Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/3130332e3134352e33352e302f32342d3234203d3e20313339343439.roa
File: 3130332e3134352e33352e302f32342d3234203d3e20313339343439.roa (raw, json)
Hash identifier: 8k5DQdShfF1LLL6tlnALBNsa0H5JvdmBz45qLP8B2NI=
Subject key identifier: 73:15:A6:1F:74:D5:B6:97:9E:A0:E1:AD:A4:61:AF:69:78:A5:06:45
Certificate issuer: /CN=D681DB990E904642A480AE9546646329FF5D0162
Certificate serial: 5E5C2D4BEFC9EC3F611C1AF3BDABEC41E4F9C286
Authority key identifier: D6:81:DB:99:0E:90:46:42:A4:80:AE:95:46:64:63:29:FF:5D:01:62
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D681DB990E904642A480AE9546646329FF5D0162.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/3130332e3134352e33352e302f32342d3234203d3e20313339343439.roa
Signing time: Tue 18 Feb 2025 00:00:01 +0000
ROA not before: Mon 17 Feb 2025 23:55:01 +0000
ROA not after: Tue 17 Feb 2026 00:00:01 +0000
asID: 139449
IP address blocks: 103.145.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:5c:2d:4b:ef:c9:ec:3f:61:1c:1a:f3:bd:ab:ec:41:e4:f9:c2:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D681DB990E904642A480AE9546646329FF5D0162
Validity
Not Before: Feb 17 23:55:01 2025 GMT
Not After : Feb 17 00:00:01 2026 GMT
Subject: CN=7315A61F74D5B6979EA0E1ADA461AF6978A50645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:c0:43:61:0b:76:25:f1:65:e6:b4:74:16:
82:82:00:e9:22:cb:a5:44:51:97:cd:cf:59:ee:76:
91:59:8d:2f:6c:d7:a1:d3:b0:67:8f:48:3f:a2:5c:
73:c7:c8:1b:d1:30:67:c7:d0:57:5b:8d:a2:a0:2d:
fa:71:a0:8e:3a:9a:ec:1e:23:67:82:6b:30:0d:17:
86:3e:09:dc:79:40:4a:f6:1c:5a:4d:4f:2a:03:64:
e4:2f:d5:cc:4a:c1:99:71:76:22:04:ce:89:02:23:
25:dd:9b:92:1c:69:5f:9f:6c:28:4d:6c:3f:eb:48:
54:ca:3c:14:7b:dd:71:9a:67:e7:fc:78:f1:82:9e:
bb:34:4e:c9:48:14:6d:77:11:1b:7a:eb:7d:c3:17:
ad:0d:02:2c:a3:1a:75:aa:4e:72:73:30:79:4a:2e:
dc:4c:0a:f2:87:04:9f:7d:9c:c1:a6:db:ec:55:dd:
72:92:a6:42:74:81:ee:32:39:be:ac:73:8c:a7:1d:
00:67:b1:6b:b1:4f:f1:4f:0e:7c:6d:ea:de:f1:e1:
9a:56:74:ff:48:c9:a7:3a:96:85:63:46:eb:20:e2:
6e:c4:ba:68:ae:64:12:33:df:57:b9:45:7c:29:8b:
a6:3e:4c:2c:0e:45:00:ab:78:c1:66:70:83:ac:6b:
9b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:15:A6:1F:74:D5:B6:97:9E:A0:E1:AD:A4:61:AF:69:78:A5:06:45
X509v3 Authority Key Identifier:
keyid:D6:81:DB:99:0E:90:46:42:A4:80:AE:95:46:64:63:29:FF:5D:01:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/D681DB990E904642A480AE9546646329FF5D0162.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D681DB990E904642A480AE9546646329FF5D0162.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/3130332e3134352e33352e302f32342d3234203d3e20313339343439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.145.35.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:02:48:8f:dc:6a:e8:62:26:39:c7:7c:bb:61:45:1c:32:18:
3f:73:4a:3e:07:54:1a:f8:4b:1b:22:c2:e5:c9:cb:43:b8:db:
a9:5f:9b:53:d3:54:37:62:4c:ec:9f:a8:36:8e:6b:18:0b:c4:
e8:47:af:55:5d:ab:d4:4c:31:0e:56:bf:c6:e8:7b:92:a4:3b:
09:66:ea:10:7a:f6:2c:f1:30:4c:58:c5:31:bc:07:21:76:d3:
66:e3:9b:15:e5:6c:82:d7:21:9d:7a:36:10:8b:d6:e7:75:36:
af:3f:c4:fa:df:d0:55:44:10:2f:c3:42:e2:77:1d:38:f5:56:
e6:16:e5:21:6a:90:0a:6a:f5:dd:72:b2:56:84:e1:06:68:54:
58:81:a9:88:7e:22:ba:a1:b2:b4:ba:2b:17:c3:4c:8e:b5:0b:
a0:c8:88:f6:d6:45:b1:76:60:07:85:d7:4c:2e:12:c4:da:83:
40:c5:c2:b1:3a:45:b1:48:a9:c8:15:72:09:e5:15:7b:db:81:
4b:65:d5:10:dd:af:fa:c6:b0:20:46:5b:46:cc:52:8a:c7:df:
a8:9d:4e:4d:18:25:b8:9c:06:f3:c2:15:3d:c3:1e:2a:a3:bf:
9d:ff:88:ce:87:26:37:3a:0d:30:e9:32:e3:72:ff:11:7a:f5:
b2:2d:ec:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 03:55:25 2025 by rpki-client