Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa
File: 3130332e3134332e32352e302f32342d3234203d3e203536323432.roa (raw, json)
Hash identifier: 6KZnCoun2OeRfJhfU31JgFdGtJDoY9NCrchaCehwgfg=
Subject key identifier: 52:D6:31:E6:9B:38:A2:C9:C7:0B:81:A9:29:C0:4A:52:F2:9A:9D:E9
Certificate issuer: /CN=C380A411E3CE15C60336341BB4B0994B307B920D
Certificate serial: 25856453A0472AB9800DDF0FA95EFDF88AD29AE3
Authority key identifier: C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa
Signing time: Thu 09 Jan 2025 09:02:30 +0000
ROA not before: Thu 09 Jan 2025 08:57:30 +0000
ROA not after: Thu 08 Jan 2026 09:02:30 +0000
asID: 56242
IP address blocks: 103.143.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:85:64:53:a0:47:2a:b9:80:0d:df:0f:a9:5e:fd:f8:8a:d2:9a:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C380A411E3CE15C60336341BB4B0994B307B920D
Validity
Not Before: Jan 9 08:57:30 2025 GMT
Not After : Jan 8 09:02:30 2026 GMT
Subject: CN=52D631E69B38A2C9C70B81A929C04A52F29A9DE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:60:39:d0:2c:b6:eb:9a:87:63:3e:67:88:70:
b3:a9:81:35:50:45:a3:21:85:60:9e:1d:f0:12:82:
4d:bc:33:86:ef:c6:2c:a7:46:72:0a:74:a1:ec:67:
95:72:9d:9c:b0:06:b3:92:02:a9:20:02:60:91:e9:
50:57:e8:2c:1d:15:2b:6d:ec:78:74:51:82:1c:74:
ce:18:5e:5d:ae:a7:2d:f8:26:ae:5c:1b:98:a0:3e:
79:82:48:a0:22:63:73:2e:26:4d:cf:da:0b:76:3b:
c0:93:99:93:b9:86:b9:12:bd:b3:bf:cb:28:8d:02:
46:bb:2f:ff:a0:e3:14:07:ba:8e:77:bc:20:02:df:
c9:d9:11:f7:bf:a7:ba:b9:ec:64:a3:3b:b7:73:6e:
c9:d6:d3:6d:56:d9:95:3a:be:a4:4f:88:15:7e:cb:
f5:a7:bb:95:22:87:f4:32:c3:ba:04:a0:31:cf:e4:
4f:0c:93:f9:4f:68:f4:67:9c:be:74:17:a8:df:d6:
87:ad:9c:f5:ac:3c:7c:25:1d:bb:06:20:a2:86:99:
9b:63:ff:03:c1:44:f9:9c:74:a6:bf:cc:23:28:1d:
ef:f2:08:6c:81:e8:31:63:75:d9:ec:8f:3d:6d:94:
67:fe:44:60:df:31:b3:22:66:36:ea:d7:8c:49:ff:
23:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D6:31:E6:9B:38:A2:C9:C7:0B:81:A9:29:C0:4A:52:F2:9A:9D:E9
X509v3 Authority Key Identifier:
keyid:C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.143.25.0/24
Signature Algorithm: sha256WithRSAEncryption
35:4f:b4:02:ba:51:69:cd:48:f1:d1:cd:fb:44:91:b6:93:35:
e7:3b:bd:ed:26:b5:58:fb:fd:d5:c0:28:e8:27:3b:40:3d:0d:
5c:de:c4:29:6f:d1:fe:85:dd:52:b9:b4:e1:c3:bd:ac:d4:5c:
33:b4:33:80:50:8f:24:16:d1:e4:69:83:ab:42:35:ba:ce:37:
a2:c2:10:df:53:c3:77:3e:10:55:f9:91:45:bf:be:d3:7a:2d:
3d:7c:50:f9:cf:d8:ba:f3:c8:90:a3:83:ac:fe:db:ae:0c:c5:
8a:b5:3c:94:3c:0b:e2:4d:c2:b8:82:81:75:6b:6c:fb:89:f4:
c9:a5:33:62:16:a8:7b:07:b0:84:61:97:48:fe:75:27:8f:75:
a7:e8:54:f2:7c:a0:bf:94:bb:37:0a:34:01:cf:87:1f:4e:0f:
67:e3:29:ad:d4:d7:a9:8f:d5:25:27:7f:67:1f:55:17:05:4b:
ee:15:b3:6c:c2:0d:83:fe:29:7e:af:31:ca:91:39:2f:a5:c9:
04:e4:ff:4c:6d:5a:f7:36:78:51:6c:04:09:1a:c7:a9:44:9f:
fd:c0:e8:80:9e:9b:dd:46:69:e7:0a:a2:32:e1:b6:1b:d4:62:
80:2a:31:c4:c9:5b:6f:46:15:d4:cd:9e:f8:a1:dd:22:76:18:
e6:e0:47:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:54:03 2025 by rpki-client