Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa
File: 3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa (raw, json)
Hash identifier: W6CbDsM0PrN3d4twoSZMp8DZWVfT/4VVEcjlXAnT5RE=
Subject key identifier: 07:9E:52:80:AB:9E:1A:F3:3B:A6:9C:4B:2A:CD:FC:30:39:93:BC:0C
Certificate issuer: /CN=DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4
Certificate serial: 0848E18FE949BA82F7D8C4DFA7ECBDA99A6DAE73
Authority key identifier: DB:72:5E:AC:2D:D1:E6:2B:7A:02:C5:4A:61:8D:7A:01:B9:58:E4:C4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa
Signing time: Mon 24 Mar 2025 06:00:00 +0000
ROA not before: Mon 24 Mar 2025 05:55:00 +0000
ROA not after: Mon 23 Mar 2026 06:00:00 +0000
asID: 131728
IP address blocks: 103.12.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:48:e1:8f:e9:49:ba:82:f7:d8:c4:df:a7:ec:bd:a9:9a:6d:ae:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4
Validity
Not Before: Mar 24 05:55:00 2025 GMT
Not After : Mar 23 06:00:00 2026 GMT
Subject: CN=079E5280AB9E1AF33BA69C4B2ACDFC303993BC0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a5:d7:37:41:33:88:bd:fc:98:36:a3:36:58:
01:27:94:ac:d9:bd:ca:4b:f5:db:86:53:03:94:54:
99:54:4d:3c:40:cc:f5:96:3f:7d:c6:76:4e:f6:af:
b5:f7:22:88:ce:56:5f:7a:55:d5:0d:89:7c:b9:7a:
97:ef:03:99:10:75:16:cd:5c:2d:d1:35:ba:75:db:
40:15:50:04:78:c5:e0:f4:52:5d:b1:f1:db:47:04:
63:e6:94:d7:e1:0a:60:56:97:27:ab:7b:3b:76:dd:
50:74:05:5e:c7:a5:56:6e:7e:10:81:a0:d7:d1:d9:
f6:8b:5c:21:6f:19:4f:9e:19:e2:9c:b0:51:dd:83:
51:f8:47:98:47:1b:fc:64:e7:a3:31:b1:3c:56:e9:
8f:1f:23:5e:58:46:24:d1:01:d8:94:c8:d3:6d:eb:
95:ac:90:51:55:eb:06:9f:69:87:a4:a0:c0:22:6e:
91:44:a2:db:9c:4b:3c:78:82:aa:aa:58:dc:84:a8:
0b:84:f3:99:eb:62:a0:44:d1:77:77:40:a8:d4:4b:
6a:b4:1d:c4:00:97:ea:47:f5:c4:55:58:2f:5f:ac:
dd:38:13:29:3d:60:81:c5:ef:64:a6:1e:a5:76:1d:
f5:c8:71:ee:4e:78:4f:51:9b:fe:fa:1f:99:34:99:
99:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9E:52:80:AB:9E:1A:F3:3B:A6:9C:4B:2A:CD:FC:30:39:93:BC:0C
X509v3 Authority Key Identifier:
keyid:DB:72:5E:AC:2D:D1:E6:2B:7A:02:C5:4A:61:8D:7A:01:B9:58:E4:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.12.112.0/22
Signature Algorithm: sha256WithRSAEncryption
02:54:01:c8:d6:85:9e:7c:94:b4:fc:de:e3:18:96:04:ca:6b:
6a:2e:93:a1:88:53:4c:23:83:36:b6:67:c1:d7:2c:12:a9:ef:
08:be:d2:65:0b:99:ea:08:a8:f0:75:df:b5:53:74:8b:34:fe:
f7:93:d9:f6:43:b6:98:dd:ee:b9:44:56:40:4d:43:24:be:12:
64:04:71:23:09:46:8f:a1:ba:07:01:34:88:1b:40:09:c7:7e:
76:a1:09:ac:bd:d7:f2:73:b7:fe:7f:78:72:06:68:1b:36:6d:
1e:e1:4c:3c:ca:25:10:1b:15:3a:4a:62:d9:7b:50:c3:0b:62:
2a:e2:ac:9f:5a:49:6e:ed:01:d8:40:f4:c5:3f:87:e4:0c:6a:
5e:22:fd:bf:83:27:c9:1b:d5:73:2e:68:05:9f:ff:5a:cb:f1:
9b:2a:ac:f2:fb:7f:fd:0e:09:66:94:3e:6e:ea:5e:bc:05:48:
10:60:a3:f9:bd:1b:a2:20:df:ec:af:7f:85:6b:6b:f3:8e:7b:
3a:03:51:63:3c:d5:29:02:cb:7f:e6:5f:0d:c4:f9:dd:d3:73:
c7:04:1e:e0:84:e2:16:cb:4b:9a:4f:33:cc:ee:6a:db:a1:b5:
4d:fb:4b:52:61:ad:4c:5c:bb:49:11:ce:b8:c8:06:3f:cc:2b:
f4:5a:fe:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:34:31 2025 by rpki-client