Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/3130332e3138342e36332e302f32342d3234203d3e20313439363734.roa
File: 3130332e3138342e36332e302f32342d3234203d3e20313439363734.roa (raw, json)
Hash identifier: lO4uiYTW+B+xDrbytghsdYyKIH1h6VcZY1d24FUIzFY=
Subject key identifier: 96:62:3F:A5:56:23:82:9B:A5:76:7F:94:DC:A5:C9:BB:15:5F:E0:02
Certificate issuer: /CN=AFFB903F876CB3B8748A1C899458FF38A0D06D4B
Certificate serial: 1B87C03A160D4375F6ED0A3F967BD8449851AB19
Authority key identifier: AF:FB:90:3F:87:6C:B3:B8:74:8A:1C:89:94:58:FF:38:A0:D0:6D:4B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/3130332e3138342e36332e302f32342d3234203d3e20313439363734.roa
Signing time: Thu 20 Mar 2025 10:00:02 +0000
ROA not before: Thu 20 Mar 2025 09:55:02 +0000
ROA not after: Thu 19 Mar 2026 10:00:02 +0000
asID: 149674
IP address blocks: 103.184.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:87:c0:3a:16:0d:43:75:f6:ed:0a:3f:96:7b:d8:44:98:51:ab:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFFB903F876CB3B8748A1C899458FF38A0D06D4B
Validity
Not Before: Mar 20 09:55:02 2025 GMT
Not After : Mar 19 10:00:02 2026 GMT
Subject: CN=96623FA55623829BA5767F94DCA5C9BB155FE002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8a:83:70:c8:77:3e:fa:15:f4:44:74:0c:57:
01:48:79:71:53:4d:9b:69:44:22:e2:76:0c:67:d0:
3e:e5:1b:4d:c8:5f:11:ac:16:54:9a:35:d2:c6:4c:
17:a3:37:56:20:89:0d:eb:e5:60:91:fc:f4:0c:d9:
d6:14:eb:45:78:b4:d1:d4:23:cf:ee:5f:39:db:dd:
d2:2b:8b:d8:c7:a0:8f:9e:4c:03:31:98:0a:40:36:
91:4c:ad:e4:e3:03:fd:28:6c:72:11:b4:d3:17:f2:
8a:ef:dd:57:31:46:95:a8:69:76:2e:16:c9:f0:80:
f5:be:36:86:21:07:cf:c9:e3:30:8e:39:3c:fa:e1:
7c:a4:45:dd:c3:fb:6e:92:99:74:af:09:48:7f:7a:
6e:36:48:4c:81:0f:e9:97:75:13:1c:df:0e:74:8d:
d6:c1:aa:02:66:d2:03:f1:e6:db:4d:f4:86:7f:f8:
35:cc:53:40:83:ec:10:ed:6e:3c:26:da:59:69:ee:
0b:57:7f:6d:88:b2:63:91:dc:ec:a5:96:d4:8b:f6:
60:83:99:41:59:a1:df:86:98:8f:64:1d:ee:79:f8:
60:9d:09:b3:f8:f5:24:8a:18:50:9f:f9:d9:aa:1a:
58:1b:f6:39:51:1c:bf:c2:be:7c:ee:01:8a:57:22:
3e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:62:3F:A5:56:23:82:9B:A5:76:7F:94:DC:A5:C9:BB:15:5F:E0:02
X509v3 Authority Key Identifier:
keyid:AF:FB:90:3F:87:6C:B3:B8:74:8A:1C:89:94:58:FF:38:A0:D0:6D:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/3130332e3138342e36332e302f32342d3234203d3e20313439363734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.63.0/24
Signature Algorithm: sha256WithRSAEncryption
93:13:d1:37:a2:7a:fb:84:cc:12:41:bb:6a:1f:e4:46:87:9d:
02:ae:26:3b:68:7d:08:b6:7b:0d:15:c7:58:5a:0a:c6:4c:ef:
cd:af:b2:3a:c2:89:f3:48:67:2f:92:45:70:62:0c:1f:6e:5f:
0e:12:82:78:68:a7:43:b3:24:2d:1e:75:af:ab:17:fa:93:57:
ea:a3:7a:b2:c5:4c:99:7d:a4:ef:d6:04:69:35:06:eb:24:fc:
93:20:bb:72:ce:9b:29:56:1c:da:61:2a:74:65:84:65:1a:ce:
82:11:63:1f:85:38:5f:01:b8:c4:9c:3d:9d:d0:d8:20:9f:84:
9f:f2:67:12:09:e0:92:11:e3:cc:8e:ed:dc:aa:c0:5b:fb:9d:
0d:68:ef:16:a3:52:88:b6:90:ef:75:ef:c7:8a:b0:00:aa:3b:
3e:bd:d5:16:a7:71:e5:ed:b9:12:e1:19:ae:ed:a2:f8:e7:51:
a1:9c:57:49:b5:36:9c:3f:0e:79:ae:d8:c1:e5:33:a3:e0:a6:
67:79:98:72:96:de:7f:98:3c:53:3e:14:41:31:02:a5:b6:d8:
ed:78:9d:18:73:22:c4:35:65:46:94:73:74:dd:b7:db:a2:4a:
22:ed:d7:22:02:b7:cf:64:96:65:20:81:78:5d:be:b8:6a:ff:
f7:fd:72:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:52 2025 by rpki-client