Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32342d3234203d3e20313335343838.roa
File: 3130332e39352e382e302f32342d3234203d3e20313335343838.roa (raw, json)
Hash identifier: P5qy6MSQkzBzIpWfwlqRGgttfjrknKyQRFiwh+AluKw=
Subject key identifier: DD:03:2B:7B:A2:50:47:5D:A1:E1:6B:9B:4B:DC:81:C6:F8:3C:72:B6
Certificate issuer: /CN=415543D423E0BD035D612DEA9BF060290E5552D2
Certificate serial: 431CF2E32A27101BE08F977C17984E32D6BC83FF
Authority key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32342d3234203d3e20313335343838.roa
Signing time: Mon 24 Feb 2025 04:01:04 +0000
ROA not before: Mon 24 Feb 2025 03:56:04 +0000
ROA not after: Mon 23 Feb 2026 04:01:04 +0000
asID: 135488
IP address blocks: 103.95.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:1c:f2:e3:2a:27:10:1b:e0:8f:97:7c:17:98:4e:32:d6:bc:83:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415543D423E0BD035D612DEA9BF060290E5552D2
Validity
Not Before: Feb 24 03:56:04 2025 GMT
Not After : Feb 23 04:01:04 2026 GMT
Subject: CN=DD032B7BA250475DA1E16B9B4BDC81C6F83C72B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7a:de:37:74:fd:1e:1f:84:34:2a:ec:04:bb:
63:ad:34:51:01:8d:7b:29:be:93:ec:71:d8:7a:f8:
9d:11:ac:d0:dd:ab:27:21:2e:4b:a2:c6:c2:c6:20:
b1:b7:53:62:b2:43:bc:4e:d1:38:01:bf:05:35:09:
cf:2e:e9:c0:ca:32:e8:59:24:41:2a:72:3d:d3:42:
9b:f4:8f:ae:aa:5d:28:cf:93:d2:56:aa:7d:0f:14:
65:e2:b4:9d:57:01:ed:da:5e:26:71:96:bd:72:44:
33:e4:0b:04:08:37:34:2d:fe:8f:a0:4a:a4:02:36:
ef:93:0b:3e:a7:36:9c:a3:72:19:dc:24:b2:bf:43:
9d:db:61:de:4a:dd:c3:6d:9c:19:2d:f8:8c:81:59:
54:b6:f4:5f:fb:8e:62:7d:ce:31:ca:43:7e:44:ad:
fb:04:ab:22:2c:26:7b:4e:5c:24:ce:52:55:07:63:
99:fb:06:07:be:3e:0a:1b:9c:92:0a:67:6c:74:bc:
ec:58:0f:77:4f:4c:0a:0b:7d:01:a9:65:22:75:90:
66:84:b4:bd:50:ce:4b:14:fb:af:28:b4:2b:b3:e4:
31:7e:ee:9d:41:f5:c9:0f:7b:e5:d5:da:e5:cd:fd:
0a:3a:37:e4:ec:48:5a:a0:58:5e:45:18:56:8d:a5:
4e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:03:2B:7B:A2:50:47:5D:A1:E1:6B:9B:4B:DC:81:C6:F8:3C:72:B6
X509v3 Authority Key Identifier:
keyid:41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32342d3234203d3e20313335343838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.95.8.0/24
Signature Algorithm: sha256WithRSAEncryption
68:4a:49:d7:77:6a:0d:4a:90:96:52:af:74:dd:5e:4a:0c:48:
dc:ec:22:62:2e:f8:b1:64:e5:26:04:d5:f4:76:67:85:28:31:
c2:f5:fe:3d:2a:3f:5f:1f:c5:8c:e0:25:06:44:03:59:7c:be:
47:05:4d:0c:7d:2e:fc:c4:d6:4d:a9:96:b3:92:71:47:51:e1:
09:4b:16:c3:4d:fe:16:84:b9:cc:0a:12:5b:a7:6f:ce:ec:d4:
ea:86:cb:cc:e5:2d:1a:f8:ef:b4:8d:bd:2e:0a:b7:68:86:88:
fd:a9:00:aa:a1:ae:bf:f1:ec:e8:b9:81:a6:a9:9c:a4:a1:1f:
2c:9f:b8:09:22:e4:b3:23:d7:0a:f9:71:82:15:1b:d4:d5:d7:
d7:79:df:4d:23:3d:cd:1a:64:f0:36:a8:fe:89:ee:a0:47:0b:
f8:34:27:6c:fe:6c:fb:f0:71:b2:84:17:7b:84:bd:2f:9e:97:
df:74:1f:b1:50:51:72:fd:e6:2b:b5:0e:43:75:ce:62:f7:06:
4c:11:70:12:bc:4f:e4:a9:73:22:58:2a:58:6f:73:f0:e9:10:
b2:19:32:63:5a:41:0e:ea:2d:51:8c:f1:b1:dd:d1:94:f5:14:
be:c0:df:78:7c:91:53:64:9b:72:d8:8f:ab:3b:da:e8:95:c8:
47:6b:3a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:39:39 2025 by rpki-client