Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6bfa4265-bb58-46e2-8309-3ad3981a3516/0/3130332e3137302e3233362e302f32332d3234203d3e20313338383535.roa
File: 3130332e3137302e3233362e302f32332d3234203d3e20313338383535.roa (raw, json)
Hash identifier: vagIMKImu4Zs/hOeAJyRqPH9hY16TNqQAf9b5U67Rs0=
Subject key identifier: 33:8C:F2:FA:41:38:F2:ED:11:71:FA:CF:E3:2E:97:BA:21:9A:A7:02
Certificate issuer: /CN=9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03
Certificate serial: 6E5799EB624DCFE46821E0E1623F7514243A18EC
Authority key identifier: 9F:02:A9:B8:7C:C5:F8:1A:22:E8:E5:8D:2E:C1:2E:6E:06:58:8A:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6bfa4265-bb58-46e2-8309-3ad3981a3516/0/3130332e3137302e3233362e302f32332d3234203d3e20313338383535.roa
Signing time: Wed 19 Mar 2025 11:02:23 +0000
ROA not before: Wed 19 Mar 2025 10:57:23 +0000
ROA not after: Wed 18 Mar 2026 11:02:23 +0000
asID: 138855
IP address blocks: 103.170.236.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:57:99:eb:62:4d:cf:e4:68:21:e0:e1:62:3f:75:14:24:3a:18:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03
Validity
Not Before: Mar 19 10:57:23 2025 GMT
Not After : Mar 18 11:02:23 2026 GMT
Subject: CN=338CF2FA4138F2ED1171FACFE32E97BA219AA702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a2:8b:d0:d0:a6:f6:4d:cc:3c:9b:74:74:5b:
ef:6a:ca:24:c3:a6:37:ea:28:d3:53:8d:27:21:a7:
d1:0c:67:de:4a:13:18:7c:a6:e2:61:bc:e0:43:fb:
22:7d:06:45:87:a4:a6:de:29:1a:5a:31:07:a3:ab:
e1:0a:7a:58:01:16:e7:9a:90:7e:b1:55:58:db:ab:
1e:87:93:f3:d8:f4:b9:5b:3f:8c:58:c6:a7:9c:3a:
26:b5:84:36:f5:6b:dd:52:c5:03:5e:a5:ce:48:2e:
86:e1:06:a7:ba:47:66:18:23:a7:31:74:e0:5d:01:
11:d0:b3:0f:0e:53:5a:e9:12:d7:c8:4f:35:b8:a5:
6e:cb:9b:ad:e6:0d:57:ab:c9:79:51:c4:ac:fc:7d:
10:e2:d4:86:6a:f5:29:87:16:1d:e4:69:ea:94:f9:
56:65:d4:94:64:46:7c:4b:35:fe:13:61:0d:f4:45:
13:62:d5:7e:cf:7e:20:d0:3b:5c:5c:35:50:27:ee:
a1:67:4e:01:8f:d0:ff:08:a7:21:8f:2a:eb:a3:13:
a1:d0:0f:62:55:42:4d:53:77:b7:0a:13:82:5e:10:
06:a0:1a:f2:b1:f7:77:1c:bd:ed:02:0a:f4:27:48:
13:6a:61:50:1d:ff:dc:f8:dd:74:cf:e5:b0:40:d3:
4a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:8C:F2:FA:41:38:F2:ED:11:71:FA:CF:E3:2E:97:BA:21:9A:A7:02
X509v3 Authority Key Identifier:
keyid:9F:02:A9:B8:7C:C5:F8:1A:22:E8:E5:8D:2E:C1:2E:6E:06:58:8A:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6bfa4265-bb58-46e2-8309-3ad3981a3516/0/9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6bfa4265-bb58-46e2-8309-3ad3981a3516/0/3130332e3137302e3233362e302f32332d3234203d3e20313338383535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.170.236.0/23
Signature Algorithm: sha256WithRSAEncryption
57:b9:b7:96:f1:2b:68:6a:86:c2:0a:e3:d4:03:63:c2:66:ad:
98:8d:4d:1b:4f:dd:d2:cd:95:04:c8:d6:6a:71:3a:1b:e2:15:
80:c2:a0:a3:65:bb:c8:41:cc:aa:18:e5:06:75:ef:e1:aa:fe:
88:c5:6a:cf:e8:a0:d6:99:07:f3:3f:61:d8:e6:06:05:75:5e:
47:b4:68:87:e7:5f:ec:bd:2f:ac:b7:52:47:7a:8e:b3:92:6a:
24:15:15:df:84:35:74:80:ea:fe:22:35:d2:94:29:92:8c:26:
77:3b:98:8b:29:a8:28:3b:62:af:0b:70:e0:06:18:46:6a:37:
89:f4:1b:fe:93:da:d4:31:e8:03:6b:50:c2:8b:b0:08:1e:d3:
05:e8:23:6c:3d:0f:52:a2:52:f6:0b:8e:2c:ff:b2:55:ca:1d:
d7:a0:28:e6:21:61:9a:63:b8:1c:71:73:76:bd:6e:7e:24:a0:
37:53:59:68:90:b0:e8:40:9b:2c:28:5b:d1:3f:ca:66:65:f9:
a7:1b:84:42:ca:4b:a7:14:e2:2a:9f:9a:28:ff:33:bc:a1:09:
91:4d:5d:e3:3a:a7:30:33:ca:b7:05:ce:75:f8:7e:1a:30:7c:
45:49:73:38:99:b2:5e:ba:55:e6:45:85:14:81:96:1d:23:0e:
9b:26:71:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 23:13:37 2025 by rpki-client