Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa
File: 3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa (raw, json)
Hash identifier: M93Ni1T1Tbr7xBYmfCDNgdw5xr36AB/YVcpH7A2lVoA=
Subject key identifier: 11:01:E1:07:F8:98:D1:DA:76:0E:01:8D:71:E4:13:57:D2:6C:8D:EE
Certificate issuer: /CN=C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF
Certificate serial: 51DFBEFF55C1662A8B21577BBA5C242B2FB7B7F4
Authority key identifier: C5:54:E8:91:C5:83:CE:2A:BF:2D:B5:DE:E8:21:F6:B6:30:BF:F5:DF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa
Signing time: Mon 13 Jan 2025 01:01:11 +0000
ROA not before: Mon 13 Jan 2025 00:56:11 +0000
ROA not after: Mon 12 Jan 2026 01:01:11 +0000
asID: 141134
IP address blocks: 103.158.250.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:df:be:ff:55:c1:66:2a:8b:21:57:7b:ba:5c:24:2b:2f:b7:b7:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF
Validity
Not Before: Jan 13 00:56:11 2025 GMT
Not After : Jan 12 01:01:11 2026 GMT
Subject: CN=1101E107F898D1DA760E018D71E41357D26C8DEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5c:ac:27:ed:2b:a2:9e:44:a7:09:6e:fc:11:
0b:9c:dc:9e:44:fb:3a:1e:e9:87:02:c6:ae:f4:e4:
2f:f2:bf:0d:f0:e9:e7:59:7e:75:a4:28:d0:66:8a:
f5:ec:25:ae:d7:1f:51:b3:f7:30:ba:9c:76:d5:9a:
df:cb:e7:c8:fb:c0:c3:02:10:9b:0f:86:61:91:bc:
a7:cb:bc:a1:b2:c3:7a:22:ce:c9:09:0d:e3:bd:4b:
e6:67:8d:70:dd:25:1d:f6:57:cf:cf:d5:6a:18:e8:
c5:66:17:ef:fd:3e:b1:2d:36:c5:41:70:56:6c:e7:
31:6a:9a:9b:01:e1:7d:bc:69:f3:60:98:70:10:00:
ae:63:65:82:80:fa:c6:86:50:e3:e8:65:36:7a:87:
98:c7:7c:8c:cd:66:46:a1:e5:55:d2:69:2d:0f:a0:
c5:73:14:bf:4f:43:2a:30:cb:5b:67:82:99:e8:0b:
6e:d4:9c:36:c4:ba:1e:e4:1b:01:c2:ec:36:fa:ed:
d4:56:dd:c2:3d:55:05:f4:ea:8e:bd:8e:92:ca:d3:
95:15:e7:b0:43:ee:0d:d1:44:a4:24:29:f9:85:1c:
54:04:bc:6f:4e:72:10:9e:d5:c6:cb:f1:7b:ec:cf:
5c:8a:cd:cb:47:7d:2e:ff:93:f4:6d:9f:04:9d:ba:
81:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:01:E1:07:F8:98:D1:DA:76:0E:01:8D:71:E4:13:57:D2:6C:8D:EE
X509v3 Authority Key Identifier:
keyid:C5:54:E8:91:C5:83:CE:2A:BF:2D:B5:DE:E8:21:F6:B6:30:BF:F5:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/3130332e3135382e3235302e302f32332d3234203d3e20313431313334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.158.250.0/23
Signature Algorithm: sha256WithRSAEncryption
59:30:e4:83:73:81:df:77:e9:a3:86:54:97:e3:dc:67:2c:f9:
02:bf:ef:bf:c0:0a:da:f0:54:f9:7a:e4:5b:b9:35:6c:f8:6a:
db:c5:05:37:5b:41:68:59:0a:32:44:16:5b:50:8f:4d:3d:c3:
56:d4:9f:8f:04:d7:a8:fa:32:69:5c:ee:82:40:de:85:32:49:
8f:ee:9a:2d:41:79:ce:3d:6b:aa:41:1d:2d:83:22:29:d8:83:
cc:ae:c0:2e:42:be:42:92:cf:08:8a:c2:7b:7e:d7:96:6d:d3:
d2:3b:64:ec:a3:f9:f8:40:f8:34:40:1f:b6:ef:3a:4f:24:8e:
00:78:5e:63:63:32:da:3c:63:00:92:ef:0e:2b:5c:9e:c7:af:
e4:89:79:c5:52:94:13:38:f3:de:8d:ac:9b:fb:f6:4a:2d:08:
dc:52:9d:3a:f6:98:4c:c9:30:38:52:b0:17:d0:25:bb:fc:76:
ca:98:3a:e8:8d:b7:0d:44:f5:3e:00:da:99:92:5a:33:3c:0a:
50:18:2b:62:bd:02:4d:78:73:1b:8e:20:02:c8:7f:f9:bf:5f:
58:44:25:7f:d2:cc:b7:a0:55:f1:46:7e:45:d0:f4:aa:72:7d:
e3:17:af:ef:e6:41:1b:c6:99:0e:57:59:05:7d:4b:f2:da:d1:
cd:c4:98:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:26:02 2025 by rpki-client