Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa
File: 3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa (raw, json)
Hash identifier: 8iqd/DLPSKXzm6qMwrWasV0WJDuso56p2m5ElmgcTDA=
Subject key identifier: 30:AB:F9:FE:36:94:71:C5:8F:C5:75:68:01:96:21:D3:AB:A7:54:09
Certificate issuer: /CN=8A54C81A444D07051A24AACF743F01863F8129AB
Certificate serial: 33E633547855255932BA716028AF02D226DAAEEC
Authority key identifier: 8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa
Signing time: Wed 01 Jan 2025 17:00:03 +0000
ROA not before: Wed 01 Jan 2025 16:55:03 +0000
ROA not after: Wed 31 Dec 2025 17:00:03 +0000
asID: 141955
IP address blocks: 103.166.158.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:e6:33:54:78:55:25:59:32:ba:71:60:28:af:02:d2:26:da:ae:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A54C81A444D07051A24AACF743F01863F8129AB
Validity
Not Before: Jan 1 16:55:03 2025 GMT
Not After : Dec 31 17:00:03 2025 GMT
Subject: CN=30ABF9FE369471C58FC57568019621D3ABA75409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:03:86:66:d1:4f:b4:59:f0:a6:d9:3c:21:68:
cb:5f:a9:9f:98:5d:10:44:7c:e9:8b:c9:18:3f:d5:
6e:75:91:5b:c3:78:11:2c:44:26:0b:3f:61:26:e3:
07:c2:6d:3a:f7:bd:52:ad:24:f6:0c:c3:d2:fd:ef:
47:aa:0d:23:b9:ca:a2:87:4c:64:e8:40:c8:86:fc:
e7:7c:85:b7:f1:ce:83:61:14:67:40:91:d7:9c:b1:
83:71:3f:8f:ee:17:e6:98:8b:ce:4a:14:4a:43:bb:
84:8c:d2:c9:53:0d:7a:bf:16:f9:46:6c:a7:66:a4:
43:5e:ad:4e:4d:0f:87:d0:fb:b1:b9:fb:42:70:bd:
e8:7a:f8:2b:88:1e:49:3b:4e:8b:2f:9d:c0:89:fa:
6c:56:c8:95:36:4d:b5:6e:8e:a2:5c:bb:12:62:70:
7a:7d:1c:7d:55:2a:d9:12:9a:c0:f9:37:55:2d:58:
0d:62:6c:f2:ea:43:79:05:11:e4:fd:a1:9e:c8:85:
b3:09:82:47:67:47:80:1c:ca:a7:d9:5d:d0:cf:b3:
be:df:25:14:2d:d3:f3:50:b1:f5:71:00:fa:41:14:
48:8c:07:cd:80:22:57:e0:f4:39:af:ba:32:a6:4a:
cc:d5:f8:de:ff:94:1c:b4:bf:e9:69:3a:35:c2:be:
31:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:AB:F9:FE:36:94:71:C5:8F:C5:75:68:01:96:21:D3:AB:A7:54:09
X509v3 Authority Key Identifier:
keyid:8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.166.158.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:85:f4:c0:55:c6:36:6f:fc:dc:91:6a:29:29:0f:8c:34:1c:
a0:83:d7:a0:c2:dd:26:79:f5:20:29:fe:d1:d8:b3:f1:c5:80:
64:44:76:1f:35:d1:a3:92:8a:24:88:66:1b:5c:84:2f:87:6d:
b6:09:f9:8d:8e:1a:71:ed:91:4c:c0:18:00:cf:b7:46:6b:d1:
38:d8:53:67:3c:e3:a9:24:a2:04:1a:0a:4b:d5:96:4b:3f:cd:
72:f3:46:60:88:de:c0:af:29:b7:fb:96:31:49:a0:c6:18:5d:
dc:be:dc:00:6c:2f:a1:18:a0:b4:5a:70:89:db:b8:e8:04:ee:
51:b7:bc:de:6e:43:50:36:09:c8:e8:d8:f4:59:37:45:4d:ac:
f6:ed:3d:b1:5d:7d:ca:34:de:b5:3f:02:df:be:c3:91:4d:a8:
b0:3e:17:aa:c5:78:32:95:49:44:c7:59:a7:5a:f8:b5:13:ed:
16:f7:d4:2e:5f:a0:f5:0d:23:60:58:36:2b:c9:7c:0c:6c:3d:
03:bd:8d:2c:e4:c5:bb:34:a6:c3:47:41:7f:26:50:07:4d:d8:
7c:5a:37:d4:86:49:1d:3e:ec:99:2f:49:aa:61:9d:13:01:f3:
19:2e:1a:7e:99:2a:d9:36:e1:d2:40:00:d7:70:91:42:18:eb:
00:d6:90:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:38 2025 by rpki-client