Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9a0129a8-27e8-4046-8989-865b257ea6ca/0/3130332e3230332e39302e302f32342d3234203d3e20313530393236.roa
File: 3130332e3230332e39302e302f32342d3234203d3e20313530393236.roa (raw, json)
Hash identifier: lH+IV1VjfExz6EgaEksT/6x5pW3sOfiOZbcnKLG8hUk=
Subject key identifier: F3:D4:03:19:6F:4B:5B:E5:31:04:C4:6A:C3:64:84:7A:DF:1B:BA:9B
Certificate issuer: /CN=A64957715E7DCEEC3A7D4C3176CC97ED8E5DB31A
Certificate serial: 1A569EA95B66F97CBE48BB061896EFD4325E6221
Authority key identifier: A6:49:57:71:5E:7D:CE:EC:3A:7D:4C:31:76:CC:97:ED:8E:5D:B3:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A64957715E7DCEEC3A7D4C3176CC97ED8E5DB31A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9a0129a8-27e8-4046-8989-865b257ea6ca/0/3130332e3230332e39302e302f32342d3234203d3e20313530393236.roa
Signing time: Fri 31 Jan 2025 03:00:02 +0000
ROA not before: Fri 31 Jan 2025 02:55:02 +0000
ROA not after: Fri 30 Jan 2026 03:00:02 +0000
asID: 150926
IP address blocks: 103.203.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:56:9e:a9:5b:66:f9:7c:be:48:bb:06:18:96:ef:d4:32:5e:62:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A64957715E7DCEEC3A7D4C3176CC97ED8E5DB31A
Validity
Not Before: Jan 31 02:55:02 2025 GMT
Not After : Jan 30 03:00:02 2026 GMT
Subject: CN=F3D403196F4B5BE53104C46AC364847ADF1BBA9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:18:65:17:7a:c4:ed:52:76:09:9d:d8:4b:f2:
0d:02:f1:a3:13:f1:03:e4:24:ea:c4:d6:d4:5e:ca:
a0:c8:e2:4a:60:14:a7:be:3b:1c:8b:48:e7:b8:36:
fa:ec:01:d9:e3:fc:ee:7d:b2:81:70:6d:bf:c5:a1:
1e:17:f1:38:cb:4b:84:59:d2:7c:03:c5:b8:f9:45:
ee:83:07:a3:88:a7:63:3b:87:8b:04:a0:9e:5a:8c:
d2:c8:a8:13:51:34:d6:b5:37:73:c8:c7:7e:c4:63:
46:56:8d:6a:49:cf:df:92:a6:35:49:92:92:f1:de:
a3:9c:0a:73:d1:4e:8c:31:f8:eb:ab:20:75:31:73:
6e:8c:8c:52:f4:90:5a:d6:18:bd:a5:4f:60:9c:0d:
9c:65:a5:12:dd:39:13:73:35:c6:a9:7a:eb:4b:36:
ff:ae:fe:82:0c:90:82:a3:3d:1c:a4:04:f8:f0:28:
3f:69:a3:40:05:4b:a1:5f:b0:3a:2c:68:95:95:5f:
1b:d7:58:f2:be:12:8c:49:e3:e6:ce:ae:55:17:57:
13:a4:91:13:7d:fd:1a:72:5f:88:f6:7b:d3:d2:cc:
60:94:30:37:e4:73:48:e2:f3:dc:bf:30:94:7e:d0:
78:6d:47:bd:23:8c:76:6d:f0:5c:72:45:e2:8c:f3:
5a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D4:03:19:6F:4B:5B:E5:31:04:C4:6A:C3:64:84:7A:DF:1B:BA:9B
X509v3 Authority Key Identifier:
keyid:A6:49:57:71:5E:7D:CE:EC:3A:7D:4C:31:76:CC:97:ED:8E:5D:B3:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9a0129a8-27e8-4046-8989-865b257ea6ca/0/A64957715E7DCEEC3A7D4C3176CC97ED8E5DB31A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A64957715E7DCEEC3A7D4C3176CC97ED8E5DB31A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a0129a8-27e8-4046-8989-865b257ea6ca/0/3130332e3230332e39302e302f32342d3234203d3e20313530393236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.203.90.0/24
Signature Algorithm: sha256WithRSAEncryption
70:7a:da:9f:0a:55:fb:89:6d:4a:62:69:88:db:80:e4:da:3d:
6a:bc:61:67:94:15:ea:0d:75:a5:4a:1b:c6:72:bb:d0:e2:aa:
5f:fb:40:d3:e7:8e:1d:54:83:c1:11:18:7d:73:9d:a2:70:61:
90:1a:dd:34:86:ab:d0:69:2d:70:dd:eb:a2:4f:f6:4d:0f:1a:
9c:48:45:65:38:72:86:df:42:59:10:0a:ba:1d:a0:93:21:ff:
ee:56:e1:12:51:8c:3a:da:2e:72:da:ed:c0:29:09:ae:ab:ba:
2f:f8:a6:e5:64:46:df:e8:8a:59:43:88:a8:ea:26:b7:53:c5:
8a:8c:06:6a:26:83:66:16:9a:eb:ec:22:a2:f0:4d:51:af:b9:
a7:7f:f4:4d:37:5e:3c:5a:82:f9:43:58:48:00:18:1a:6b:08:
aa:e0:ec:df:57:8e:9d:d4:81:5f:3e:b6:f5:5a:32:e6:97:8a:
4d:d0:eb:e6:29:4a:b2:b6:58:6b:45:df:cd:17:0e:68:10:29:
25:e9:be:d8:1e:33:ee:40:03:ca:c7:a9:d0:9b:6e:fc:05:0a:
ea:91:7e:38:fd:f5:5b:ba:09:d1:08:c9:c1:07:49:0c:f1:68:
37:3a:f1:1d:81:5a:5f:0c:9a:c4:7c:51:a5:e9:9e:91:18:94:
f8:c6:45:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:37:07 2025 by rpki-client