Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3232203d3e20313335343838.roa
File: 3130332e39352e382e302f32322d3232203d3e20313335343838.roa (raw, json)
Hash identifier: V41dsoCGv/A1SNxCT74tNpzG0O4+YBlV/SgqxtUPiBI=
Subject key identifier: 4A:D1:AD:B3:21:96:BB:BC:FC:45:56:E8:F0:F6:4F:5B:30:1A:CC:B5
Certificate issuer: /CN=415543D423E0BD035D612DEA9BF060290E5552D2
Certificate serial: 05ADC3D0A979CCC71E71790C17333EE9EEADE182
Authority key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3232203d3e20313335343838.roa
Signing time: Mon 24 Feb 2025 04:01:05 +0000
ROA not before: Mon 24 Feb 2025 03:56:05 +0000
ROA not after: Mon 23 Feb 2026 04:01:05 +0000
asID: 135488
IP address blocks: 103.95.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:ad:c3:d0:a9:79:cc:c7:1e:71:79:0c:17:33:3e:e9:ee:ad:e1:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415543D423E0BD035D612DEA9BF060290E5552D2
Validity
Not Before: Feb 24 03:56:05 2025 GMT
Not After : Feb 23 04:01:05 2026 GMT
Subject: CN=4AD1ADB32196BBBCFC4556E8F0F64F5B301ACCB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:60:c5:7a:01:37:8c:7f:dc:70:df:95:61:3c:
00:15:9a:0a:ef:51:d6:5e:82:1c:49:5d:df:7b:9d:
29:45:0f:e6:5c:d2:51:13:6b:64:b3:e1:55:59:dd:
6b:26:3c:47:00:95:f3:84:91:ea:7a:ae:35:ba:b0:
20:2e:96:e8:71:1a:4f:c0:8a:04:0e:12:bd:8d:c4:
99:a3:7d:68:f3:1d:07:2f:42:5d:e9:26:10:04:68:
34:d4:5d:c8:55:46:d0:14:8b:82:96:81:fd:dc:1f:
39:64:6a:81:1d:b8:79:72:e3:b0:a3:68:db:91:7a:
55:fe:d5:e7:36:10:e8:53:06:e5:af:77:3a:f6:a9:
39:74:ea:eb:71:7b:70:47:35:91:db:f6:88:24:20:
ab:f8:ad:87:0f:8f:d2:94:92:5b:ec:8d:0f:19:71:
f4:b8:8c:ef:e0:95:e1:fe:2f:93:4e:12:cd:1d:49:
dd:7f:39:e9:a4:7c:2b:59:77:e6:19:b5:4a:d2:4e:
0b:43:2f:e6:4f:1a:24:9f:b1:b7:34:cc:73:f5:e1:
ad:92:55:3a:c5:11:a9:84:16:86:12:5e:99:84:a2:
ff:4b:6f:d3:57:17:b2:07:40:6c:ee:d3:f8:88:7b:
16:20:e3:10:28:af:b8:14:ae:99:b5:a3:21:e1:54:
c8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D1:AD:B3:21:96:BB:BC:FC:45:56:E8:F0:F6:4F:5B:30:1A:CC:B5
X509v3 Authority Key Identifier:
keyid:41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32322d3232203d3e20313335343838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.95.8.0/22
Signature Algorithm: sha256WithRSAEncryption
09:fa:d0:32:46:c7:04:78:36:5b:be:1e:d5:01:e6:ad:4c:dc:
94:32:4f:1f:6b:73:49:d1:24:43:ab:10:a2:04:4e:44:ed:2a:
38:2f:aa:e0:c7:57:17:ef:ea:ce:41:42:1c:96:2a:b3:6a:25:
15:7f:fe:5b:d5:c7:6e:9d:50:38:e1:a4:39:1d:a9:26:53:ef:
81:48:da:5c:04:40:c3:2f:d5:e8:a9:92:2c:80:92:95:42:89:
86:97:c1:3e:f9:c2:38:10:a6:d0:fc:5f:75:0f:82:89:97:0a:
4f:69:78:a1:43:9c:5b:b5:1c:75:5b:0b:e0:81:44:cb:0d:a3:
f9:2d:12:e3:47:85:9d:3f:51:28:71:14:bc:02:dc:4b:bf:67:
4f:2e:9a:8b:c9:82:a5:b5:a5:84:36:f2:25:f9:2b:f6:eb:e8:
b3:ca:25:8d:18:ce:ad:3b:fc:9b:79:b8:98:57:01:0b:79:34:
6c:64:3d:62:78:ca:d9:04:25:f4:06:1d:c5:75:59:14:1e:1e:
c7:26:5e:b4:d7:2d:a2:47:e9:a7:30:53:b6:26:75:9e:d4:a0:
4d:a2:20:3c:b7:96:78:24:c6:75:69:28:54:46:49:1d:e0:f4:
c2:ac:44:2e:fd:26:83:c2:e9:74:59:f6:e3:df:96:c1:dd:ed:
89:ad:8c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:08:14 2025 by rpki-client