Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3230332e3135332e3231322e302f32322d3234203d3e20313331373238.roa
File: 3230332e3135332e3231322e302f32322d3234203d3e20313331373238.roa (raw, json)
Hash identifier: L+zbwKEiqCDXphQWC6ta3Lw7/a2eLbSVLx5eDneIanA=
Subject key identifier: D0:98:DA:50:EF:1C:70:66:C1:DC:AE:51:42:4E:8E:44:15:F5:DA:03
Certificate issuer: /CN=DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4
Certificate serial: 27B8DD7BDA24D84A52B6C94C2286EBFBA09DB858
Authority key identifier: DB:72:5E:AC:2D:D1:E6:2B:7A:02:C5:4A:61:8D:7A:01:B9:58:E4:C4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3230332e3135332e3231322e302f32322d3234203d3e20313331373238.roa
Signing time: Mon 24 Mar 2025 06:00:00 +0000
ROA not before: Mon 24 Mar 2025 05:55:00 +0000
ROA not after: Mon 23 Mar 2026 06:00:00 +0000
asID: 131728
IP address blocks: 203.153.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:b8:dd:7b:da:24:d8:4a:52:b6:c9:4c:22:86:eb:fb:a0:9d:b8:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4
Validity
Not Before: Mar 24 05:55:00 2025 GMT
Not After : Mar 23 06:00:00 2026 GMT
Subject: CN=D098DA50EF1C7066C1DCAE51424E8E4415F5DA03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:76:dd:f8:33:a8:0c:32:d4:ac:a3:62:51:b6:
12:2d:ad:3f:8c:7f:d0:75:84:86:6e:51:9e:9a:b7:
61:18:ed:30:fd:7f:1a:ab:a4:4d:4d:92:8f:fd:74:
11:48:48:b3:50:2c:e4:8e:74:15:c6:30:26:be:ec:
1c:be:1d:ef:37:2a:a3:86:5b:31:0c:61:71:8f:46:
60:a8:df:46:40:c7:f5:ec:b0:9a:72:13:cc:8d:6d:
30:be:52:4c:f7:a9:cc:b2:20:f1:f5:a3:d9:0c:16:
ba:d6:14:63:67:d6:0c:50:56:d5:fb:50:d5:95:fd:
b3:39:da:72:c3:50:09:9d:de:29:8c:be:5e:23:4c:
71:21:da:bd:89:d2:37:00:a2:ab:04:9b:97:c5:8e:
09:50:a7:10:f3:f9:42:14:b9:7e:46:86:60:2d:f5:
3e:47:13:c5:4c:8e:4a:0f:a9:ad:e1:a8:e0:d1:ae:
8f:0a:c2:7c:93:af:1c:ee:59:32:ad:69:b3:84:14:
10:fb:bb:3f:2e:f3:5a:06:eb:f8:ce:f0:01:e1:10:
67:bb:d8:bb:96:9e:0b:c6:73:8c:e9:e3:43:7c:7b:
a5:99:2e:95:23:1c:4a:d3:09:29:a8:68:1f:06:6d:
f8:c5:3b:6d:f7:91:3b:63:a4:aa:66:ad:b1:ef:aa:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:98:DA:50:EF:1C:70:66:C1:DC:AE:51:42:4E:8E:44:15:F5:DA:03
X509v3 Authority Key Identifier:
keyid:DB:72:5E:AC:2D:D1:E6:2B:7A:02:C5:4A:61:8D:7A:01:B9:58:E4:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3230332e3135332e3231322e302f32322d3234203d3e20313331373238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.153.212.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:2b:3c:17:10:2c:de:85:03:76:96:07:06:92:f4:b8:c4:4b:
a9:b1:4b:59:f3:54:38:e1:89:da:ca:63:97:2d:07:03:84:75:
df:fd:92:7a:d2:38:e3:b9:d7:fa:1f:38:f2:e4:71:5e:a6:6c:
44:50:3a:7c:c3:c8:c7:4d:16:3d:88:31:b0:05:9c:64:f6:c7:
a7:bd:31:f7:d0:dc:c3:87:f9:ba:80:3e:af:f5:96:a8:25:d7:
13:62:b8:0e:19:b5:d4:01:b3:5a:99:60:35:cc:40:bc:69:9f:
43:a6:63:e4:c4:7d:ca:96:6d:92:7b:42:13:35:f5:54:5d:cd:
41:25:09:90:ac:9e:89:20:3f:38:2b:8a:3f:41:44:1b:bf:9f:
7a:a3:45:f7:97:99:19:1f:cd:06:79:eb:98:17:e4:e1:6c:a9:
96:52:0c:49:dc:ec:60:72:6e:6e:ae:8e:89:7c:fe:a7:a7:62:
59:ba:d8:97:11:62:a3:d0:1a:10:42:ba:70:81:21:87:e8:2e:
c4:a6:a0:1c:23:97:38:2a:40:c3:70:26:45:b6:3b:3b:dc:af:
26:11:d7:d5:a8:2d:09:34:93:17:1f:85:0a:8a:64:cc:35:fd:
99:28:bb:a5:83:33:71:3f:47:32:10:88:3a:19:40:b6:3e:58:
0d:47:7b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:44:00 2025 by rpki-client