Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa
File: 3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa (raw, json)
Hash identifier: pI4Ee2HOCQgHXKn0phpNZPvS39KAXUpqkjdsByhi1e8=
Subject key identifier: 10:09:A6:43:88:38:3E:42:56:8F:F1:81:05:9E:09:68:1F:4D:96:F6
Certificate issuer: /CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E
Certificate serial: 076C76BEF75AA4EC0D54D2CB6FA393DAA7391FBC
Authority key identifier: 86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa
Signing time: Thu 06 Mar 2025 10:00:00 +0000
ROA not before: Thu 06 Mar 2025 09:55:00 +0000
ROA not after: Thu 05 Mar 2026 10:00:00 +0000
asID: 149697
IP address blocks: 103.186.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:6c:76:be:f7:5a:a4:ec:0d:54:d2:cb:6f:a3:93:da:a7:39:1f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E
Validity
Not Before: Mar 6 09:55:00 2025 GMT
Not After : Mar 5 10:00:00 2026 GMT
Subject: CN=1009A64388383E42568FF181059E09681F4D96F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:67:3e:9b:c9:20:8c:4a:e5:9e:76:13:93:6e:
02:f7:bc:9d:3e:5e:8c:d7:d8:c4:03:e5:80:dc:ce:
71:e9:6e:ab:a1:c9:56:b2:b7:ee:6b:27:be:d4:a2:
a8:43:4f:c5:f2:b3:77:d6:e5:93:5d:0d:27:4c:31:
47:69:63:32:df:44:32:86:9a:a7:5d:99:af:31:e5:
ad:79:69:7c:bd:04:5d:88:2d:23:60:90:5d:b7:14:
d7:1b:29:73:47:a2:1f:35:d6:8a:5f:5a:6f:ac:c3:
c8:f8:f5:85:a6:63:b8:77:18:32:b7:31:e1:c3:92:
11:d1:23:f0:52:e6:97:36:97:22:41:d8:f3:6d:10:
ad:09:b7:28:d4:35:ec:75:61:96:19:94:87:19:19:
d4:34:27:98:07:ee:55:67:5d:d0:9c:4a:22:92:33:
b3:7b:6a:fe:d3:8a:0f:8e:4f:3a:5f:36:84:4a:94:
b0:48:70:3f:09:df:cc:fb:13:a0:f0:cc:b2:0c:2f:
15:ea:2e:fe:7b:aa:f8:e9:7c:47:a6:1c:a7:32:fb:
7b:44:f5:5e:ae:8e:71:60:f6:8d:6f:cc:b6:57:04:
23:c7:fb:49:38:94:45:0b:b6:17:3c:7a:cc:c1:e0:
6e:ff:14:58:dd:13:9f:00:59:4d:29:6c:f0:9c:63:
2b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:09:A6:43:88:38:3E:42:56:8F:F1:81:05:9E:09:68:1F:4D:96:F6
X509v3 Authority Key Identifier:
keyid:86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.186.93.0/24
Signature Algorithm: sha256WithRSAEncryption
97:5c:ed:4b:91:b2:c1:3c:88:1f:72:5a:7d:41:a6:98:20:3f:
84:fc:2e:0c:3e:09:7f:e0:93:05:9a:d3:d9:1f:29:81:2a:a7:
63:9e:97:60:79:32:6f:c5:ac:2c:8c:d1:e8:ad:df:f9:51:8e:
15:32:0e:01:aa:44:ab:54:d3:d7:47:6c:74:19:a9:01:31:91:
b3:e7:b0:de:af:af:8a:c6:3f:ac:18:61:ec:0e:b2:36:69:11:
9d:c0:35:ed:53:db:7d:dc:bb:1e:ec:d4:2c:18:2b:20:b8:6f:
94:97:63:93:33:e8:95:2c:5a:98:d9:da:d1:ba:42:35:0c:40:
d7:cc:79:1f:42:c1:50:80:e4:42:99:87:7e:06:8a:25:0f:ee:
ac:fc:fd:20:c9:2f:e5:32:80:71:ad:f3:1d:30:d3:dc:34:d8:
71:71:64:fe:1f:73:79:3f:f2:be:a8:4c:4d:ca:07:ce:55:6c:
50:34:49:9f:f0:cc:82:e2:c6:57:f4:81:b3:5b:29:a3:74:12:
49:77:88:d5:68:5c:11:bf:d3:97:bd:11:6a:c8:e5:25:cb:b3:
a8:f7:48:bf:a4:5a:22:fd:a4:12:ca:04:8b:d6:be:91:e0:1e:
c4:37:fb:6e:63:5d:b4:e4:3d:73:6e:2f:aa:f9:21:45:de:42:
fb:cc:11:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:53:36 2025 by rpki-client