Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa
File: 3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa (raw, json)
Hash identifier: AzlMFbzrHGcEG4v19yHIw2cVpPbbaGWfk/zoDkydCtA=
Subject key identifier: AC:63:8A:57:1C:08:2B:15:F8:2A:D0:06:12:FF:8C:F2:D9:49:03:38
Certificate issuer: /CN=940E05E54E6B685EFBC6114D1E913804318364AB
Certificate serial: 4B64BF87AC296C8D1D7B5616922D5F4E883B5427
Authority key identifier: 94:0E:05:E5:4E:6B:68:5E:FB:C6:11:4D:1E:91:38:04:31:83:64:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa
Signing time: Thu 16 Jan 2025 11:00:03 +0000
ROA not before: Thu 16 Jan 2025 10:55:03 +0000
ROA not after: Thu 15 Jan 2026 11:00:03 +0000
asID: 141952
IP address blocks: 103.166.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:64:bf:87:ac:29:6c:8d:1d:7b:56:16:92:2d:5f:4e:88:3b:54:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=940E05E54E6B685EFBC6114D1E913804318364AB
Validity
Not Before: Jan 16 10:55:03 2025 GMT
Not After : Jan 15 11:00:03 2026 GMT
Subject: CN=AC638A571C082B15F82AD00612FF8CF2D9490338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:de:01:f8:35:f5:81:86:03:5e:b2:4d:e8:d3:
83:a6:99:cd:aa:1c:3d:eb:a2:22:ee:3d:1f:de:5f:
f2:71:3b:55:0a:99:01:54:75:39:7e:b7:21:0f:87:
ec:26:94:ae:5c:64:4a:21:12:e6:47:59:5f:ef:ea:
7e:c6:2d:90:02:ba:45:c7:ae:49:d5:f5:03:a2:5b:
bd:ac:18:3d:cd:3c:6c:a9:5b:2b:d3:a6:7c:e9:5c:
d7:7d:b2:db:c0:85:87:cb:79:fc:83:86:c1:bd:a8:
20:0c:4f:08:fc:cc:2c:10:64:5b:d3:ce:5e:63:2c:
62:19:33:f8:ca:40:ac:60:d2:6d:a9:2c:54:3e:20:
cf:f2:7c:04:f6:64:bc:ea:08:a8:0a:75:eb:0d:5f:
69:84:61:c2:99:6e:b3:02:0f:b7:93:77:5d:6b:8a:
43:6c:c1:6c:9d:2a:ab:a2:2b:c8:39:86:9b:24:39:
72:a7:55:ee:8b:61:48:72:66:60:da:d4:8f:c7:71:
4c:77:de:18:8b:0c:67:cf:0d:87:1a:fa:49:0f:59:
16:58:57:77:72:b7:27:e2:8c:33:63:0a:a7:0c:d9:
4d:87:10:de:e6:7f:86:f3:63:da:06:07:6d:6e:1e:
82:4e:1a:83:a0:15:df:59:71:65:b6:2d:7b:54:53:
ee:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:63:8A:57:1C:08:2B:15:F8:2A:D0:06:12:FF:8C:F2:D9:49:03:38
X509v3 Authority Key Identifier:
keyid:94:0E:05:E5:4E:6B:68:5E:FB:C6:11:4D:1E:91:38:04:31:83:64:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.166.161.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:5a:f8:4a:12:f8:99:bb:ed:5f:54:72:a9:40:3b:5c:3a:4f:
c5:4d:67:c9:f4:e7:f9:6a:5d:0b:84:db:16:44:b2:e1:2d:43:
6c:d9:06:22:5f:fb:2a:98:22:4f:b5:18:0d:17:62:b2:6d:54:
4b:9f:44:04:87:f8:c8:11:46:40:63:10:cb:ea:e4:50:be:b7:
5f:d9:67:c5:f5:57:0f:58:d9:d9:9e:98:ba:73:e2:b4:d8:a4:
e2:37:a4:1a:f7:96:45:65:83:cd:86:8f:fb:36:7e:2f:95:66:
05:58:75:34:b6:70:c0:a3:2e:48:a7:3b:f4:3b:a1:54:4c:27:
e1:0e:16:58:02:63:b1:e7:7c:a5:dd:ca:42:61:ff:ff:eb:25:
a3:cc:8d:23:2f:0d:69:8d:0a:5b:2c:40:f6:d4:f2:94:ac:58:
44:b3:5b:5b:16:33:90:e0:11:a7:9d:e3:80:f5:1a:43:cd:06:
76:ed:3f:a7:51:33:98:01:cd:4a:ff:1b:f1:0f:bc:4f:fe:a4:
df:36:6c:bc:9e:ee:a8:5e:2b:d3:09:9e:df:11:cc:7e:26:5c:
6a:5c:79:c3:b7:5a:75:bc:70:37:cb:84:f4:de:11:e1:27:cb:
14:ff:aa:f1:86:b3:26:16:41:bc:4e:a1:1e:72:7d:cd:2b:59:
b3:ca:27:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:40:22 2025 by rpki-client