Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130312e302f32342d3234203d3e203539313437.roa
File: 3130332e3235322e3130312e302f32342d3234203d3e203539313437.roa (raw, json)
Hash identifier: MWGkE6CsRSWqMBYLVPUy9HMPTSzmfg1RhCwIFa2snrk=
Subject key identifier: 9A:BC:19:85:E9:97:F5:C6:7E:EE:FF:06:28:47:AD:83:12:17:09:8C
Certificate issuer: /CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581
Certificate serial: 1BE527BF7787940691A01EC48BDED200EE65AD10
Authority key identifier: 0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130312e302f32342d3234203d3e203539313437.roa
Signing time: Thu 20 Feb 2025 08:00:00 +0000
ROA not before: Thu 20 Feb 2025 07:55:00 +0000
ROA not after: Thu 19 Feb 2026 08:00:00 +0000
asID: 59147
IP address blocks: 103.252.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:e5:27:bf:77:87:94:06:91:a0:1e:c4:8b:de:d2:00:ee:65:ad:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581
Validity
Not Before: Feb 20 07:55:00 2025 GMT
Not After : Feb 19 08:00:00 2026 GMT
Subject: CN=9ABC1985E997F5C67EEEFF062847AD831217098C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3c:bd:d4:7d:28:c0:99:39:9d:94:f6:0c:0f:
73:81:6d:b9:09:3e:28:2f:d2:2a:94:df:f4:ae:e3:
1e:ea:e5:80:3d:35:eb:a7:04:03:2f:b5:e6:d8:55:
bd:0f:8e:e3:46:2c:e9:11:21:ce:15:b0:a2:17:da:
de:c0:80:9c:00:f9:a0:3e:06:cd:86:a3:64:05:a5:
16:88:97:72:aa:52:af:0d:c1:84:ba:7d:96:09:52:
c0:99:31:7d:ae:f0:25:8d:a7:e6:ea:54:e7:b4:af:
cf:2d:43:2a:11:de:7a:da:37:cb:a7:ab:37:1c:3b:
37:78:84:72:2b:c9:43:6b:5b:ab:f0:95:e7:f9:10:
2f:08:47:b4:4b:2a:d9:80:3d:c8:57:cc:86:14:23:
5b:17:b8:5a:c8:a5:eb:0e:e7:4f:13:14:e5:72:e6:
ba:15:1b:34:5f:c6:31:44:b4:ff:40:49:33:b9:05:
e2:44:7c:4e:d1:4e:19:2a:ab:ac:6b:90:f8:06:42:
d3:b4:7e:64:2f:c6:6e:f3:71:18:58:0c:35:a9:78:
cc:e1:f9:57:ea:60:29:20:b7:12:6f:45:59:cb:5b:
06:be:01:00:8b:2b:e5:9a:a0:53:3b:ee:6e:9d:9d:
89:e8:01:ae:03:f5:a2:88:63:40:ab:bb:b5:2c:40:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BC:19:85:E9:97:F5:C6:7E:EE:FF:06:28:47:AD:83:12:17:09:8C
X509v3 Authority Key Identifier:
keyid:0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130312e302f32342d3234203d3e203539313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.252.101.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:a8:18:78:d7:6d:18:ba:f5:e8:7d:da:8f:c4:92:bc:f3:af:
96:e3:a4:6a:d6:4c:7c:bc:41:62:81:9d:b4:78:8e:2a:49:57:
