Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131362e302f32342d3234203d3e203435333035.roa
File: 3130332e3133302e3131362e302f32342d3234203d3e203435333035.roa (raw, json)
Hash identifier: 4Vd8P2QZRrVwjwwfWNA03SkDkSQgcKvmELrI6u40LK8=
Subject key identifier: 05:27:17:14:AB:5A:2A:75:72:6A:12:00:03:4F:FA:A9:FF:E8:50:E7
Certificate issuer: /CN=D947E8BEAE01A6710E324CD416D3282ADDFBBFE9
Certificate serial: 58496E0AE1587CAD91F70FD58CF3017DB86462AE
Authority key identifier: D9:47:E8:BE:AE:01:A6:71:0E:32:4C:D4:16:D3:28:2A:DD:FB:BF:E9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131362e302f32342d3234203d3e203435333035.roa
Signing time: Mon 17 Feb 2025 09:00:02 +0000
ROA not before: Mon 17 Feb 2025 08:55:02 +0000
ROA not after: Mon 16 Feb 2026 09:00:02 +0000
asID: 45305
IP address blocks: 103.130.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:49:6e:0a:e1:58:7c:ad:91:f7:0f:d5:8c:f3:01:7d:b8:64:62:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D947E8BEAE01A6710E324CD416D3282ADDFBBFE9
Validity
Not Before: Feb 17 08:55:02 2025 GMT
Not After : Feb 16 09:00:02 2026 GMT
Subject: CN=05271714AB5A2A75726A1200034FFAA9FFE850E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:9f:9e:5d:d8:6d:e4:62:66:0b:fe:61:0f:
6e:6f:31:bb:66:01:53:04:b7:47:98:06:49:a8:4e:
b6:da:8e:e2:20:1f:88:3b:e7:ac:6d:46:da:85:04:
c6:f0:81:32:0d:44:33:17:f5:bb:13:09:ce:ec:ab:
50:c3:d2:0e:51:e8:25:f1:ae:78:64:f8:87:1a:95:
3c:27:eb:77:1d:c6:90:89:e4:e8:05:9e:0c:52:83:
f7:40:11:5b:d3:1b:71:6c:d0:30:0f:fe:c2:77:e2:
66:87:1c:a0:47:1d:28:23:4d:3c:5c:16:a7:2d:e5:
74:b1:16:f5:42:06:91:57:ed:88:fd:dc:02:12:dc:
25:6b:e7:63:f3:91:4b:48:c7:22:79:2c:62:08:37:
c0:e6:87:6e:68:4b:80:b0:3f:63:16:b8:76:16:b9:
18:9f:20:e5:d4:c0:f1:18:c0:02:0c:6c:ca:20:58:
36:2e:da:aa:33:e9:3c:db:1d:17:2e:dd:bb:5b:f3:
4f:43:6a:4b:60:c4:47:e7:2f:81:51:e7:32:64:e6:
45:28:7e:9e:68:8f:24:78:1c:62:f1:7e:2e:2f:d1:
00:63:9b:ec:ee:e5:2a:ee:b5:6d:ab:a7:f0:9b:de:
b2:ba:54:7f:a8:d7:32:1e:22:58:f8:7f:14:87:73:
a1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:27:17:14:AB:5A:2A:75:72:6A:12:00:03:4F:FA:A9:FF:E8:50:E7
X509v3 Authority Key Identifier:
keyid:D9:47:E8:BE:AE:01:A6:71:0E:32:4C:D4:16:D3:28:2A:DD:FB:BF:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131362e302f32342d3234203d3e203435333035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.130.116.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:2c:20:86:cd:13:fb:c3:e5:4d:11:51:aa:a5:36:14:cb:38:
5b:30:87:47:78:36:70:74:1d:ef:3f:00:59:1a:54:62:bc:80:
d3:84:3d:50:c9:3f:10:c4:dc:75:96:95:5f:30:b7:28:63:fd:
70:7e:75:2b:c5:0e:27:07:a6:e1:75:d0:e7:21:27:b1:8d:57:
5e:85:62:d2:67:d7:c8:66:c2:4d:ea:d9:7c:52:fa:f1:ce:3a:
a3:e1:34:33:0e:3c:46:b0:20:7a:fc:83:76:d2:e3:27:aa:21:
4a:71:4d:6e:0b:ff:1c:80:fa:f0:2f:36:0e:4c:6b:f7:8a:1b:
80:82:30:1a:ce:f0:b7:ed:61:ca:6e:3f:d1:89:f7:16:1b:10:
70:76:54:db:f0:6f:6b:60:14:24:99:e1:05:98:19:f5:e4:34:
2b:53:ac:99:be:89:0e:26:15:e2:5a:e8:89:2d:5e:f9:68:58:
34:31:4c:0f:92:b8:14:bb:cf:20:3d:33:76:ce:15:8b:3e:aa:
62:2a:92:b2:b5:4a:da:de:80:d1:2b:06:5f:a9:f2:ad:46:17:
05:63:0a:bb:02:7b:ca:aa:d9:a0:20:31:a3:1d:1d:da:fd:95:
55:f6:75:51:92:f8:02:ed:79:f7:40:67:1a:8a:2a:55:fd:bc:
70:ef:29:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:46:57 2025 by rpki-client