Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/3130332e3135332e38332e302f32342d3234203d3e20313339393637.roa
File: 3130332e3135332e38332e302f32342d3234203d3e20313339393637.roa (raw, json)
Hash identifier: OdcW1lviWmv8m1d1fUcPQdDa+Z1BWLWFlqGEUdQSYDU=
Subject key identifier: F5:C4:74:ED:21:8E:A4:35:E6:39:BE:BB:DC:C8:47:0E:54:80:2E:AF
Certificate issuer: /CN=AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2
Certificate serial: 017405393C31F32A60566E03BF6736D3FC977E0D
Authority key identifier: AD:9B:CA:DB:23:5B:6D:EE:6C:AD:4E:B4:C5:3A:A8:B3:BA:73:FE:F2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/3130332e3135332e38332e302f32342d3234203d3e20313339393637.roa
Signing time: Sun 12 Jan 2025 04:00:01 +0000
ROA not before: Sun 12 Jan 2025 03:55:01 +0000
ROA not after: Sun 11 Jan 2026 04:00:01 +0000
asID: 139967
IP address blocks: 103.153.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:74:05:39:3c:31:f3:2a:60:56:6e:03:bf:67:36:d3:fc:97:7e:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2
Validity
Not Before: Jan 12 03:55:01 2025 GMT
Not After : Jan 11 04:00:01 2026 GMT
Subject: CN=F5C474ED218EA435E639BEBBDCC8470E54802EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:19:11:03:bd:ed:d7:f5:5b:c9:fb:cf:92:60:
dc:84:31:4a:e0:c6:27:6e:fb:27:fd:f1:34:51:91:
ae:4e:1e:79:93:2c:b0:25:72:98:9e:a5:f7:d3:59:
02:89:ae:5a:74:37:2d:ce:f7:cf:2d:f5:47:1a:1b:
2c:e1:21:c0:06:df:fb:6c:6d:f8:e4:29:51:00:df:
00:d6:51:46:6b:ed:ea:87:b6:1e:f0:57:35:8d:14:
b1:dc:15:e6:c7:d7:40:79:0f:63:f8:72:e3:d7:37:
9b:ab:6b:93:f4:16:ba:d5:8d:45:db:2e:91:f8:46:
60:90:e8:dc:43:db:6a:5a:48:f1:ca:14:74:f9:e6:
36:ef:94:3a:5d:e8:9e:fe:e7:b5:16:14:b6:80:2f:
79:a8:b1:5c:b4:ad:90:3e:c3:50:ca:f7:fc:c1:e7:
2a:8f:2b:d0:f8:88:3e:22:0f:38:ae:2f:24:59:2a:
fb:c2:8d:85:8b:f1:3c:c3:de:4b:29:a5:c3:fd:84:
fd:c3:3e:11:2f:7c:ad:c2:4c:a4:c9:5c:0a:29:2c:
e0:a0:7a:25:37:e0:75:82:31:4e:c1:a5:4d:82:10:
75:4e:9d:58:f6:2f:66:36:37:34:66:f2:ac:5e:c7:
6d:b0:30:ba:c3:83:38:a2:14:75:67:92:4c:39:db:
b5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C4:74:ED:21:8E:A4:35:E6:39:BE:BB:DC:C8:47:0E:54:80:2E:AF
X509v3 Authority Key Identifier:
keyid:AD:9B:CA:DB:23:5B:6D:EE:6C:AD:4E:B4:C5:3A:A8:B3:BA:73:FE:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD9BCADB235B6DEE6CAD4EB4C53AA8B3BA73FEF2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e76db1e-bf9a-49a8-bf76-9f314e7d1d8e/0/3130332e3135332e38332e302f32342d3234203d3e20313339393637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.153.83.0/24
Signature Algorithm: sha256WithRSAEncryption
61:ac:c9:30:ea:d4:1b:9f:70:7d:48:7e:8b:46:d4:78:bf:09:
ad:f9:64:63:b7:3b:e4:ee:9e:9d:d3:2a:b7:1c:f5:2c:2e:8a:
d8:39:9e:3a:05:db:78:3a:a7:42:70:2a:f3:cd:12:53:4b:47:
13:06:99:df:e8:e9:e8:3c:26:2f:6d:58:95:ed:cf:03:48:4b:
27:36:68:c9:66:2a:9b:83:94:4f:8e:79:bd:78:1e:2e:6f:7b:
04:98:8d:74:70:cd:f1:71:bd:3e:65:c5:06:fe:e3:87:da:3e:
be:37:7b:3f:9f:f7:fe:19:eb:7a:58:11:6c:99:72:cb:ae:41:
9e:0a:f6:d9:83:96:5e:e5:9f:aa:85:56:20:1d:09:fa:1b:68:
2f:0c:17:02:03:7e:81:46:67:d0:6f:67:e3:c2:0f:2c:52:ca:
af:12:40:60:49:43:1a:c2:1a:cb:4d:f2:d6:ed:dc:0f:f4:e3:
52:47:39:48:b3:07:77:0a:26:8d:99:ff:a6:da:b2:e2:de:83:
19:b9:3e:f0:c8:59:36:a9:83:78:d9:5a:7c:ed:fe:4c:20:53:
54:61:f1:05:35:32:c0:16:2d:f5:dc:5f:76:fe:09:bd:94:f3:
79:11:1b:40:34:8f:3e:7d:d0:c5:1a:0d:b0:76:9a:9e:2b:6d:
20:86:13:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:50:36 2025 by rpki-client