Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136342e302f32332d3233203d3e20313437303831.roa
File: 3130332e3137332e3136342e302f32332d3233203d3e20313437303831.roa (raw, json)
Hash identifier: wHrBa+c+ly9WQVtUTnKCsmph42u67ih6vTR7IaW+QU0=
Subject key identifier: 2E:E3:FF:2D:A1:0C:F8:91:9A:56:A1:B4:58:87:66:D0:10:68:9D:D6
Certificate issuer: /CN=35AF7B054A8CC95835EC5A2F9275004D39521553
Certificate serial: 72E08B7C8A5A59CAC04E5DC53B35EE308CFA3920
Authority key identifier: 35:AF:7B:05:4A:8C:C9:58:35:EC:5A:2F:92:75:00:4D:39:52:15:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136342e302f32332d3233203d3e20313437303831.roa
Signing time: Sat 01 Feb 2025 12:02:21 +0000
ROA not before: Sat 01 Feb 2025 11:57:21 +0000
ROA not after: Sat 31 Jan 2026 12:02:21 +0000
asID: 147081
IP address blocks: 103.173.164.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:e0:8b:7c:8a:5a:59:ca:c0:4e:5d:c5:3b:35:ee:30:8c:fa:39:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35AF7B054A8CC95835EC5A2F9275004D39521553
Validity
Not Before: Feb 1 11:57:21 2025 GMT
Not After : Jan 31 12:02:21 2026 GMT
Subject: CN=2EE3FF2DA10CF8919A56A1B4588766D010689DD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:48:4d:23:20:bb:c4:47:c4:dd:ba:62:2f:
b1:91:da:78:a0:c0:61:c1:8e:ca:d2:38:ea:f1:23:
ef:57:52:a5:07:81:16:73:8e:0e:c2:96:e1:d0:31:
c4:e9:13:e7:74:d7:e6:99:f9:2f:a5:92:c1:4f:ff:
03:7d:c1:96:f2:eb:ba:8c:f3:25:be:db:3c:be:00:
ae:3a:5f:ff:80:b9:5e:bc:d3:04:9a:a3:d6:11:48:
54:0c:01:99:2b:7a:d0:56:b9:20:39:27:92:c8:dd:
19:9f:da:11:9b:21:c6:f5:b8:cd:cf:a0:76:00:a8:
9c:d2:77:06:b1:2a:e1:fa:7c:e5:fb:ec:11:65:8c:
45:be:f0:6a:ff:9f:37:78:8b:70:ac:41:e6:de:0b:
27:42:53:1c:ac:6f:24:02:75:0f:50:68:c9:e9:dd:
33:49:ac:df:54:bf:dd:45:60:28:e5:17:02:1c:da:
77:e2:07:af:c8:9d:a9:31:dc:8b:79:81:dd:8c:3a:
95:fa:e2:e9:d1:84:42:d3:9e:12:e3:de:a7:d0:bd:
de:e3:43:99:02:54:0a:ba:ec:90:30:01:da:b1:67:
10:f5:31:8e:9a:18:3c:95:ae:d6:7f:3e:9d:52:82:
b5:9e:41:4c:ae:1a:4e:c2:74:89:93:69:db:76:cd:
74:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E3:FF:2D:A1:0C:F8:91:9A:56:A1:B4:58:87:66:D0:10:68:9D:D6
X509v3 Authority Key Identifier:
keyid:35:AF:7B:05:4A:8C:C9:58:35:EC:5A:2F:92:75:00:4D:39:52:15:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/35AF7B054A8CC95835EC5A2F9275004D39521553.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35AF7B054A8CC95835EC5A2F9275004D39521553.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d46a9ca-1096-4fe4-8993-d0be97b54a76/0/3130332e3137332e3136342e302f32332d3233203d3e20313437303831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.173.164.0/23
Signature Algorithm: sha256WithRSAEncryption
55:2f:de:31:25:2e:9d:0f:7a:b3:ac:5f:f3:5c:14:23:cf:65:
48:0a:78:5d:4a:e2:2a:21:40:fd:3b:24:9b:d2:75:20:36:12:
ca:d8:f9:f0:7d:cf:ce:82:bd:f6:99:4b:2f:07:fd:ac:15:b6:
cf:cf:7c:01:f5:e0:2e:22:90:12:45:d4:9c:a3:0f:d3:f9:1b:
75:a2:76:71:03:8e:de:91:76:7e:5a:57:9d:3e:48:75:4e:52:
c5:50:e5:b0:42:7a:51:ce:73:1f:c1:87:50:b8:0b:24:ea:c4:
47:5f:ce:91:8f:b2:5f:3f:a7:7e:b2:fe:e6:b7:1d:22:17:68:
eb:ae:53:81:dc:d2:36:8d:b5:c5:bc:44:ed:58:4b:37:b6:97:
77:e8:dd:1b:1d:93:cb:bb:57:d1:0b:08:ae:4a:e1:2b:c9:69:
d6:b8:5c:9c:9b:02:d0:a4:c0:f1:16:57:87:fd:9b:22:d6:a2:
f3:70:bd:a7:39:e5:7f:44:d5:04:f9:12:70:ea:72:bf:dd:97:
70:e8:e6:b4:88:50:52:5e:6c:a6:19:2b:a8:a6:05:12:9d:33:
ac:9e:a3:a4:32:25:e8:7c:ad:48:d9:6e:c4:22:7a:33:b2:3c:
26:5f:62:c4:6e:93:bf:99:11:46:df:97:07:b6:e6:04:6e:15:
be:1b:3c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:59:21 2025 by rpki-client