Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134312e302f32342d3234203d3e20313336383534.roa
File: 3130332e3130322e3134312e302f32342d3234203d3e20313336383534.roa (raw, json)
Hash identifier: B2qLIiehd/VzdAIdfO6T4LFNUB/9FZCQ+7yI4OPC/0Q=
Subject key identifier: 63:0E:99:16:02:B8:88:89:B0:19:18:12:38:77:65:8B:7A:35:FA:EE
Certificate issuer: /CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754
Certificate serial: 0961675571E7DDDBE9A1CCCA73545B3E3358FA38
Authority key identifier: 1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134312e302f32342d3234203d3e20313336383534.roa
Signing time: Tue 28 Jan 2025 10:00:01 +0000
ROA not before: Tue 28 Jan 2025 09:55:01 +0000
ROA not after: Tue 27 Jan 2026 10:00:01 +0000
asID: 136854
IP address blocks: 103.102.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:61:67:55:71:e7:dd:db:e9:a1:cc:ca:73:54:5b:3e:33:58:fa:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754
Validity
Not Before: Jan 28 09:55:01 2025 GMT
Not After : Jan 27 10:00:01 2026 GMT
Subject: CN=630E991602B88889B01918123877658B7A35FAEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f8:20:b6:a5:57:ea:bf:ea:a4:9e:06:f4:ee:
57:92:52:80:eb:94:ce:36:34:ce:4b:0f:02:a1:31:
b9:8a:a4:a7:16:3e:85:7a:ed:01:53:5d:24:d0:92:
90:32:e6:89:2f:0d:9d:40:03:04:1a:6d:84:4c:8a:
5d:39:7f:9c:21:a3:b0:e5:47:c7:69:97:a1:ea:75:
68:a4:f3:e6:61:46:97:6b:48:8a:d8:12:81:6f:95:
0c:e4:53:6c:e9:79:26:c0:44:2a:cb:b7:cd:c3:43:
81:2a:38:7c:c8:97:20:83:26:87:13:81:55:d8:ce:
dc:a2:2b:67:95:30:b5:c2:24:68:61:fc:d1:d9:17:
07:5b:68:63:d8:b6:d2:71:d2:64:94:8e:58:11:03:
3d:1b:c6:ac:d7:54:1c:74:51:e4:09:b9:1e:19:4b:
40:bd:94:8a:a6:98:5a:89:6f:2e:d5:c8:9a:27:ac:
b1:1a:89:5e:45:78:98:95:c3:14:28:84:af:57:09:
8f:07:7e:99:5b:1b:49:5d:9d:b7:5e:18:0b:5f:3c:
cf:b5:ec:66:97:74:86:e6:c4:59:1d:d6:54:47:33:
5d:6b:17:02:1f:1a:51:33:e7:c8:da:87:6d:c5:13:
94:de:1e:e2:d3:13:67:8c:e5:2c:eb:09:8a:6c:81:
ae:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0E:99:16:02:B8:88:89:B0:19:18:12:38:77:65:8B:7A:35:FA:EE
X509v3 Authority Key Identifier:
keyid:1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134312e302f32342d3234203d3e20313336383534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.141.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:4e:e6:f0:6b:b6:0b:41:f6:bf:df:5e:9e:30:a4:95:bc:ca:
29:d9:5e:6b:30:5a:ff:bd:eb:10:74:f7:15:2b:c4:4e:55:72:
45:bd:31:f1:70:86:00:c5:ca:81:2c:06:75:2d:8b:a7:a8:1a:
be:99:78:03:3a:55:0e:24:6d:db:5c:e5:28:72:b6:6e:fe:2e:
f5:db:12:be:c7:9d:b9:12:f3:5f:10:93:db:09:fe:98:dc:ef:
38:d8:79:e6:c0:7e:44:53:fd:d0:aa:26:40:f9:28:c2:39:43:
0e:58:4a:e9:97:64:60:bf:16:65:bd:69:e2:1f:83:11:0b:65:
4b:5a:79:11:c0:f7:2f:4a:8e:d8:79:47:df:13:a3:5d:f8:c7:
8b:af:77:1d:44:6d:fd:63:5f:49:3a:82:3a:78:dc:28:65:2a:
10:7d:42:77:7a:c0:bd:0a:bb:5b:a9:1d:b3:87:21:64:26:15:
b6:d1:92:76:2b:1c:23:a5:73:92:44:c9:7d:ca:47:50:1c:01:
4f:d3:ec:2a:8a:9e:04:de:aa:ce:c0:0f:e2:2c:48:0e:e8:4f:
a8:96:23:5a:fe:d6:af:47:24:b0:39:17:bd:f5:cb:3b:94:ed:
b0:52:ff:1c:fb:13:82:8b:87:44:16:64:4e:1c:e7:7d:43:9b:
eb:79:5a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:20:31 2025 by rpki-client