Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/dbbcbfd9-57df-490c-88fc-00d360070651/0/3130332e3138302e3132362e302f32332d3233203d3e20313439333734.roa
File: 3130332e3138302e3132362e302f32332d3233203d3e20313439333734.roa (raw, json)
Hash identifier: zSZTauTXkqah0kUP0xJiPy/xmb0TvdR+Re/pB5/L6yI=
Subject key identifier: C2:29:BE:A8:99:11:AD:AC:85:F7:3A:E2:DD:71:21:E2:45:23:4C:FC
Certificate issuer: /CN=569E00BE70FA71DE5510B7D81700C2EB98DAD8C6
Certificate serial: 033ED160C3759913275594AA3A2E658DF4050BB0
Authority key identifier: 56:9E:00:BE:70:FA:71:DE:55:10:B7:D8:17:00:C2:EB:98:DA:D8:C6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/569E00BE70FA71DE5510B7D81700C2EB98DAD8C6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/dbbcbfd9-57df-490c-88fc-00d360070651/0/3130332e3138302e3132362e302f32332d3233203d3e20313439333734.roa
Signing time: Fri 28 Feb 2025 05:00:01 +0000
ROA not before: Fri 28 Feb 2025 04:55:01 +0000
ROA not after: Fri 27 Feb 2026 05:00:01 +0000
asID: 149374
IP address blocks: 103.180.126.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:3e:d1:60:c3:75:99:13:27:55:94:aa:3a:2e:65:8d:f4:05:0b:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=569E00BE70FA71DE5510B7D81700C2EB98DAD8C6
Validity
Not Before: Feb 28 04:55:01 2025 GMT
Not After : Feb 27 05:00:01 2026 GMT
Subject: CN=C229BEA89911ADAC85F73AE2DD7121E245234CFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:36:7d:a8:6c:cb:06:fa:1f:f6:0c:8e:9b:68:
ce:54:3f:2b:fc:7e:77:53:bf:56:61:05:53:99:09:
68:33:08:88:59:e4:79:6d:61:6c:9e:0f:ec:53:08:
ee:7f:c2:68:1b:d5:1b:ad:b4:c3:62:2a:10:8c:81:
7b:3a:de:2d:8b:0a:59:42:b6:c6:ee:0e:8b:ed:93:
b7:a6:66:08:1e:f7:03:f5:3e:0f:5a:86:59:f4:2a:
4c:8d:59:56:ce:c1:1c:d5:16:ce:ac:ae:b4:d5:e4:
68:07:a2:00:1e:93:1f:65:9f:55:bd:d1:ff:0f:7b:
f8:bc:26:9b:94:aa:0c:91:a8:bc:29:c3:46:97:30:
95:f6:ff:48:a8:25:7b:06:d7:20:64:00:c3:50:fb:
66:ba:2b:f1:a3:36:c0:be:21:7c:f3:e5:48:97:67:
dc:7d:78:e9:5a:fd:bd:13:f5:f4:4a:46:45:fb:9d:
02:4e:70:d0:4b:09:1a:06:7a:0d:0b:60:ed:1b:c3:
3e:38:4f:bb:fd:22:35:2d:32:c8:f1:76:0b:9a:8a:
36:be:54:3b:56:0d:50:96:5d:bc:5a:e1:81:2c:3b:
52:c2:11:7b:09:bc:1d:8b:63:92:df:65:2c:bb:c9:
a9:28:50:60:59:08:77:56:52:ca:45:2d:40:33:e6:
88:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:29:BE:A8:99:11:AD:AC:85:F7:3A:E2:DD:71:21:E2:45:23:4C:FC
X509v3 Authority Key Identifier:
keyid:56:9E:00:BE:70:FA:71:DE:55:10:B7:D8:17:00:C2:EB:98:DA:D8:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/dbbcbfd9-57df-490c-88fc-00d360070651/0/569E00BE70FA71DE5510B7D81700C2EB98DAD8C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/569E00BE70FA71DE5510B7D81700C2EB98DAD8C6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dbbcbfd9-57df-490c-88fc-00d360070651/0/3130332e3138302e3132362e302f32332d3233203d3e20313439333734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.180.126.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:d5:b3:3e:12:c4:04:92:82:b6:06:14:ff:30:4c:d1:01:f0:
35:07:12:f6:b0:a8:c3:34:ae:1d:17:67:be:c3:2c:64:8e:c7:
fe:2a:6c:65:e9:77:88:fd:a0:17:6c:e7:03:9e:b0:bc:a2:af:
61:3d:c7:ba:8e:bf:2f:01:c1:44:c8:d8:94:d4:46:58:69:c0:
66:d8:ad:ac:cb:f5:50:58:fc:ec:0e:60:4a:ca:34:43:a5:ff:
04:06:84:00:69:2a:94:41:df:b2:2d:26:83:5a:f0:17:6e:8b:
09:6a:1d:dc:7d:d1:53:ac:6d:d3:dd:1e:6b:d5:f1:db:e9:d4:
30:0f:4b:95:00:71:af:ab:2c:45:19:e8:83:91:db:1d:14:e8:
63:22:a9:68:60:db:05:39:92:75:93:8d:a0:c3:96:87:2f:b8:
43:d2:83:ed:22:96:4e:0b:5e:f2:f0:9b:e1:94:cf:68:ca:f6:
b5:3a:0c:ea:a3:c1:6e:94:1c:77:ed:61:fc:b9:4d:c6:02:22:
a4:7b:77:4d:aa:c5:e3:dc:0b:07:06:ee:60:49:b2:1c:da:68:
97:66:8f:6d:c9:e7:27:e9:d7:8d:33:7b:58:ec:b1:4e:a0:fe:
83:2b:1b:e0:ba:90:51:6d:82:05:71:31:3a:d7:36:13:39:c8:
ba:27:b1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:26:58 2025 by rpki-client