Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/3130332e3137352e3233362e302f32332d3234203d3e20313437313231.roa
File: 3130332e3137352e3233362e302f32332d3234203d3e20313437313231.roa (raw, json)
Hash identifier: LFOqzDAyDWWdrBcQS4m60ydnXXk+fQv19GMLbDiq/ow=
Subject key identifier: 4C:01:E8:68:27:0F:86:49:0A:AC:9E:6E:36:88:9B:CA:7A:99:CE:1E
Certificate issuer: /CN=E9FC7AF3FFBA009863D104EDE1B45DA0592535E6
Certificate serial: 0B01ACA62A49536759422DEE1F04B2732E38D494
Authority key identifier: E9:FC:7A:F3:FF:BA:00:98:63:D1:04:ED:E1:B4:5D:A0:59:25:35:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/3130332e3137352e3233362e302f32332d3234203d3e20313437313231.roa
Signing time: Sat 18 Jan 2025 10:00:01 +0000
ROA not before: Sat 18 Jan 2025 09:55:01 +0000
ROA not after: Sat 17 Jan 2026 10:00:01 +0000
asID: 147121
IP address blocks: 103.175.236.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:01:ac:a6:2a:49:53:67:59:42:2d:ee:1f:04:b2:73:2e:38:d4:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E9FC7AF3FFBA009863D104EDE1B45DA0592535E6
Validity
Not Before: Jan 18 09:55:01 2025 GMT
Not After : Jan 17 10:00:01 2026 GMT
Subject: CN=4C01E868270F86490AAC9E6E36889BCA7A99CE1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:41:4c:5d:d1:2e:72:90:be:0b:9a:ee:27:8a:
bc:b9:8e:5d:e4:d2:7d:03:12:c2:cd:d8:90:ba:c8:
b2:cb:82:ed:74:05:e4:ef:7b:ee:b6:8c:5b:9c:12:
b6:9c:0e:f0:58:43:da:da:0a:ed:1a:26:1c:34:26:
18:d4:f1:6c:e8:d2:04:87:44:2f:2a:ed:1b:26:28:
d2:c9:c2:8b:0e:ff:11:4c:7f:1e:f5:21:c6:36:37:
c1:0b:74:20:ea:8e:df:f5:55:12:f1:bc:30:e6:74:
4d:b4:11:88:7a:a3:b6:c3:5f:7e:cf:ff:59:fe:8d:
f7:f6:c9:c2:9d:4e:08:3f:24:dc:bc:40:47:2f:b9:
83:a0:1d:eb:02:33:a8:be:69:57:d4:ac:11:34:60:
a1:b3:b0:af:30:f2:78:ea:25:ae:ff:04:87:4b:3e:
a6:44:12:e4:b2:51:9e:10:40:16:0c:8b:1a:00:11:
d7:8e:ba:f6:be:28:80:77:1f:1e:fa:c6:64:b5:f7:
7f:22:83:d1:76:6a:26:4a:bd:1f:03:6f:ed:90:ba:
9d:fb:15:0b:d7:b8:f3:e0:3d:3d:f0:fd:01:d0:e9:
c9:13:6a:f5:5c:55:2f:4c:d3:90:b7:bc:9b:cf:cd:
bc:c2:1d:0f:26:4f:2b:29:c4:f3:64:bd:d2:86:e0:
c7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:01:E8:68:27:0F:86:49:0A:AC:9E:6E:36:88:9B:CA:7A:99:CE:1E
X509v3 Authority Key Identifier:
keyid:E9:FC:7A:F3:FF:BA:00:98:63:D1:04:ED:E1:B4:5D:A0:59:25:35:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/3130332e3137352e3233362e302f32332d3234203d3e20313437313231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.175.236.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:e0:61:b9:c1:b5:81:2f:1e:a2:70:69:3f:f3:30:96:94:02:
7f:a3:0a:b3:12:d0:bb:25:29:20:69:52:ca:27:90:f0:5e:80:
ef:47:81:61:41:b8:f2:8e:e6:6b:33:7d:ee:aa:bc:32:8e:8e:
68:10:55:4e:51:51:ce:b2:a6:0c:30:19:ae:83:45:0f:49:86:
19:37:6b:41:b3:4d:c0:27:54:3f:c1:8e:68:15:02:db:36:ce:
ea:88:c8:4f:1b:7b:ad:15:49:3f:0f:9d:41:e2:b8:5e:ed:b1:
bf:1e:3b:0a:b5:2c:1b:81:ae:6c:d5:5f:63:35:51:62:b8:1a:
bc:24:a6:c8:eb:08:57:16:85:03:03:cf:85:42:59:b2:ae:41:
5b:91:01:c0:74:66:c2:a8:17:24:be:2d:86:06:f6:1a:5b:de:
11:b4:c0:c8:e6:74:9a:99:39:47:60:40:0c:2e:f5:16:c1:b3:
02:af:53:2a:6c:2e:8e:e2:eb:5a:7c:58:c1:cd:33:33:57:3e:
b8:a5:63:d6:ca:d5:16:e7:b8:38:f2:d4:6c:51:10:78:22:bc:
81:51:2f:de:db:b8:6e:14:db:af:03:74:c3:e9:12:98:5d:9c:
97:49:d8:de:13:db:b2:07:50:67:e0:2b:74:dd:f1:3f:e6:e8:
02:4e:db:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 01:55:12 2025 by rpki-client