Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/3130332e3131342e35322e302f32332d3234203d3e20313337333439.roa
File: 3130332e3131342e35322e302f32332d3234203d3e20313337333439.roa (raw, json)
Hash identifier: IHRMKls6bDo6efJZc4SPr2h5Nej24aqy+WpwVULn5ZQ=
Subject key identifier: 0C:46:B5:AC:F5:38:78:78:60:FE:1E:2C:17:13:51:78:25:97:2C:92
Certificate issuer: /CN=EADA0AEE51F3910B50A065D57D946E3EAFA8BD11
Certificate serial: 75E13AFAD6E438BB0DE6DE2D231201BA994638B3
Authority key identifier: EA:DA:0A:EE:51:F3:91:0B:50:A0:65:D5:7D:94:6E:3E:AF:A8:BD:11
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/3130332e3131342e35322e302f32332d3234203d3e20313337333439.roa
Signing time: Sun 02 Feb 2025 04:00:01 +0000
ROA not before: Sun 02 Feb 2025 03:55:01 +0000
ROA not after: Sun 01 Feb 2026 04:00:01 +0000
asID: 137349
IP address blocks: 103.114.52.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:e1:3a:fa:d6:e4:38:bb:0d:e6:de:2d:23:12:01:ba:99:46:38:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EADA0AEE51F3910B50A065D57D946E3EAFA8BD11
Validity
Not Before: Feb 2 03:55:01 2025 GMT
Not After : Feb 1 04:00:01 2026 GMT
Subject: CN=0C46B5ACF538787860FE1E2C1713517825972C92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f5:14:25:3a:40:fc:20:78:c5:46:68:d3:d5:
68:6a:b7:48:ac:5a:8d:51:1a:a7:7c:cf:e0:38:05:
77:86:ea:84:ba:e3:2e:97:f5:a1:b1:ea:17:d6:df:
52:34:ef:97:2e:59:53:3c:6e:5a:48:9b:d9:42:9f:
2f:d7:54:8f:cb:1d:46:81:7d:b9:24:0f:ac:64:6f:
85:f4:c0:3b:48:93:f1:f9:2f:02:14:e9:7f:f9:18:
27:80:fc:00:8b:38:97:4e:99:ef:cd:84:3c:64:1e:
97:c4:46:21:ea:a8:11:f8:25:e0:23:84:8e:06:3a:
c1:94:a4:08:77:da:9f:bf:65:6d:09:52:55:bd:11:
c3:8b:cf:04:d9:2a:90:98:df:ae:7b:da:7b:c3:aa:
50:dc:87:19:8a:d5:0c:d7:2f:d8:99:68:90:6d:39:
fc:0f:13:f7:45:b4:16:4c:87:20:12:5b:59:f0:35:
67:91:5f:82:6d:85:5f:45:6b:7c:2b:fe:34:70:f1:
25:92:71:52:2c:32:fe:16:46:af:c0:d0:22:bd:42:
fb:05:49:65:27:9e:73:6a:cd:f6:30:fe:c1:44:e0:
8f:44:a4:0e:be:7c:45:49:73:66:c6:4d:75:ea:47:
99:90:cf:d3:b6:64:9d:aa:ce:00:e9:fd:1e:f2:76:
41:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:46:B5:AC:F5:38:78:78:60:FE:1E:2C:17:13:51:78:25:97:2C:92
X509v3 Authority Key Identifier:
keyid:EA:DA:0A:EE:51:F3:91:0B:50:A0:65:D5:7D:94:6E:3E:AF:A8:BD:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EADA0AEE51F3910B50A065D57D946E3EAFA8BD11.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/3130332e3131342e35322e302f32332d3234203d3e20313337333439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.114.52.0/23
Signature Algorithm: sha256WithRSAEncryption
73:92:af:a6:c3:19:71:2d:74:d2:4d:19:44:28:31:3e:97:b0:
5a:f8:3c:e1:c5:51:5e:ae:11:fe:d0:73:02:66:fa:02:f0:1e:
31:f0:a6:42:cc:61:ad:d8:e5:c2:ad:0c:f0:ec:00:5e:78:0f:
40:7b:9d:f5:82:7d:5e:7a:a3:bf:21:a5:3a:3e:c8:39:a0:c2:
86:73:d3:43:a3:7a:20:45:6f:4b:a2:aa:46:e6:c0:36:4f:b1:
42:2b:55:e4:3b:18:69:ae:64:c5:ae:3c:9e:bd:cc:a5:b1:9f:
f1:a4:b8:09:11:40:34:84:d6:a9:c6:30:9a:94:9a:fe:fa:68:
60:b7:92:7b:de:c0:52:f6:34:27:b8:fe:ed:df:a3:a9:6d:dc:
ee:7c:d6:8a:fb:fb:5d:30:3b:e2:aa:8c:0f:ac:8f:16:67:d6:
ab:c3:e3:86:8d:23:86:3c:ba:cd:82:e0:f8:9c:25:e2:a9:69:
b2:4b:c4:0b:d4:b6:a9:ad:37:6b:24:ca:5e:fa:ce:38:2c:42:
53:40:4f:3b:b2:cb:50:ed:81:42:5f:b4:7b:da:5e:ec:2d:9a:
5f:f5:dd:08:72:46:eb:63:03:a5:02:6d:ce:27:4f:34:1a:91:
7e:ee:a3:76:13:19:90:6d:95:6a:3c:e8:58:5f:e9:04:a4:e1:
5c:df:fd:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:34:22 2025 by rpki-client