Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa
File: 3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa (raw, json)
Hash identifier: Tv+weNKfZV3vLvtIURyDMLx5ol7dILJ4RL8AQ9yiukI=
Subject key identifier: 07:FA:14:75:5A:24:51:AC:1F:D0:7E:06:51:9C:BE:5D:E8:44:8C:4A
Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1
Certificate serial: 271653420D6D80BE6A809E803782161A6B8D8992
Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa
Signing time: Thu 13 Mar 2025 11:00:00 +0000
ROA not before: Thu 13 Mar 2025 10:55:00 +0000
ROA not after: Thu 12 Mar 2026 11:00:00 +0000
asID: 149744
IP address blocks: 103.187.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:16:53:42:0d:6d:80:be:6a:80:9e:80:37:82:16:1a:6b:8d:89:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1
Validity
Not Before: Mar 13 10:55:00 2025 GMT
Not After : Mar 12 11:00:00 2026 GMT
Subject: CN=07FA14755A2451AC1FD07E06519CBE5DE8448C4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ab:b7:7f:53:cf:86:af:29:77:eb:63:ed:b5:
05:57:16:2a:7c:39:ae:1d:4d:44:ce:ef:51:21:ef:
86:ba:e0:a7:6a:d6:8f:01:79:b9:62:44:ce:1d:79:
11:40:b2:c0:88:3a:19:24:55:ce:4c:94:a4:78:c0:
db:c5:38:c6:69:aa:f4:e9:18:a4:9a:91:75:61:7a:
fd:c1:80:99:67:bf:e7:3f:95:d8:35:cf:b2:1d:39:
48:52:91:64:24:25:6a:9c:60:16:eb:df:65:e1:f9:
2f:e3:9f:2a:a3:4b:f3:a5:a9:3e:4f:2f:9f:83:ea:
cd:b9:43:b4:7d:7b:97:6e:21:7d:fa:7e:45:01:8b:
04:7c:72:31:1e:5b:30:a6:9c:5a:ae:a3:e3:a1:7b:
dc:c6:4b:e7:b1:cd:2d:12:41:08:f9:7e:db:a9:22:
54:ae:19:ed:ac:97:8b:0d:ee:21:a3:95:0b:d9:9a:
c2:73:95:4d:53:31:63:c4:2d:3a:fd:d3:89:4c:c6:
ac:c8:cf:c7:24:15:1f:a6:05:b1:c1:4b:20:48:a0:
d7:de:6e:5b:5a:86:7a:6e:13:f4:69:60:84:d7:0b:
97:82:87:3b:5e:21:03:69:27:e7:b6:44:91:a9:74:
14:da:c3:86:a7:c1:64:f6:e6:bf:1a:2f:e9:fc:ab:
47:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:FA:14:75:5A:24:51:AC:1F:D0:7E:06:51:9C:BE:5D:E8:44:8C:4A
X509v3 Authority Key Identifier:
keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.187.162.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:05:1a:d9:fb:ea:b8:b7:6f:27:64:80:bf:fb:01:d5:30:93:
23:ca:41:76:e9:11:61:f0:3e:06:83:63:67:4b:f2:5c:e5:9a:
b6:83:de:3b:b5:29:78:a0:e8:f4:22:57:46:42:18:fa:e0:e8:
60:57:ec:68:97:cf:ba:1f:0b:c4:71:8f:d9:e6:8f:3a:9f:25:
0b:af:5f:8f:6f:ea:a2:41:1c:ff:04:0e:7e:29:6c:91:d1:3f:
fd:f5:6b:87:76:fb:47:59:a0:71:84:ec:c2:35:60:f4:b8:ed:
79:57:0f:d3:c7:84:eb:7c:94:36:ab:c4:7c:87:99:b1:b0:fc:
79:af:4f:5f:41:73:56:49:a3:3e:30:6e:75:d6:3a:e4:86:b8:
bf:24:b8:f6:83:a3:e3:27:da:96:94:c4:ac:56:81:64:49:99:
52:4b:32:95:21:ca:64:a1:21:e9:65:13:c3:58:89:d4:4e:48:
0c:54:4f:17:c0:ad:2e:6c:65:27:97:fe:59:e2:c6:0a:ef:57:
80:3e:63:15:bb:f0:37:47:67:a3:32:af:5a:c1:91:3a:5f:73:
4a:b1:e5:7c:bf:9b:e3:ca:09:56:68:e9:3a:f1:4f:64:2b:8b:
59:21:b8:a6:9e:96:67:41:fb:56:2f:02:ba:9a:ae:aa:99:62:
cb:ea:14:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:03:04 2025 by rpki-client