Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/3130332e342e38302e302f32342d3234203d3e20313530323034.roa
File: 3130332e342e38302e302f32342d3234203d3e20313530323034.roa (raw, json)
Hash identifier: uICRVqRri8R1EgyBPUsLQp4TscukJjiepoiJFR6/Ibc=
Subject key identifier: BB:A3:E6:F5:99:1C:8C:FE:64:C6:B4:1F:AB:4D:1C:0B:4D:0F:D3:B7
Certificate issuer: /CN=0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E
Certificate serial: 1FD7EEA13860AF4C7265EF8B6629E00EF599B322
Authority key identifier: 0E:2E:7A:9C:F1:1C:69:2E:C8:E5:6F:03:52:7B:DF:92:FA:00:1A:4E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/3130332e342e38302e302f32342d3234203d3e20313530323034.roa
Signing time: Wed 22 Jan 2025 12:00:00 +0000
ROA not before: Wed 22 Jan 2025 11:55:00 +0000
ROA not after: Wed 21 Jan 2026 12:00:00 +0000
asID: 150204
IP address blocks: 103.4.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:d7:ee:a1:38:60:af:4c:72:65:ef:8b:66:29:e0:0e:f5:99:b3:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E
Validity
Not Before: Jan 22 11:55:00 2025 GMT
Not After : Jan 21 12:00:00 2026 GMT
Subject: CN=BBA3E6F5991C8CFE64C6B41FAB4D1C0B4D0FD3B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5a:9e:f8:3e:bc:0e:56:8d:37:36:0a:93:f5:
02:1f:55:a3:52:11:82:fb:4f:4a:c4:e7:75:24:18:
24:e6:a9:3a:5e:61:26:0a:61:89:51:2f:2b:71:5d:
fd:17:55:45:73:56:77:88:91:79:4c:60:16:eb:3c:
d1:82:69:9e:d7:a5:40:10:70:b4:65:b6:45:09:2d:
cf:73:ab:16:96:28:0f:ae:1a:22:e1:40:b6:1b:03:
36:92:ac:4a:c8:a1:3e:66:c0:17:84:c8:d5:5b:dc:
90:9b:67:5f:54:01:57:8f:30:9b:f0:c9:59:50:df:
c4:e8:5f:0f:40:b1:f2:bb:9a:52:ee:0b:ba:ec:b8:
8a:c4:b4:46:c8:38:4a:20:7d:99:2a:54:3f:51:39:
23:3a:f3:eb:91:bb:15:cb:27:9a:47:c9:20:24:71:
49:00:2e:9c:11:3d:ad:78:ed:0c:07:bf:ff:be:41:
56:1d:fa:5d:a3:1d:c1:56:d2:c3:70:b8:02:ab:1e:
3f:1e:54:20:37:a1:e9:cc:a5:49:d4:ee:4e:9e:06:
5a:5b:06:85:8e:7f:94:c5:3f:42:84:9b:83:03:cd:
75:c2:46:75:29:6c:bf:46:bf:da:f7:54:4a:10:18:
3b:9e:f6:5c:66:82:3e:06:32:a1:26:8a:ea:1d:99:
0b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A3:E6:F5:99:1C:8C:FE:64:C6:B4:1F:AB:4D:1C:0B:4D:0F:D3:B7
X509v3 Authority Key Identifier:
keyid:0E:2E:7A:9C:F1:1C:69:2E:C8:E5:6F:03:52:7B:DF:92:FA:00:1A:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E2E7A9CF11C692EC8E56F03527BDF92FA001A4E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9019589a-d525-40fc-894a-12e44010e3e4/0/3130332e342e38302e302f32342d3234203d3e20313530323034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.4.80.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:71:d3:33:84:4b:0d:47:50:a9:d0:33:7c:4f:92:58:cb:11:
88:a3:3d:1e:80:a3:28:5f:4e:a1:a2:44:7b:8d:a4:d5:c0:8a:
f6:d3:41:08:d8:6d:9d:93:97:0a:fa:62:3d:80:f4:7d:60:0f:
91:e1:eb:9e:3c:12:5f:32:8a:ce:f2:fd:55:d9:2d:1e:25:ec:
55:7c:31:2b:a7:c6:c3:1a:d6:95:df:95:92:8b:4f:d1:61:34:
05:ce:3b:60:9e:b2:c4:bf:32:a0:7a:9b:41:c4:4c:1b:2e:f6:
3e:18:f1:c7:44:95:5e:cc:e3:ba:98:33:57:1f:8a:76:68:f4:
7d:cc:2c:66:67:59:5d:e7:a7:5d:61:97:1a:48:7f:05:a3:6d:
ea:dc:91:ba:94:9d:6a:0a:f6:4f:1a:46:d8:08:db:cf:34:07:
a4:fd:7b:7b:7e:b3:e7:31:24:cb:76:31:2e:aa:3c:6b:21:82:
d4:09:82:e5:46:b2:e5:93:23:0f:d8:96:3e:4d:8d:9b:f2:c1:
77:9e:4e:ce:52:0a:e8:a1:f7:32:21:80:af:07:bd:87:4e:3f:
af:ab:71:03:fd:24:e9:c2:69:87:6b:a0:29:f2:2c:36:30:49:
d3:5d:ef:08:63:c0:bb:9f:46:3f:4f:bc:5a:36:63:12:ec:94:
2b:ee:9b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:08 2025 by rpki-client