Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130362e302f32332d3234203d3e20313531353834.roa
File: 3130332e3231362e3130362e302f32332d3234203d3e20313531353834.roa (raw, json)
Hash identifier: PsGNbQknHKYWMYALOGdIVfSDiE+9DHHpxngcorbZrwE=
Subject key identifier: 10:52:64:D4:43:7E:01:43:7B:F3:24:DB:39:A5:3C:99:76:DD:CD:D1
Certificate issuer: /CN=1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5
Certificate serial: 2AFF9123FE25EF81A98BEBBA1207D86F16BCC1D7
Authority key identifier: 1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130362e302f32332d3234203d3e20313531353834.roa
Signing time: Thu 06 Mar 2025 16:00:01 +0000
ROA not before: Thu 06 Mar 2025 15:55:01 +0000
ROA not after: Thu 05 Mar 2026 16:00:01 +0000
asID: 151584
IP address blocks: 103.216.106.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:ff:91:23:fe:25:ef:81:a9:8b:eb:ba:12:07:d8:6f:16:bc:c1:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5
Validity
Not Before: Mar 6 15:55:01 2025 GMT
Not After : Mar 5 16:00:01 2026 GMT
Subject: CN=105264D4437E01437BF324DB39A53C9976DDCDD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:4d:53:c7:d2:e1:32:ad:9f:c0:8d:e2:e8:
51:fa:2c:88:b9:c9:c2:78:cb:c6:2a:8d:89:1e:dc:
47:66:02:9a:e6:14:f6:c3:77:f9:6d:db:87:c4:67:
e2:2e:f0:6a:b0:dd:13:44:3d:b9:eb:05:02:83:c1:
91:f2:1e:10:4b:de:7f:c3:7f:3e:50:2d:ad:44:f5:
5b:a0:bd:61:eb:cd:9b:d1:e6:78:ad:18:78:42:0d:
e8:70:6c:9c:00:da:9a:b3:16:da:8a:c6:46:21:cc:
94:71:9a:77:7e:84:18:1e:cd:48:6d:c4:b5:68:2e:
44:aa:80:5c:d4:0b:34:af:8d:93:db:9f:eb:10:35:
78:dc:68:de:b8:e8:aa:cc:a9:75:83:ff:c3:9b:a4:
e3:99:9c:e1:26:0f:cc:60:69:c7:6f:91:62:c6:76:
f2:80:bd:d1:7a:71:99:30:09:16:cf:71:61:7c:4f:
f9:57:ee:05:35:54:24:2e:14:cb:3d:54:fd:97:80:
7c:78:a4:c9:4f:db:77:d3:e8:ad:e0:9c:51:23:28:
55:fd:d0:01:a8:7e:b5:da:65:9e:c9:c8:22:73:88:
9d:d8:47:2f:65:4b:40:cf:05:84:08:e3:0e:8f:48:
80:b4:98:c7:29:b1:93:1f:6b:a0:d2:29:84:9f:53:
05:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:52:64:D4:43:7E:01:43:7B:F3:24:DB:39:A5:3C:99:76:DD:CD:D1
X509v3 Authority Key Identifier:
keyid:1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130362e302f32332d3234203d3e20313531353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.216.106.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:ba:d1:8a:a5:3d:0f:e4:f5:d5:0d:24:50:e8:65:1d:9f:8a:
1b:cb:8e:bf:3f:b7:0a:8c:8d:c9:1b:fe:13:8f:a8:3b:b5:d7:
3b:a4:51:c9:c4:13:72:d9:af:14:49:e3:c2:f6:49:8d:00:26:
da:eb:0f:b6:f6:b5:7a:8f:6f:bc:ae:2c:39:98:df:f0:a1:fa:
33:54:f8:17:b5:56:59:20:91:14:88:40:30:eb:82:54:7d:a7:
19:eb:81:b1:b3:7f:05:89:b7:ae:54:c2:1e:f8:4c:4f:16:9a:
1c:d8:2b:ce:a9:ca:60:76:d2:dc:69:64:1d:31:65:fe:6d:b1:
e8:62:7c:c4:78:92:04:59:97:1e:29:e6:e3:41:20:12:e7:9e:
ee:19:15:86:90:83:85:a5:9a:66:b5:a0:6e:70:2d:20:b2:e8:
33:88:f5:87:ca:9b:5a:2e:7a:70:24:82:45:a0:c6:69:d9:66:
dc:dd:b7:69:f3:82:1e:b9:74:85:f1:90:fc:48:93:2a:80:77:
a3:d4:3b:c7:93:40:67:90:8e:1a:39:5a:1f:e6:d7:8e:b8:30:
74:42:72:2e:c5:5f:3a:49:9f:df:ee:2c:a8:e7:27:cc:62:74:
b9:f1:6a:4b:92:b1:a9:fa:dd:73:f0:b9:16:f2:5d:44:58:10:
02:8c:f9:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:00:31 2025 by rpki-client