Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/3130332e3137332e3134302e302f32342d3234203d3e203538343835.roa
File: 3130332e3137332e3134302e302f32342d3234203d3e203538343835.roa (raw, json)
Hash identifier: kn1u3H+Ll2agnCreRcaCuxh7oJFk4p9Ar3zFl2iudbk=
Subject key identifier: A2:7D:65:9E:67:E7:86:F5:F9:F2:8B:BB:E7:45:C2:81:28:DA:F5:CE
Certificate issuer: /CN=E35DA07B114BD42901F7C1DB8E684E995E2E4433
Certificate serial: 0C4FC4C58CBC0EAF53B016F8D7E1D51CA5D5F2CC
Authority key identifier: E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/3130332e3137332e3134302e302f32342d3234203d3e203538343835.roa
Signing time: Sat 25 Jan 2025 05:00:01 +0000
ROA not before: Sat 25 Jan 2025 04:55:01 +0000
ROA not after: Sat 24 Jan 2026 05:00:01 +0000
asID: 58485
IP address blocks: 103.173.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:4f:c4:c5:8c:bc:0e:af:53:b0:16:f8:d7:e1:d5:1c:a5:d5:f2:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E35DA07B114BD42901F7C1DB8E684E995E2E4433
Validity
Not Before: Jan 25 04:55:01 2025 GMT
Not After : Jan 24 05:00:01 2026 GMT
Subject: CN=A27D659E67E786F5F9F28BBBE745C28128DAF5CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fa:6e:fc:76:a0:d3:ab:02:fc:66:85:19:e0:
e5:d4:fb:57:59:f0:a0:22:a7:08:a2:63:0a:e3:81:
78:27:21:d8:27:a4:2f:cf:85:16:20:bb:bf:00:13:
86:85:68:f7:fe:1e:c5:d5:02:21:30:d3:04:75:c5:
4e:ed:ac:fd:4c:51:9d:af:e9:39:7e:ee:34:0e:45:
e0:0f:ac:08:e4:61:78:5c:8c:1f:de:ae:60:9f:8f:
a7:3b:51:10:2d:ba:68:37:35:14:17:fd:c2:85:a6:
ab:1d:32:55:26:56:35:32:93:3b:cd:81:b1:73:c2:
d3:1a:1c:33:d0:29:71:ec:e1:ca:d2:66:a9:e6:c4:
1f:ad:19:d2:14:d7:0b:10:ca:b2:73:b7:eb:48:cd:
ed:a1:dc:ae:20:60:df:9d:68:79:bd:12:a2:7f:aa:
77:7f:4c:18:10:44:c3:f9:6c:67:17:9e:52:0b:97:
c8:d5:c0:85:5a:98:72:8b:8b:e0:25:fd:c0:71:a0:
a9:46:bb:7e:53:09:16:16:d4:db:3f:87:bd:f8:d7:
26:d2:d1:68:b4:d2:c1:0f:44:cc:2d:5b:dc:01:97:
d0:c3:dd:2e:ff:c9:1a:bc:a4:6c:7f:cc:f6:68:68:
b7:48:e0:84:be:a9:25:5e:25:99:1b:c2:7d:08:ca:
47:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7D:65:9E:67:E7:86:F5:F9:F2:8B:BB:E7:45:C2:81:28:DA:F5:CE
X509v3 Authority Key Identifier:
keyid:E3:5D:A0:7B:11:4B:D4:29:01:F7:C1:DB:8E:68:4E:99:5E:2E:44:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/E35DA07B114BD42901F7C1DB8E684E995E2E4433.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E35DA07B114BD42901F7C1DB8E684E995E2E4433.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaabb578-b9db-4a47-8d7e-11a634289018/0/3130332e3137332e3134302e302f32342d3234203d3e203538343835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.173.140.0/24
Signature Algorithm: sha256WithRSAEncryption
13:87:e3:f3:07:da:c5:21:64:a2:d7:b3:d2:dd:82:9d:07:bd:
bc:43:5c:6b:60:2b:e1:19:29:33:45:22:35:7e:f7:eb:45:c0:
2d:69:7e:a0:5a:6c:a8:22:42:fb:d5:37:14:f7:b1:73:8e:99:
56:4c:a3:57:65:b8:7f:30:6c:09:04:92:68:e7:25:f7:43:6a:
9a:60:67:f2:b4:34:65:5f:fb:9f:c1:5f:1a:98:e2:f6:eb:a7:
c2:5f:a7:dd:64:98:f6:9f:96:9c:3f:af:f0:31:80:72:92:de:
b2:f0:13:31:b6:9d:6b:04:ae:22:ee:da:ff:e1:f0:4c:61:c4:
88:10:ef:24:aa:86:c2:8e:39:d2:19:5e:3b:13:1b:27:25:38:
c4:de:48:4d:65:80:1b:1f:9c:28:4f:e4:34:35:4d:c8:7c:e6:
ea:ee:ba:1f:8e:45:be:d7:06:13:0d:20:6c:66:23:00:a3:6b:
64:95:6d:3d:55:e1:f4:5f:62:98:d5:57:c8:79:96:03:1c:4e:
f9:63:59:bf:db:df:60:59:f4:75:da:01:10:e2:d2:6a:4f:f1:
8d:bd:74:78:71:a9:56:c2:be:27:20:b3:64:b0:32:13:66:c7:
08:f5:11:32:13:d3:b0:f7:aa:cf:44:8d:3b:0d:71:3d:0b:f8:
2e:bf:58:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:48 2025 by rpki-client