Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3130332e3231302e3232312e302f32342d3234203d3e20313530393433.roa
File: 3130332e3231302e3232312e302f32342d3234203d3e20313530393433.roa (raw, json)
Hash identifier: MpJlquu9LJ3WndZX88XrCsW96PgjuhRStmt6Lgc1shw=
Subject key identifier: F9:88:FF:4E:46:0D:21:56:23:72:53:5F:74:16:48:DB:F9:B9:18:8B
Certificate issuer: /CN=3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47
Certificate serial: 1B8E05E35070C2E6992E354BD0B7C01FAC824377
Authority key identifier: 3A:09:CF:32:EC:4F:6D:5C:4F:D2:C8:37:A1:17:4E:D3:47:21:DB:47
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3130332e3231302e3232312e302f32342d3234203d3e20313530393433.roa
Signing time: Sat 01 Mar 2025 05:00:02 +0000
ROA not before: Sat 01 Mar 2025 04:55:02 +0000
ROA not after: Sat 28 Feb 2026 05:00:02 +0000
asID: 150943
IP address blocks: 103.210.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:8e:05:e3:50:70:c2:e6:99:2e:35:4b:d0:b7:c0:1f:ac:82:43:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47
Validity
Not Before: Mar 1 04:55:02 2025 GMT
Not After : Feb 28 05:00:02 2026 GMT
Subject: CN=F988FF4E460D21562372535F741648DBF9B9188B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ad:73:b5:34:78:e8:c1:25:bc:20:fc:04:cc:
c1:34:5d:36:54:4a:c0:32:76:80:bc:57:27:64:5a:
da:88:7a:61:7f:b4:0d:fb:71:23:6c:b9:ba:6c:3f:
c3:34:6e:c6:cb:8e:de:ac:32:0d:f8:11:20:ec:d4:
22:a1:79:3f:e3:83:60:91:6a:71:90:b4:5c:3e:d1:
f9:53:5f:6d:57:10:2d:c7:54:04:8d:25:26:75:16:
0a:fa:7f:8b:6c:21:c4:36:97:a2:19:0f:15:fc:2e:
bd:a9:26:f2:f5:88:d2:7f:28:11:db:43:75:92:aa:
03:33:b7:02:dd:3a:e6:eb:7b:df:c8:2a:74:8a:10:
ce:6d:dd:79:38:6b:6d:19:c9:76:a5:4f:82:2d:61:
68:f7:ab:c0:91:03:84:df:94:54:9c:ff:e8:73:3a:
25:6a:6f:3f:61:23:85:19:9a:1b:79:0e:64:0f:44:
81:b5:41:8d:a7:bb:37:78:15:09:f8:61:7b:5b:b6:
3e:99:e5:da:8b:97:b4:87:ae:90:94:b3:98:76:07:
f7:c5:07:96:7a:93:ab:02:33:19:d5:65:fc:ba:f4:
84:a7:73:e5:d8:8b:62:19:3b:b5:9d:0a:65:9e:17:
ba:86:05:96:2a:9f:94:56:59:53:bc:d6:2c:24:9f:
6c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:88:FF:4E:46:0D:21:56:23:72:53:5F:74:16:48:DB:F9:B9:18:8B
X509v3 Authority Key Identifier:
keyid:3A:09:CF:32:EC:4F:6D:5C:4F:D2:C8:37:A1:17:4E:D3:47:21:DB:47
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A09CF32EC4F6D5C4FD2C837A1174ED34721DB47.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9ee209a-1193-4d6f-9dbe-8777bb8980aa/0/3130332e3231302e3232312e302f32342d3234203d3e20313530393433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.210.221.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:8e:99:10:ff:3f:85:0b:4a:7a:96:87:5b:95:2e:22:99:0e:
98:06:22:da:d3:9f:49:47:93:c7:bc:b9:1d:c5:6a:29:db:d4:
18:98:de:05:09:ba:8e:39:44:fe:04:26:b3:e3:aa:8a:03:c3:
58:d2:9e:fd:a5:b3:46:59:28:db:f7:4c:3c:a4:ac:b8:00:1c:
00:1b:82:97:23:2a:03:73:9f:5b:b0:70:6f:12:fc:fb:5d:9d:
70:65:58:0a:ac:63:12:32:11:87:be:c0:f6:1b:da:16:70:94:
59:d3:d0:02:a8:58:32:f7:66:9b:34:7c:a1:b5:6f:ae:42:bf:
d4:f5:fb:2b:a9:a3:61:99:51:37:c4:53:4d:8c:30:4e:61:b8:
cb:67:38:80:68:23:77:30:d3:40:2a:3d:ae:01:ed:91:06:36:
12:d3:a4:4f:46:a6:32:b4:dc:f3:f2:c0:03:6c:a4:00:f5:5e:
35:71:cb:37:0c:62:bd:bc:30:35:2e:b3:36:77:bc:7e:ed:f2:
3d:c8:98:95:fe:75:d0:e5:06:29:b0:0c:1b:5f:dc:0c:a8:f5:
df:b2:32:72:3a:2f:e9:c7:9a:09:47:e4:00:fe:0f:22:f2:4c:
5a:6a:82:7a:b1:d0:4a:bb:30:62:89:57:81:e9:59:53:fd:44:
d7:aa:cf:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:10:35 2025 by rpki-client