cf:b5:9b:c3:72:cb:c3:a6:fe:ad:24:bf:2f:14:c6:a5:08:7d:
2d:b4:2d:fc:bf:c5:79:27:0d:79:30:d8:c2:56:dd:ca:c8:08:
3d:65:1b:eb:a0:a4:40:b7:24:37:b7:5f:0b:a2:fd:86:20:7e:
2c:15:a1:e7:ea:f7:16:77:a4:92:9d:19:8c:50:54:0b:d6:65:
4c:29:ca:c0:44:7b:75:8c:93:73:6f:20:56:af:45:9c:7a:7f:
0b:b2:3c:51:1f:19:57:45:31:d5:f6:a8:af:df:53:8f:48:af:
d6:b8:a8:66:37:96:2f:be:12:c7:58:a1:7b:19:8c:9a:cd:57:
a8:1a:80:b7:a1:f2:2e:41:df:16:ee:27:e3:ca:1f:09:b6:63:
78:dc:55:27:e4:60:f5:e6:62:bb:06:45:e3:90:bb:11:18:0d:
95:cc:76:39:c7:0b:f5:b2:9d:34:49:13:4d:4f:1c:1a:4d:68:
18:26:c7:01:ac:44:79:d5:56:d2:c5:16:80:8d:f9:95:80:8f:
7c:35:89:6b:d8:58:4f:41:c5:2b:92:48:98:c4:56:d0:f0:b7:
a5:14:58:89
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUG+Unv3eHlAaRoB7Ei97SAO5lrRAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1
MEM1ODU4MTAeFw0yNTAyMjAwNzU1MDBaFw0yNjAyMTkwODAwMDBaMDMxMTAvBgNV
BAMTKDlBQkMxOTg1RTk5N0Y1QzY3RUVFRkYwNjI4NDdBRDgzMTIxNzA5OEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEPL3UfSjAmTmdlPYMD3OBbbkJ
Pigv0iqU3/Su4x7q5YA9NeunBAMvtebYVb0PjuNGLOkRIc4VsKIX2t7AgJwA+aA+
Bs2Go2QFpRaIl3KqUq8NwYS6fZYJUsCZMX2u8CWNp+bqVOe0r88tQyoR3nraN8un
qzccOzd4hHIryUNrW6vwlef5EC8IR7RLKtmAPchXzIYUI1sXuFrIpesO508TFOVy
5roVGzRfxjFEtP9ASTO5BeJEfE7RThkqq6xrkPgGQtO0fmQvxm7zcRhYDDWpeMzh
+VfqYCkgtxJvRVnLWwa+AQCLK+WaoFM77m6dnYnoAa4D9aKIY0Cru7UsQGmRAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUmrwZhemX9cZ+7v8GKEetgxIXCYwwHwYDVR0j
BBgwFoAUDnvyzifYmdjphdvZMR34slDFhYEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
MGM1NTAzNC01ZjM2LTQxNzMtYjY0Yy1hOTc1ZTMyMzEzOGEvMC8wRTdCRjJDRTI3
RDg5OUQ4RTk4NURCRDkzMTFERjhCMjUwQzU4NTgxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1MEM1
ODU4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwYzU1MDM0LTVmMzYtNDE3My1i
NjRjLWE5NzVlMzIzMTM4YS8wLzMxMzAzMzJlMzIzNTMyMmUzMTMwMzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/xlMA0GCSqG
SIb3DQEBCwUAA4IBAQC4qBh4120YuvXofdqPxJK886+W46Rq1kx8vEFigZ20eI4q
SVfPtZvDcsvDpv6tJL8vFMalCH0ttC38v8V5Jw15MNjCVt3KyAg9ZRvroKRAtyQ3
t18Lov2GIH4sFaHn6vcWd6SSnRmMUFQL1mVMKcrARHt1jJNzbyBWr0Wcen8LsjxR
HxlXRTHV9qiv31OPSK/WuKhmN5YvvhLHWKF7GYyazVeoGoC3ofIuQd8W7ifjyh8J
tmN43FUn5GD15mK7BkXjkLsRGA2VzHY5xwv1sp00SRNNTxwaTWgYJscBrER51VbS
xRaAjfmVgI98NYlr2FhPQcUrkkiYxFbQ8LelFFiJ
-----END CERTIFICATE-----
Generated at Sun Apr 6 07:46:17 2025 by rpki-client