLSApMmYd7tjNJsIjZnWf3yDUEAsA1LFehWw=
Subject key identifier: 02:61:65:C9:5D:BA:76:3E:1E:6C:DA:3D:09:AC:1D:BD:01:A5:0D:71
Certificate issuer: /CN=C380A411E3CE15C60336341BB4B0994B307B920D
Certificate serial: 175FCBB4BC1F178301A04070A30C03EB798DF4CE
Authority key identifier: C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa
Signing time: Thu 09 Jan 2025 09:02:30 +0000
ROA not before: Thu 09 Jan 2025 08:57:30 +0000
ROA not after: Thu 08 Jan 2026 09:02:30 +0000
asID: 56242
IP address blocks: 103.143.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:5f:cb:b4:bc:1f:17:83:01:a0:40:70:a3:0c:03:eb:79:8d:f4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C380A411E3CE15C60336341BB4B0994B307B920D
Validity
Not Before: Jan 9 08:57:30 2025 GMT
Not After : Jan 8 09:02:30 2026 GMT
Subject: CN=026165C95DBA763E1E6CDA3D09AC1DBD01A50D71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e8:ab:b2:4a:61:12:5c:ef:42:0e:a5:fa:18:
b5:bb:f6:21:68:f6:d8:91:31:34:f3:93:28:b3:08:
af:47:0f:06:0f:26:28:c5:f4:cc:5f:ff:45:a8:2d:
73:4f:00:cd:d9:60:e1:d2:74:e2:6e:e5:5d:14:05:
c5:18:48:93:97:9c:42:b3:c6:ae:70:45:ed:91:b7:
4b:04:9e:5f:36:da:79:d1:40:93:72:25:fc:1a:da:
0a:70:4a:45:c3:1b:d6:e7:8c:99:a0:3d:21:0b:3f:
10:22:a6:91:f0:53:75:c8:5c:84:fc:c0:fb:c1:40:
59:47:39:a0:8d:c6:58:ee:5a:46:58:b7:43:f9:a1:
26:f4:94:04:2e:f1:b0:c5:79:d5:a2:5b:da:14:41:
8b:0c:4f:56:90:bf:d9:82:21:cd:a4:49:55:ea:1a:
85:f5:49:bb:bb:22:69:70:bd:90:14:fe:da:7a:28:
bd:9a:85:63:31:ab:14:f2:bb:c6:e3:ac:01:ab:69:
d8:ef:d6:eb:00:d6:dd:3e:6e:28:9a:73:b6:aa:66:
2e:e4:cb:af:6d:58:69:2e:65:93:98:da:68:bf:a1:
6a:d7:67:f5:44:eb:b1:73:70:41:7c:f7:88:08:cc:
d5:61:b5:0a:85:82:85:b2:b7:81:b9:80:12:ae:d1:
68:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:61:65:C9:5D:BA:76:3E:1E:6C:DA:3D:09:AC:1D:BD:01:A5:0D:71
X509v3 Authority Key Identifier:
keyid:C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.143.24.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:e9:00:a9:d4:c0:0a:0f:e1:86:98:47:fc:08:ae:c2:ff:35:
3e:bd:c9:af:21:b9:c4:1c:44:b6:31:f8:47:10:22:4a:ba:b9:
e4:27:6a:28:88:b0:cc:1f:4c:b2:19:37:9d:d8:c0:20:26:31:
ef:46:b8:d4:14:f3:08:c1:a0:d4:33:d6:8a:ad:87:db:03:e5:
8d:c0:fe:b8:97:db:02:a5:dd:b6:dc:83:1f:e4:02:04:fc:08:
55:4d:5c:b4:26:42:82:4a:28:fc:fc:1a:51:55:74:3d:72:c8:
11:3e:dc:21:56:b0:cd:43:46:7e:35:38:22:4c:dc:5f:12:9a:
92:e9:32:79:19:8e:63:b3:da:d5:08:c8:b7:2d:0e:b3:0c:9c:
c0:b9:71:a9:28:fb:fd:c2:7c:47:42:6e:fd:2c:e5:63:cc:12:
3a:14:a7:fd:66:3b:b7:a8:2e:08:56:91:b7:af:47:66:4a:1b:
30:2c:88:a5:9f:ff:f8:e2:bc:ca:b2:cd:63:70:0e:3e:8e:84:
9a:83:d3:a0:cf:34:2d:e4:28:77:ab:6c:30:a1:e1:b1:d5:44:
04:f2:23:59:41:49:d8:fd:99:16:5d:46:52:e4:f9:07:2c:4e:
d0:41:78:64:0b:db:70:30:c9:91:2c:41:c8:8f:37:20:d0:96:
a0:53:70:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:52:49 2025 by rpki-client