Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32342d3234203d3e20313437303937.roa
File: 3130332e3137342e3132302e302f32342d3234203d3e20313437303937.roa (raw, json)
Hash identifier: PJJflVEuAqU1x1bzzs4n8zhyBWNQ4TBM8yQ5wwBc+Y8=
Subject key identifier: 78:3A:B8:21:B7:0E:20:80:CB:0A:AE:61:2C:C8:80:27:56:70:F6:4F
Certificate issuer: /CN=A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B
Certificate serial: 44DE4B3E764C18C4F9715698AAEE0D0244144F95
Authority key identifier: A0:B5:1B:C5:AC:7C:95:73:7A:24:BD:6A:28:D8:24:9E:7A:80:CF:4B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32342d3234203d3e20313437303937.roa
Signing time: Wed 15 Jan 2025 08:01:56 +0000
ROA not before: Wed 15 Jan 2025 07:56:56 +0000
ROA not after: Wed 14 Jan 2026 08:01:56 +0000
asID: 147097
IP address blocks: 103.174.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:de:4b:3e:76:4c:18:c4:f9:71:56:98:aa:ee:0d:02:44:14:4f:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B
Validity
Not Before: Jan 15 07:56:56 2025 GMT
Not After : Jan 14 08:01:56 2026 GMT
Subject: CN=783AB821B70E2080CB0AAE612CC880275670F64F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f4:38:71:c0:ab:f7:9a:07:76:ca:41:bf:31:
f6:45:2c:e5:3e:ac:9f:70:8d:6f:73:e0:32:b6:6d:
64:fb:7b:37:11:a0:83:b6:85:73:7a:4d:86:e6:65:
ca:80:e8:73:a8:a9:b7:03:16:9d:34:d4:89:7b:a2:
5c:de:8a:34:c8:ac:18:50:b2:fa:71:d1:8d:0f:35:
f2:03:f8:d2:56:18:81:78:73:dd:96:f9:58:d4:50:
c2:40:be:68:0f:8f:bc:d9:9c:21:e0:b0:83:91:88:
7d:03:ed:0e:d7:fd:da:66:92:ba:96:34:ca:13:5d:
51:d2:2a:ea:d2:86:8c:1b:cc:71:9b:20:c9:8f:54:
2a:f0:85:54:a0:00:d6:3a:16:c6:67:e1:20:04:77:
fe:f1:63:ef:97:22:26:28:2c:ed:ea:18:e0:e4:63:
ba:63:71:c1:06:d2:7e:88:42:7a:4a:13:58:da:bc:
4f:da:83:cc:94:f9:9b:9b:1c:64:84:24:d1:a5:2e:
09:f1:ca:ea:71:33:89:db:93:03:1b:49:7f:63:80:
09:fa:50:e8:79:df:7b:85:d5:0c:ba:b3:84:de:06:
0f:ec:88:6a:21:64:2e:50:bb:e8:7b:e1:80:c7:b4:
03:fd:0b:37:2c:62:63:31:cc:e3:b8:d5:d0:8e:69:
9c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:3A:B8:21:B7:0E:20:80:CB:0A:AE:61:2C:C8:80:27:56:70:F6:4F
X509v3 Authority Key Identifier:
keyid:A0:B5:1B:C5:AC:7C:95:73:7A:24:BD:6A:28:D8:24:9E:7A:80:CF:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0B51BC5AC7C95737A24BD6A28D8249E7A80CF4B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86b20515-8d7c-445c-bff7-babd5265780f/0/3130332e3137342e3132302e302f32342d3234203d3e20313437303937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.174.120.0/24
Signature Algorithm: sha256WithRSAEncryption
64:7a:ad:fe:23:b8:13:aa:a7:b8:e1:8d:94:a1:f8:92:17:58:
de:76:10:67:7d:37:f6:29:75:36:d1:91:cf:fd:d8:b4:23:7e:
c8:b7:71:8a:6c:d8:a6:f5:05:29:c0:bd:06:17:a8:7d:f1:52:
bd:2f:99:cc:b0:9f:a6:26:56:5b:6e:2d:3c:9d:30:d5:eb:da:
1a:68:32:0a:13:68:4a:21:5d:a7:4b:c2:8e:9e:d4:07:43:0d:
76:8c:b4:20:39:61:29:6c:2b:e8:32:5c:22:7f:82:67:4e:7d:
e0:5b:19:f9:77:90:cb:a7:65:ea:60:a3:b9:f5:eb:51:bc:1b:
7d:bf:e0:7b:65:02:17:1d:43:d9:64:eb:b4:25:76:39:e6:c4:
76:ac:47:78:06:30:a3:99:1d:83:5d:df:2a:fd:ae:50:20:1d:
05:cf:69:3f:a1:71:ea:20:88:b3:55:b9:79:65:0d:23:5f:04:
98:74:e0:cb:2d:a5:66:6e:7c:3b:36:53:62:97:c4:37:c8:21:
70:85:c5:36:b7:12:85:40:0b:58:e7:72:53:37:58:c5:c7:bc:
a0:69:2e:be:04:62:de:74:b0:4f:44:61:55:a8:65:c9:37:ce:
6f:6d:da:83:6b:bf:24:99:da:f4:93:23:09:44:df:50:69:bb:
41:c7:91:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:36:34 2025 by rpki-client