Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/3130332e3135322e34352e302f32342d3234203d3e20313430343335.roa
File: 3130332e3135322e34352e302f32342d3234203d3e20313430343335.roa (raw, json)
Hash identifier: SMhDRBgq/CGhFdJAkZwZrQC241Gwys1Efn+WNzlHpsA=
Subject key identifier: 07:63:63:84:A1:6E:34:B8:5B:9C:3A:68:3D:B2:61:71:9A:6B:89:DE
Certificate issuer: /CN=FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6
Certificate serial: 4C283E5E4CE58A9554FD1AAD276606D88242D857
Authority key identifier: FF:EF:EB:2C:96:B1:BE:D5:C5:D6:D8:23:EE:3C:6D:80:69:8B:9F:D6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/3130332e3135322e34352e302f32342d3234203d3e20313430343335.roa
Signing time: Thu 13 Feb 2025 05:01:34 +0000
ROA not before: Thu 13 Feb 2025 04:56:34 +0000
ROA not after: Thu 12 Feb 2026 05:01:34 +0000
asID: 140435
IP address blocks: 103.152.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:28:3e:5e:4c:e5:8a:95:54:fd:1a:ad:27:66:06:d8:82:42:d8:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6
Validity
Not Before: Feb 13 04:56:34 2025 GMT
Not After : Feb 12 05:01:34 2026 GMT
Subject: CN=07636384A16E34B85B9C3A683DB261719A6B89DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:db:1c:8f:1b:f9:58:9a:9b:78:a7:a7:c3:26:
0a:87:f1:19:2d:09:79:31:89:b4:12:be:88:95:de:
3c:6e:b1:80:81:e2:da:f5:9e:a2:b6:c0:15:7a:c3:
21:18:8f:c0:de:0a:f7:77:fb:b9:c1:a6:c2:57:65:
d2:08:92:2b:e0:22:2b:64:92:30:8e:1d:0b:b1:80:
ce:e7:56:98:00:7e:c6:23:40:48:ca:d9:7c:6e:2f:
41:72:66:c2:3e:30:18:8b:d1:c2:f4:8b:2e:53:cb:
46:1d:5d:d5:98:03:8e:ad:5f:96:b0:a2:d6:14:58:
73:27:6a:32:29:e0:5a:7b:62:2c:c6:a9:ae:2b:08:
a4:79:1a:1a:8b:21:0b:2f:26:f4:e7:35:3e:72:05:
59:ae:4c:81:89:de:e4:7d:18:3b:b9:62:e6:bd:16:
5b:bb:b8:85:2c:bb:d4:53:5f:78:34:27:ac:45:f2:
6a:a4:db:a1:2f:43:9d:bd:73:db:45:4e:ef:e4:b3:
52:91:e6:b1:31:38:d3:56:58:9b:b5:c3:6e:e4:e6:
74:9f:f8:d7:7f:1b:b5:42:fa:39:c9:88:d5:97:b4:
5c:dc:c7:a3:0a:b8:b8:77:0e:ca:07:eb:94:83:95:
a4:35:2c:ec:af:00:b4:b4:c2:b6:0b:39:92:c6:68:
16:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:63:63:84:A1:6E:34:B8:5B:9C:3A:68:3D:B2:61:71:9A:6B:89:DE
X509v3 Authority Key Identifier:
keyid:FF:EF:EB:2C:96:B1:BE:D5:C5:D6:D8:23:EE:3C:6D:80:69:8B:9F:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/3130332e3135322e34352e302f32342d3234203d3e20313430343335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.152.45.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f7:1e:e4:1b:25:80:c6:52:69:26:ef:f5:2b:b7:95:93:89:
d5:02:56:ce:cb:d1:a6:7a:d1:6c:21:5b:3b:b9:55:96:da:33:
08:5d:1d:51:4e:78:5a:a2:0b:c5:b6:a8:d5:50:0c:83:42:33:
14:14:1e:37:23:5c:fc:c0:58:6d:79:69:2c:66:1b:cd:e1:2a:
7c:fe:2f:9d:55:b8:9a:b3:dd:c1:89:f2:5e:45:a9:58:46:8a:
d1:b9:63:6c:32:b1:b5:75:1c:1d:9e:cd:33:1b:cd:b5:13:42:
58:0d:a3:2b:dc:ac:42:2d:af:a8:f4:13:cc:16:dd:65:a3:ad:
e7:8e:61:bc:d7:16:c7:1b:81:ad:bc:cc:30:eb:86:07:4b:65:
93:8d:ab:84:00:00:e6:83:09:c6:1d:99:d4:f5:e3:b8:68:56:
e0:c1:e3:60:c7:d9:26:ca:79:60:a2:b7:c6:b4:b0:e5:32:bf:
95:c8:7e:b5:01:53:b4:88:a3:f7:e7:09:13:06:88:c9:e9:d0:
e1:3c:cd:08:48:d1:4e:5f:f8:de:79:c9:e5:3f:12:a2:8f:03:
2f:a2:94:d6:9f:0a:5c:c6:39:2f:7f:d7:94:b4:d1:12:5c:51:
8c:4a:78:98:3b:85:5a:21:5b:51:7d:8c:1f:33:33:75:65:b0:
dd:d6:ff:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:56:54 2025 by rpki-client