Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7794da40-b37e-4fe6-8f40-73b3b0be019f/0/3130332e35352e32322e302f32332d3234203d3e20313530343930.roa
File: 3130332e35352e32322e302f32332d3234203d3e20313530343930.roa (raw, json)
Hash identifier: qiaxwvksmM66atpVD6z5NciBUAyVEKleM/kHb9VhlSw=
Subject key identifier: 4C:76:42:D0:8D:5D:96:0E:8C:BD:FA:89:2B:40:95:0B:9E:E6:BC:A5
Certificate issuer: /CN=B4A42192F8CDBE935CE5927E5AD3C63C8196152D
Certificate serial: 67842B9BAD3D62A434E0181D00392494693E8779
Authority key identifier: B4:A4:21:92:F8:CD:BE:93:5C:E5:92:7E:5A:D3:C6:3C:81:96:15:2D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4A42192F8CDBE935CE5927E5AD3C63C8196152D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7794da40-b37e-4fe6-8f40-73b3b0be019f/0/3130332e35352e32322e302f32332d3234203d3e20313530343930.roa
Signing time: Tue 21 Jan 2025 17:00:00 +0000
ROA not before: Tue 21 Jan 2025 16:55:00 +0000
ROA not after: Tue 20 Jan 2026 17:00:00 +0000
asID: 150490
IP address blocks: 103.55.22.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:84:2b:9b:ad:3d:62:a4:34:e0:18:1d:00:39:24:94:69:3e:87:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4A42192F8CDBE935CE5927E5AD3C63C8196152D
Validity
Not Before: Jan 21 16:55:00 2025 GMT
Not After : Jan 20 17:00:00 2026 GMT
Subject: CN=4C7642D08D5D960E8CBDFA892B40950B9EE6BCA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9e:e6:ac:2d:35:2e:4e:93:1f:13:6e:ef:6d:
04:aa:9e:47:40:f5:3f:13:1d:d2:99:9f:8d:ca:6d:
75:55:87:6f:fe:a9:3a:1f:bf:b5:25:36:6f:bc:46:
d4:44:0e:e4:fd:f8:9c:f7:92:67:2c:17:a1:ea:73:
32:99:72:09:d0:a7:78:22:d3:b0:24:cc:d3:cb:8b:
2e:00:9e:3c:9f:b8:4a:fc:b3:5c:db:d8:7d:c4:25:
92:7e:4d:cc:94:69:c6:c6:64:8e:5c:b4:73:30:76:
7f:4e:e0:88:fc:03:5f:3e:0d:b8:3a:65:26:84:cb:
15:5a:45:e4:1f:ba:c0:62:1e:07:01:d1:e3:8b:6f:
db:3d:e8:93:39:d8:f4:35:9c:d9:d0:c4:99:60:a4:
38:9e:9e:c0:cd:d7:99:13:0e:98:c1:3e:a8:d4:e5:
09:cf:e3:45:d9:3a:d8:3f:df:d3:23:33:73:47:67:
62:ea:b1:32:1a:03:00:c9:a2:b4:60:57:bc:4c:c2:
96:f7:7c:42:1e:f9:aa:4f:d2:98:4b:47:7c:73:06:
55:72:06:fa:38:cf:64:a1:f6:d5:59:2e:a8:1b:28:
29:37:19:d5:c2:64:f2:0c:d3:91:9b:11:4d:97:30:
2e:58:85:3f:ce:8a:11:73:0b:92:46:46:bc:7f:d5:
31:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:76:42:D0:8D:5D:96:0E:8C:BD:FA:89:2B:40:95:0B:9E:E6:BC:A5
X509v3 Authority Key Identifier:
keyid:B4:A4:21:92:F8:CD:BE:93:5C:E5:92:7E:5A:D3:C6:3C:81:96:15:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7794da40-b37e-4fe6-8f40-73b3b0be019f/0/B4A42192F8CDBE935CE5927E5AD3C63C8196152D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4A42192F8CDBE935CE5927E5AD3C63C8196152D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7794da40-b37e-4fe6-8f40-73b3b0be019f/0/3130332e35352e32322e302f32332d3234203d3e20313530343930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.55.22.0/23
Signature Algorithm: sha256WithRSAEncryption
de:0c:88:dd:58:16:91:28:5a:d7:c6:60:07:2c:bb:f5:d7:b8:
6f:5d:95:f6:09:b2:59:97:50:87:da:a8:9b:c2:1d:a9:72:e9:
0d:5d:cd:6e:4d:3e:4d:c9:35:85:cb:3b:f4:bc:9b:0f:d5:ac:
86:b3:09:e4:2f:e9:60:fe:4e:6d:fc:c1:64:42:32:3b:9a:cb:
70:e2:77:7f:8e:95:df:c6:9a:8b:b8:00:5e:52:0b:8d:9c:69:
ff:70:f3:7c:1d:39:2b:9e:2b:17:8b:67:80:4a:bd:6f:e2:60:
9b:c9:45:4a:f5:4a:3a:d0:77:67:f1:31:3d:d3:fc:9f:a6:eb:
e3:c1:2b:22:25:a0:6b:25:75:94:87:eb:99:96:f8:a0:f2:59:
68:bf:a6:18:39:04:4c:bf:e9:cd:5c:de:3d:cb:1b:e0:bf:98:
62:5c:b2:42:c0:86:94:01:19:b6:81:14:d4:70:bf:37:50:22:
4c:45:c0:d1:18:7e:51:d1:03:80:61:f0:77:88:6f:7e:70:7d:
91:14:74:05:c0:d4:8e:d5:74:e9:68:36:01:13:6f:63:14:f6:
bb:29:ca:f0:8b:31:04:e0:77:29:52:1b:89:03:d2:b2:9f:7d:
3d:2b:dc:7b:5a:f7:de:48:ab:b6:e2:21:ad:4e:8a:34:b5:a0:
39:90:1a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:37 2025 by rpki-client