Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32332d3233203d3e203539313437.roa
File: 3130332e3235322e3130302e302f32332d3233203d3e203539313437.roa (raw, json)
Hash identifier: 7Av//tJaFwT8z6GFSW7uk6ehjT5V0e5+FTRipECyI0I=
Subject key identifier: 8A:C7:5D:3E:A6:A2:E9:2A:DE:8D:C1:C7:3F:E3:FC:25:17:DB:4C:E9
Certificate issuer: /CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581
Certificate serial: 6670BAD7ED95477405B138E058753C0B3DE983FE
Authority key identifier: 0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32332d3233203d3e203539313437.roa
Signing time: Thu 20 Feb 2025 09:00:00 +0000
ROA not before: Thu 20 Feb 2025 08:55:00 +0000
ROA not after: Thu 19 Feb 2026 09:00:00 +0000
asID: 59147
IP address blocks: 103.252.100.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:70:ba:d7:ed:95:47:74:05:b1:38:e0:58:75:3c:0b:3d:e9:83:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581
Validity
Not Before: Feb 20 08:55:00 2025 GMT
Not After : Feb 19 09:00:00 2026 GMT
Subject: CN=8AC75D3EA6A2E92ADE8DC1C73FE3FC2517DB4CE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d6:c8:41:75:95:1b:7e:b3:6c:05:c4:d3:29:
83:8d:7e:c5:2e:5e:b5:66:a1:3f:8e:6d:fd:88:1e:
1a:e5:fa:ea:8a:52:85:cf:a1:6c:33:7b:61:1c:61:
0f:dd:57:10:a6:9a:1b:47:be:08:ba:71:47:6b:5f:
04:24:3e:88:34:da:8c:b4:eb:e4:79:ff:c7:36:d1:
be:5b:fd:3e:30:22:a3:ac:26:f8:d0:9f:2f:ea:b8:
02:13:b9:d6:bf:7f:fd:11:1a:79:d3:58:9a:86:96:
ce:ed:f9:f2:c5:be:06:85:da:58:74:bc:c8:22:c8:
32:3b:19:5b:ce:9d:fd:72:42:19:dd:50:c6:34:c1:
59:33:2c:b7:2b:7b:34:91:d1:47:35:52:e7:75:24:
bb:50:35:ee:05:58:28:10:32:a6:84:dd:28:df:d8:
88:be:0e:88:c6:48:38:1e:9e:fd:e8:2f:4e:44:4f:
f4:a9:2e:bb:9e:ba:ed:4b:e7:c6:5e:26:a4:a4:8d:
5e:e9:2d:be:7f:f1:1b:82:9f:bc:3e:85:48:5a:01:
bd:1a:b4:64:13:90:19:ec:9f:80:a1:9a:a7:e7:2b:
78:fc:72:20:1c:3c:d7:7b:2e:c6:e1:09:35:19:a4:
ad:26:cc:16:6b:0c:e5:12:83:6c:cb:e8:f4:d5:72:
33:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:C7:5D:3E:A6:A2:E9:2A:DE:8D:C1:C7:3F:E3:FC:25:17:DB:4C:E9
X509v3 Authority Key Identifier:
keyid:0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32332d3233203d3e203539313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.252.100.0/23
Signature Algorithm: sha256WithRSAEncryption
94:f9:66:1f:bb:25:8b:30:46:09:06:c1:fe:71:e4:76:47:bc:
37:b7:eb:97:27:91:a9:5a:a8:34:7d:49:f3:0d:a1:c0:5a:d5:
de:0e:d9:00:69:e6:e8:62:e4:38:bf:9b:1f:96:44:53:2c:26:
f0:ef:7c:3f:e8:c7:36:e0:82:e8:1d:33:5f:5e:f9:7e:dc:58:
f4:b9:30:5d:24:48:7a:73:88:f9:f7:d5:c2:4b:53:0f:81:19:
cd:0d:30:31:52:de:37:30:6c:c7:8e:83:20:89:12:95:56:a9:
e7:8f:da:0f:05:53:3e:56:5f:52:b4:28:39:94:3d:14:4e:a0:
80:de:1a:a7:8a:d7:05:6f:16:71:d9:47:7f:db:9d:62:51:a1:
a5:5e:79:11:27:57:43:7c:c2:7f:2b:eb:5f:07:db:92:da:53:
49:a6:55:7a:77:ad:df:24:69:47:55:b5:5f:23:95:06:ac:17:
44:79:2c:88:77:3d:09:b7:21:e9:87:86:5e:0d:62:7f:93:e9:
be:62:87:8c:4c:f7:ae:43:06:e4:2a:8b:98:8c:20:42:28:ca:
e7:d9:54:72:ab:c7:19:3b:b9:30:35:6b:20:3e:6d:c5:e4:d8:
e1:ff:97:ad:07:46:12:e2:84:81:c9:bf:ae:da:b5:fd:b0:2b:
69:9a:1d:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:43:56 2025 by rpki-client