Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/3130332e3234352e3232352e302f32342d3234203d3e20313331373635.roa
File: 3130332e3234352e3232352e302f32342d3234203d3e20313331373635.roa (raw, json)
Hash identifier: /abYrA5yp8Nre7zAYDHYwFsGgEom3ZQxvMGjfmSiyZM=
Subject key identifier: 0A:D2:5B:87:71:94:D4:91:51:F2:30:AC:1E:FB:59:2A:C9:18:C0:5A
Certificate issuer: /CN=6FB4DAE76B12CA00E07344A4DD2F933232EC2187
Certificate serial: 78C6CBF12A162195F6FF0999DB68DF86609A5AA3
Authority key identifier: 6F:B4:DA:E7:6B:12:CA:00:E0:73:44:A4:DD:2F:93:32:32:EC:21:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/3130332e3234352e3232352e302f32342d3234203d3e20313331373635.roa
Signing time: Tue 18 Feb 2025 18:00:01 +0000
ROA not before: Tue 18 Feb 2025 17:55:01 +0000
ROA not after: Tue 17 Feb 2026 18:00:01 +0000
asID: 131765
IP address blocks: 103.245.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:c6:cb:f1:2a:16:21:95:f6:ff:09:99:db:68:df:86:60:9a:5a:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FB4DAE76B12CA00E07344A4DD2F933232EC2187
Validity
Not Before: Feb 18 17:55:01 2025 GMT
Not After : Feb 17 18:00:01 2026 GMT
Subject: CN=0AD25B877194D49151F230AC1EFB592AC918C05A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c5:fe:bb:e3:a3:02:68:51:53:43:70:64:0e:
14:4e:e0:bf:7e:82:f4:cd:f4:f5:14:3a:44:3c:38:
7a:30:c3:4f:4e:c5:c4:cb:ce:86:9e:58:96:db:51:
08:52:ae:85:29:d1:b3:1e:0c:59:92:5d:58:85:67:
5a:bb:44:bf:0d:42:17:f3:c6:32:8f:97:4d:0c:73:
2f:c6:72:94:e2:69:75:53:2f:04:a2:e5:e3:e1:03:
5d:1e:f6:41:78:95:6a:ea:6e:e2:f2:1e:62:b1:16:
6b:ca:19:30:a7:7d:b5:ef:e6:93:15:7d:3c:51:8e:
f0:4e:5b:f5:da:66:90:99:13:1e:7c:fa:e8:e4:1f:
b7:52:aa:40:b7:70:ba:0a:80:06:d0:92:b3:8f:83:
c7:9c:bb:dd:82:e6:f6:06:2b:33:aa:09:aa:59:5e:
71:fd:47:5d:95:23:3a:a6:c0:f1:47:f5:63:d6:bf:
72:a2:12:16:c9:4f:78:f3:dc:6e:f2:d1:67:ed:04:
56:5a:c8:25:7d:76:61:7d:67:7e:d7:27:78:6d:49:
d5:70:c8:c6:c0:49:c6:ad:2e:66:86:fe:0c:b8:4a:
f6:1d:0f:da:75:08:ba:49:55:e5:be:7f:97:b5:13:
5f:c0:27:92:2e:61:27:4a:65:78:f1:c7:a2:60:3e:
20:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D2:5B:87:71:94:D4:91:51:F2:30:AC:1E:FB:59:2A:C9:18:C0:5A
X509v3 Authority Key Identifier:
keyid:6F:B4:DA:E7:6B:12:CA:00:E0:73:44:A4:DD:2F:93:32:32:EC:21:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FB4DAE76B12CA00E07344A4DD2F933232EC2187.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76d70346-5bdf-4961-a74f-55ae855672a1/0/3130332e3234352e3232352e302f32342d3234203d3e20313331373635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.245.225.0/24
Signature Algorithm: sha256WithRSAEncryption
11:61:04:cd:62:99:35:ed:95:39:b5:6a:fc:cb:fa:d4:dd:ab:
01:f8:72:9f:06:7c:38:eb:89:39:56:d2:a0:9e:25:c5:39:59:
c7:05:2f:b2:fe:f8:8e:a4:2d:15:63:fa:20:cd:8f:2f:b9:89:
f2:ed:6c:61:d5:2a:80:93:a8:ed:e1:37:4d:82:73:eb:c3:98:
9d:31:68:d5:49:30:e4:e7:07:e7:93:c5:fc:6b:13:ef:44:2f:
12:55:95:57:d5:19:76:ed:48:de:c6:51:db:7c:51:67:29:73:
d1:73:9d:cd:5e:1d:a7:c6:08:f9:4b:2b:02:0d:f5:29:3c:ae:
e5:53:4c:44:0b:08:02:96:26:e9:ab:fd:4d:96:18:3f:30:69:
41:c5:ec:d0:0d:6b:f6:f3:79:bc:8f:8d:da:3f:88:a5:81:f9:
51:f2:e8:00:60:33:06:fa:c0:fb:8e:1c:e0:a9:48:d8:6f:05:
78:02:87:ca:2f:af:82:b4:b9:21:04:1a:71:07:4d:0d:bc:95:
ac:a1:12:b2:95:08:31:66:1d:1e:df:68:ca:7f:a7:bf:b9:d6:
ee:1d:fa:25:75:e9:3c:f6:2f:94:9c:44:79:45:7f:6f:b8:85:
03:2e:ea:1f:a5:56:c7:16:21:53:b9:38:8c:c7:71:aa:5d:66:
e9:3b:a9:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:02:55 2025 by rpki-client