Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32342d3234203d3e203538383136.roa
File: 3130332e3234382e35382e302f32342d3234203d3e203538383136.roa (raw, json)
Hash identifier: 5t1AVxnTVPWVliNjx4dePm/Uoa7VF9/XPOB2dVW7zIc=
Subject key identifier: C5:E5:5A:4C:33:A3:E7:81:91:D8:41:36:81:22:47:BF:31:12:09:EA
Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Certificate serial: 3FE43AE42713FCE6E89C5E67900A37D7296667E6
Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32342d3234203d3e203538383136.roa
Signing time: Thu 06 Mar 2025 08:00:00 +0000
ROA not before: Thu 06 Mar 2025 07:55:00 +0000
ROA not after: Thu 05 Mar 2026 08:00:00 +0000
asID: 58816
IP address blocks: 103.248.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:e4:3a:e4:27:13:fc:e6:e8:9c:5e:67:90:0a:37:d7:29:66:67:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166
Validity
Not Before: Mar 6 07:55:00 2025 GMT
Not After : Mar 5 08:00:00 2026 GMT
Subject: CN=C5E55A4C33A3E78191D84136812247BF311209EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cf:d8:5f:30:6d:2a:f3:10:68:27:97:41:4b:
f6:95:bd:ee:53:d2:20:d1:6a:1b:70:9b:20:8d:c3:
55:e3:ef:e6:aa:94:e9:89:f6:e9:ed:d2:0b:cb:b5:
c4:4b:47:45:9d:17:74:05:93:aa:26:0f:31:91:c8:
63:56:44:10:7f:aa:95:0b:83:38:d6:76:04:83:61:
03:37:ea:59:d2:68:be:c8:87:f4:d2:64:c9:29:36:
8b:26:d5:8e:80:45:89:fc:a8:12:74:e8:90:92:30:
a8:44:c9:58:87:d0:eb:4f:69:f1:b2:6a:f0:ec:31:
ef:92:15:b4:31:03:08:00:73:fe:ec:bb:3f:39:5b:
be:9b:43:61:f3:9c:b1:ae:39:d7:62:e4:87:c2:cd:
10:05:f1:0f:f0:33:f3:87:4f:3c:eb:a6:09:e5:fd:
e8:68:98:19:68:be:28:cf:37:e5:33:77:f1:72:4c:
53:85:07:30:0f:31:7c:d7:be:89:89:89:6e:ec:0d:
ce:03:60:39:17:b1:ba:32:2f:5f:9d:3c:57:10:20:
29:dc:35:0b:bb:a1:72:8f:b0:69:68:56:28:f0:a1:
9e:1d:68:8a:71:de:96:c1:06:44:70:81:b7:e7:e5:
07:b2:c1:74:d6:2f:ab:2f:da:32:5d:e7:05:54:1b:
1c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E5:5A:4C:33:A3:E7:81:91:D8:41:36:81:22:47:BF:31:12:09:EA
X509v3 Authority Key Identifier:
keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32342d3234203d3e203538383136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.248.58.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:d9:ca:8f:e0:30:45:c8:a5:60:7c:2b:bb:e4:a6:fc:86:fb:
9f:99:a8:f5:43:b2:e5:5e:82:d1:84:1f:9a:21:94:44:06:a3:
b6:d9:43:f4:63:cc:d4:bc:9d:ea:61:3c:04:8a:14:e2:49:ad:
53:1e:a9:f4:1a:47:23:ba:c2:8d:85:7b:87:9c:21:ae:2e:6a:
da:ad:72:55:80:01:1c:5a:43:6b:2f:53:26:0c:92:d5:85:cd:
68:12:ca:ca:4e:ba:91:7b:f9:51:2c:93:0d:c3:b4:fe:18:96:
25:71:e8:ef:fc:12:d8:29:35:80:09:ec:46:8c:45:d6:65:7f:
9d:14:ad:cd:70:a2:fe:e4:01:d1:d5:e2:5f:0f:c6:cc:7e:69:
94:3a:6d:c3:e3:c7:dd:18:06:cc:d0:28:00:f6:be:3d:c3:f9:
4f:80:8c:9d:6e:4a:2a:60:cc:5a:f8:45:8b:31:d5:2c:c5:e0:
1f:85:c2:55:02:3f:5b:b9:f3:2c:6e:0b:f0:fa:e3:95:b9:a5:
ed:64:f9:6a:54:0a:02:ab:34:a8:76:4b:26:30:85:1d:ce:fd:
72:59:67:83:16:b3:48:ae:03:da:27:6f:2c:1c:ff:25:4a:1b:
05:ba:2a:7b:84:0b:77:80:28:dc:34:9d:2d:26:3b:fb:3e:8a:
dd:1e:73:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:48 2025 by rpki-client