Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa
File: 3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa (raw, json)
Hash identifier: NOw/zlirvTqoOX6sm1/vix2ODTXn4yeECfZvuo38lBs=
Subject key identifier: A8:CE:50:D0:A4:3B:38:CA:DE:3A:EE:D5:69:F1:62:26:26:C1:E2:FC
Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087
Certificate serial: 50E376A6054F252B3AC71A516A81F2D465543E78
Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa
Signing time: Mon 01 Jul 2024 01:02:44 +0000
ROA not before: Mon 01 Jul 2024 00:57:44 +0000
ROA not after: Mon 30 Jun 2025 01:02:44 +0000
asID: 131717
IP address blocks: 103.25.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:e3:76:a6:05:4f:25:2b:3a:c7:1a:51:6a:81:f2:d4:65:54:3e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087
Validity
Not Before: Jul 1 00:57:44 2024 GMT
Not After : Jun 30 01:02:44 2025 GMT
Subject: CN=A8CE50D0A43B38CADE3AEED569F1622626C1E2FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:29:3e:4e:58:0f:61:d4:ef:c2:d4:6f:f9:04:
e1:de:8a:b6:72:4b:3a:ec:43:ff:94:06:1a:44:27:
c3:09:e4:6c:79:71:53:a9:e1:52:c2:9e:9f:fa:05:
a9:a7:03:a3:71:55:eb:18:7c:8d:4b:ae:4e:c0:18:
03:f5:87:a2:95:de:58:bb:60:2a:a5:53:de:51:93:
a0:b4:87:b3:10:1f:38:b1:6e:91:9e:3b:f1:10:af:
ea:f1:3d:55:91:26:5e:86:91:4e:ad:c6:65:67:32:
e6:e5:88:a4:25:de:8e:97:60:55:dd:be:92:e9:22:
e4:c7:80:9c:b7:df:23:20:f4:50:ca:4c:8e:b1:b9:
76:af:46:ee:d5:69:0e:09:11:2c:c2:0d:ef:5f:7d:
2c:d1:a4:10:58:47:ee:3d:e5:92:e8:0f:f3:c5:ce:
28:61:9b:55:ef:98:87:7f:e4:e7:7e:30:2e:62:fc:
fa:03:e1:cd:35:a6:f9:17:54:d5:a5:58:99:d8:f8:
16:6c:c0:f1:60:2a:a8:c5:b6:bf:1e:7a:1e:e7:ba:
17:ce:bf:d6:29:ba:fa:1f:e8:01:11:16:ef:b7:fc:
94:a4:b7:e8:c0:9a:cd:85:68:3c:b4:c9:d2:11:d3:
db:9f:25:0e:70:1c:00:09:45:60:09:aa:ec:2f:85:
84:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CE:50:D0:A4:3B:38:CA:DE:3A:EE:D5:69:F1:62:26:26:C1:E2:FC
X509v3 Authority Key Identifier:
keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.25.166.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:31:8d:a7:5c:b3:39:11:10:02:51:d2:c6:a3:a4:a0:4f:51:
55:07:03:80:72:9f:97:28:b6:d6:70:52:d9:64:64:6d:46:39:
62:e5:09:de:fa:a8:b2:ae:c2:af:de:f7:78:0d:52:b4:3c:d2:
bb:c6:6c:b7:a4:4f:e0:2d:f5:61:c3:ad:1a:da:e7:3e:24:62:
39:a4:9b:f2:ff:cc:98:ca:a1:13:f1:55:50:a2:ca:d2:fe:10:
49:70:ae:96:2f:f4:7b:98:05:a6:21:fe:a4:e7:99:71:7c:83:
4a:b1:18:55:0b:94:18:5c:a5:bb:6c:11:ea:d8:1f:10:76:c7:
44:d8:9c:ca:4b:a1:e3:80:ae:aa:3c:90:ec:1a:63:2d:bf:cd:
f7:68:02:24:18:97:ca:c1:b7:24:33:6b:39:67:bb:38:87:62:
c1:c4:db:9c:d7:ed:e8:0d:7b:ec:1d:8a:fb:3d:8c:6f:72:36:
50:88:5a:0b:61:3c:5e:02:9a:7b:60:5f:fb:18:5f:de:63:f8:
ea:ee:45:ce:e5:a8:7b:6b:73:6b:9e:99:46:f3:b2:8f:f2:9a:
0d:f2:e9:3f:e3:5e:6e:cd:13:0e:77:c6:e9:ae:58:86:fc:7d:
1e:b1:da:fa:12:0e:99:d7:02:50:62:b2:65:60:cf:f2:32:3d:
86:d9:d5:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:30:59 2025 by rpki-client