Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7540cf80-9315-42c1-844e-bb03622a05c1/0/3130332e3136372e3136362e302f32332d3233203d3e20313431393834.roa
File: 3130332e3136372e3136362e302f32332d3233203d3e20313431393834.roa (raw, json)
Hash identifier: uMhuVVCWV6KJ9BoKOLCiDb7P+XJG3YcMCjnNadUtMPc=
Subject key identifier: 30:9C:D5:A0:A4:AB:AA:A2:CF:B8:BE:1B:B8:EB:E4:73:D0:9B:9D:3D
Certificate issuer: /CN=722FE79638E6D14E4794815122247CBEC27B8505
Certificate serial: 38D4F86056EBCF44BDCEA24F15EB74C1B36BEDA3
Authority key identifier: 72:2F:E7:96:38:E6:D1:4E:47:94:81:51:22:24:7C:BE:C2:7B:85:05
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/722FE79638E6D14E4794815122247CBEC27B8505.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7540cf80-9315-42c1-844e-bb03622a05c1/0/3130332e3136372e3136362e302f32332d3233203d3e20313431393834.roa
Signing time: Sat 08 Mar 2025 16:00:00 +0000
ROA not before: Sat 08 Mar 2025 15:55:00 +0000
ROA not after: Sat 07 Mar 2026 16:00:00 +0000
asID: 141984
IP address blocks: 103.167.166.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:d4:f8:60:56:eb:cf:44:bd:ce:a2:4f:15:eb:74:c1:b3:6b:ed:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722FE79638E6D14E4794815122247CBEC27B8505
Validity
Not Before: Mar 8 15:55:00 2025 GMT
Not After : Mar 7 16:00:00 2026 GMT
Subject: CN=309CD5A0A4ABAAA2CFB8BE1BB8EBE473D09B9D3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:68:0d:d1:05:1e:96:31:bd:bc:0a:cc:ff:c9:
df:b7:2f:3e:ef:9c:d0:0b:30:59:40:3b:8b:c9:da:
18:3f:d0:5d:e7:83:0f:ba:2d:e5:3c:7b:16:34:8a:
87:81:24:93:f7:8c:19:ce:97:0b:93:ba:c3:d3:c0:
f7:5a:56:18:ef:f7:2a:02:e2:72:a5:0f:8a:28:0b:
42:19:a1:69:5d:6c:96:b2:1b:0a:8d:eb:80:ec:8e:
8e:e4:a2:df:57:a8:10:d2:f7:6a:5e:49:e1:e8:c9:
cd:10:fa:be:f4:82:83:52:ed:f8:8b:ba:1b:f7:7c:
d1:d7:6f:b1:50:57:05:0c:39:1f:08:ee:03:2a:f0:
ed:7c:a1:eb:97:a7:b2:61:53:14:c6:ed:42:e1:3d:
65:4b:3a:b8:d1:51:c8:cd:aa:65:5c:c5:94:7f:66:
e9:ed:9a:2f:f6:18:db:78:2f:2f:b8:91:df:60:f4:
9f:63:8b:ff:ab:c8:e5:a0:a7:d0:0e:ab:0a:cb:0d:
ea:5d:23:c7:21:a0:7b:2b:ce:cc:85:ad:24:4a:e6:
b5:5d:a3:4f:b7:82:71:a7:b1:1f:c3:3b:e7:bd:4b:
b8:50:12:7c:80:4c:63:18:de:2a:e8:3a:f5:86:09:
0e:db:7d:4a:ca:fc:47:fa:3c:31:f6:a7:23:c7:b9:
3b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9C:D5:A0:A4:AB:AA:A2:CF:B8:BE:1B:B8:EB:E4:73:D0:9B:9D:3D
X509v3 Authority Key Identifier:
keyid:72:2F:E7:96:38:E6:D1:4E:47:94:81:51:22:24:7C:BE:C2:7B:85:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7540cf80-9315-42c1-844e-bb03622a05c1/0/722FE79638E6D14E4794815122247CBEC27B8505.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/722FE79638E6D14E4794815122247CBEC27B8505.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7540cf80-9315-42c1-844e-bb03622a05c1/0/3130332e3136372e3136362e302f32332d3233203d3e20313431393834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.167.166.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:0d:bd:a1:80:25:b7:62:11:73:2f:6c:b5:a3:b1:a8:a5:d8:
13:6f:5c:07:56:0d:f5:c2:ad:aa:2c:47:66:6b:ba:81:c0:5f:
a7:57:63:ce:57:aa:eb:11:a0:54:18:ed:6d:c5:b4:46:f8:ef:
a0:f6:f6:33:1e:2e:51:1a:f3:c6:24:af:cf:86:84:1f:63:b5:
53:14:f5:43:43:5e:47:2d:9f:f3:4c:88:6b:c1:12:ef:2d:90:
3e:d3:4f:c0:64:0a:20:b2:d8:5d:70:35:9a:d7:70:8f:a9:c7:
11:42:98:72:f1:53:e0:47:3a:d0:05:00:9a:8e:d9:89:04:81:
e7:81:49:b5:9e:17:33:9a:74:89:4a:3b:f8:c8:6b:ba:c7:69:
b6:ea:78:b5:18:3c:4d:2e:9e:06:9b:f5:7d:7f:56:af:f4:d7:
f3:2f:0e:16:d7:ee:08:24:b3:00:00:50:1c:6b:cb:80:e9:c1:
f2:41:47:8b:59:cc:61:4f:54:e8:55:01:3d:84:ab:5e:60:ec:
6c:1e:a4:7d:65:5c:7d:f2:55:15:d7:84:64:91:3e:e4:6d:ac:
38:77:81:46:2c:3d:a8:8c:4b:63:27:cd:1e:39:be:58:59:4d:
c3:07:6a:90:ff:1a:bf:ce:55:23:a2:a8:01:77:a2:87:74:28:
b4:28:65:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:39:16 2025 by rpki-client