Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6f6440f6-6f5a-4f4b-a597-e74b543e785b/0/3130332e3135332e36322e302f32332d3234203d3e20313430343537.roa
File: 3130332e3135332e36322e302f32332d3234203d3e20313430343537.roa (raw, json)
Hash identifier: xJxKPYOAWnai2gI40yrMS82i27ILu85OM8m3rrjh+EI=
Subject key identifier: 04:00:8F:64:39:CC:19:99:8D:18:72:49:86:0F:92:48:2B:7A:87:F0
Certificate issuer: /CN=7300283D3A4EDE4059186CC16600EDDCCBAC0E02
Certificate serial: 4A3F0C7DFF552F0AB1E581A0D2C0680D471ED8BA
Authority key identifier: 73:00:28:3D:3A:4E:DE:40:59:18:6C:C1:66:00:ED:DC:CB:AC:0E:02
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7300283D3A4EDE4059186CC16600EDDCCBAC0E02.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6f6440f6-6f5a-4f4b-a597-e74b543e785b/0/3130332e3135332e36322e302f32332d3234203d3e20313430343537.roa
Signing time: Sat 15 Mar 2025 03:00:01 +0000
ROA not before: Sat 15 Mar 2025 02:55:01 +0000
ROA not after: Sat 14 Mar 2026 03:00:01 +0000
asID: 140457
IP address blocks: 103.153.62.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:3f:0c:7d:ff:55:2f:0a:b1:e5:81:a0:d2:c0:68:0d:47:1e:d8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7300283D3A4EDE4059186CC16600EDDCCBAC0E02
Validity
Not Before: Mar 15 02:55:01 2025 GMT
Not After : Mar 14 03:00:01 2026 GMT
Subject: CN=04008F6439CC19998D187249860F92482B7A87F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:44:48:22:c3:cd:c4:e9:b6:07:2b:68:bd:d0:
72:e6:f9:f9:5a:c7:85:18:6a:97:c0:f0:56:04:46:
bc:99:6f:80:44:42:7c:dd:be:fa:23:af:d4:b0:b4:
2e:16:d5:af:38:b1:cf:d6:9b:56:c3:96:5e:e0:12:
fc:3a:3f:61:27:90:5e:3c:c2:1f:0f:97:35:be:90:
f0:15:78:96:bf:29:b7:b6:14:d9:51:93:31:3d:73:
95:b0:2a:97:d9:99:fe:a6:c6:f2:9c:d5:d8:2d:f8:
20:c2:ac:dd:ed:eb:2d:11:a6:0d:f4:c6:d8:6a:7b:
aa:de:4d:5b:36:67:be:8a:07:c8:35:52:85:b7:4f:
93:4c:14:e7:e0:8d:87:00:c8:44:74:78:02:5c:27:
a9:84:76:cd:dc:a4:59:5c:ae:a6:86:7d:51:44:30:
1d:99:83:a1:e3:22:b1:77:04:7f:d1:a4:a2:dc:b4:
da:fc:ab:8e:15:9d:b9:b9:d6:0e:0c:f5:87:20:dc:
7b:0e:91:47:57:ee:00:c7:62:dc:c0:44:68:ad:3f:
5a:99:5c:4b:5b:cb:82:70:ee:25:b1:f8:f5:66:88:
85:88:02:1d:4b:0c:e4:83:8d:b5:e7:c0:37:e3:07:
04:fa:fb:cb:c5:e3:56:3b:8c:cd:14:bd:10:42:2f:
7d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:00:8F:64:39:CC:19:99:8D:18:72:49:86:0F:92:48:2B:7A:87:F0
X509v3 Authority Key Identifier:
keyid:73:00:28:3D:3A:4E:DE:40:59:18:6C:C1:66:00:ED:DC:CB:AC:0E:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6f6440f6-6f5a-4f4b-a597-e74b543e785b/0/7300283D3A4EDE4059186CC16600EDDCCBAC0E02.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7300283D3A4EDE4059186CC16600EDDCCBAC0E02.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6f6440f6-6f5a-4f4b-a597-e74b543e785b/0/3130332e3135332e36322e302f32332d3234203d3e20313430343537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.153.62.0/23
Signature Algorithm: sha256WithRSAEncryption
80:93:48:98:8e:b9:4a:55:94:c9:85:61:e7:31:c7:37:59:6f:
b5:fe:8c:33:2c:2b:ee:83:a2:38:54:40:83:6b:69:56:68:77:
f0:62:f8:3a:a4:53:cc:c8:b8:6f:8c:4b:a6:34:83:69:3a:30:
88:ff:2e:08:fd:a2:e7:2e:3a:9c:70:34:c3:0b:31:41:72:bf:
d9:4f:d5:59:fc:db:95:69:92:da:50:3c:4b:82:37:d8:75:28:
93:12:90:9a:01:66:1e:0a:85:6f:e7:2a:02:45:2c:b0:0a:b9:
e9:6b:67:af:27:cd:04:b3:2f:a8:d7:75:de:53:e4:6a:bd:86:
e8:11:ff:d5:9e:d0:31:49:34:91:8e:b1:8b:ed:85:8c:be:bf:
01:80:72:a6:3c:e4:6f:2b:61:15:01:7b:1a:c1:05:40:db:02:
3f:c4:67:20:97:6f:52:a7:05:be:97:a1:6c:c4:07:d9:ad:f3:
f5:3d:f9:f7:20:32:1b:21:0b:da:a9:cf:3d:c5:46:88:8e:d0:
fd:03:11:e9:82:35:d9:bc:a3:60:42:08:b9:dd:b1:d7:70:5b:
4d:cb:34:e9:29:20:b7:e8:d9:55:f6:cf:64:7b:92:39:f1:14:
1d:4f:31:c8:99:66:e8:04:92:63:bc:9f:cd:ab:c2:83:6a:36:
be:71:fa:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:44 2025 by rpki-client