Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32342e302f32342d3234203d3e20313337333131.roa
File: 3130332e3130392e32342e302f32342d3234203d3e20313337333131.roa (raw, json)
Hash identifier: oJ+JZotG4pgzmmZEecq6pD6dBlLqMF5qvUlg8uJjk3E=
Subject key identifier: 5E:8B:73:E8:80:AA:87:92:F8:9C:1A:66:D4:15:04:EB:94:E1:85:4F
Certificate issuer: /CN=A42F07BEA859C831526717AB1D092E11E7890BDD
Certificate serial: 44464611069F837BCE8CC630266FA3A3E5DD4194
Authority key identifier: A4:2F:07:BE:A8:59:C8:31:52:67:17:AB:1D:09:2E:11:E7:89:0B:DD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A42F07BEA859C831526717AB1D092E11E7890BDD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32342e302f32342d3234203d3e20313337333131.roa
Signing time: Mon 27 Jan 2025 10:00:00 +0000
ROA not before: Mon 27 Jan 2025 09:55:00 +0000
ROA not after: Mon 26 Jan 2026 10:00:00 +0000
asID: 137311
IP address blocks: 103.109.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:46:46:11:06:9f:83:7b:ce:8c:c6:30:26:6f:a3:a3:e5:dd:41:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A42F07BEA859C831526717AB1D092E11E7890BDD
Validity
Not Before: Jan 27 09:55:00 2025 GMT
Not After : Jan 26 10:00:00 2026 GMT
Subject: CN=5E8B73E880AA8792F89C1A66D41504EB94E1854F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:aa:0f:c9:d6:2f:65:3b:c3:06:ac:6a:82:48:
c6:fb:c9:eb:6f:bd:45:1b:b1:e8:83:7d:cf:ce:88:
6e:52:63:40:8c:1f:08:9e:98:85:8e:05:5d:bf:b9:
54:27:5a:eb:93:6d:a0:5c:90:be:83:7f:80:8a:26:
7a:f6:af:fa:c1:cf:f3:c2:5e:86:0d:5a:a9:3d:df:
15:d2:f1:0b:20:35:4a:e6:99:69:d7:4f:75:0d:3c:
e3:1c:78:72:80:18:6e:22:c9:81:1a:4c:f2:12:19:
34:ac:55:a6:35:66:52:3b:ed:c5:d1:98:11:85:ea:
10:3a:cd:c4:0e:d2:ae:27:67:c5:cf:6b:97:56:b0:
f3:ea:51:a3:82:81:d7:8b:74:cc:6f:7b:f1:3e:9f:
95:67:b6:a3:13:7d:fa:29:ce:aa:08:97:1e:2d:84:
cc:ee:a8:26:a3:92:35:68:e1:b7:bb:0b:26:dc:11:
b9:8f:93:48:80:86:c2:70:cf:9a:a1:ab:fb:69:a5:
22:a8:5b:f9:5c:23:01:d0:9a:c3:92:ce:e2:99:db:
66:d2:c7:0f:4a:a6:b0:14:a2:60:cd:df:80:89:ea:
01:f1:6e:ba:15:1b:c8:48:9e:d6:c3:65:d6:33:b5:
2c:d4:24:0b:5b:6a:5a:31:ce:2c:11:d7:47:6c:57:
8e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8B:73:E8:80:AA:87:92:F8:9C:1A:66:D4:15:04:EB:94:E1:85:4F
X509v3 Authority Key Identifier:
keyid:A4:2F:07:BE:A8:59:C8:31:52:67:17:AB:1D:09:2E:11:E7:89:0B:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/A42F07BEA859C831526717AB1D092E11E7890BDD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A42F07BEA859C831526717AB1D092E11E7890BDD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32342e302f32342d3234203d3e20313337333131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.109.24.0/24
Signature Algorithm: sha256WithRSAEncryption
88:c1:16:54:10:6f:2f:64:43:cd:90:df:15:35:2b:f4:c4:d2:
e2:a6:58:3b:10:6a:c2:50:bc:0e:35:8b:71:56:74:c6:b8:ed:
fb:6e:64:c5:15:27:50:c5:ad:0c:af:21:c7:c6:bc:ea:67:7e:
64:68:94:72:80:bf:b2:12:67:f0:90:5b:7c:2c:12:7c:9b:5e:
32:39:6c:44:ee:70:9d:fb:79:50:2a:5b:22:b8:7d:51:29:b6:
a3:30:6a:aa:86:e3:1e:92:d0:c0:9d:ed:16:ed:16:9e:06:7d:
c1:ab:d7:2c:08:44:62:1b:54:b6:57:90:73:95:74:dd:4b:4b:
cf:d0:ab:8c:a0:e2:b2:c9:6d:40:4c:4e:91:50:d4:a7:55:79:
6b:f3:90:ee:5a:40:4c:b5:94:43:c3:18:37:a2:ae:17:d9:65:
a8:8b:2e:8b:6e:ba:d2:2f:e5:19:b5:c2:5c:00:3d:70:ae:67:
49:d3:c0:09:aa:0e:cc:d8:58:d4:7f:5a:74:94:be:4a:30:eb:
7c:f2:b2:1a:79:53:da:94:16:ec:5a:13:38:31:47:27:f9:1c:
81:14:dd:ef:24:1e:f0:8a:b8:b5:7a:09:e8:62:4e:76:65:7b:
34:38:9b:99:30:a5:78:3c:c5:17:46:a7:fa:1c:20:69:87:72:
50:33:31:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:56:27 2025 by rpki-client