Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa
File: 3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa (raw, json)
Hash identifier: Zv0VjyXOs/YJcxUITNpIWw5z1xu1WaEnf3VgeGVypQs=
Subject key identifier: 8F:18:05:BC:3B:68:1A:6D:F4:46:C3:82:5C:B7:23:98:F2:4C:40:26
Certificate issuer: /CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F
Certificate serial: 14C6B6B9657FFB37616F381F7B58A8D4483175C3
Authority key identifier: DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa
Signing time: Tue 11 Mar 2025 13:00:01 +0000
ROA not before: Tue 11 Mar 2025 12:55:01 +0000
ROA not after: Tue 10 Mar 2026 13:00:01 +0000
asID: 137323
IP address blocks: 103.111.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:c6:b6:b9:65:7f:fb:37:61:6f:38:1f:7b:58:a8:d4:48:31:75:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F
Validity
Not Before: Mar 11 12:55:01 2025 GMT
Not After : Mar 10 13:00:01 2026 GMT
Subject: CN=8F1805BC3B681A6DF446C3825CB72398F24C4026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:93:4b:47:98:d0:92:78:fb:23:0e:78:a8:28:
4d:8c:d0:48:80:82:fe:5a:d7:fb:75:e1:b9:03:ce:
9a:20:f7:45:fb:36:5f:e0:6f:15:55:0d:40:dc:b1:
d1:6f:70:6c:38:d7:6c:af:18:5b:4e:39:0c:8a:89:
ad:2f:06:32:da:fa:1f:ab:7e:c0:ed:8d:9e:ad:ff:
b1:41:60:09:65:c3:d2:5c:c9:f7:1c:fe:51:7c:a9:
1f:76:a4:01:ef:cc:89:9f:58:d1:f8:f5:26:50:d7:
14:29:e1:ec:cc:e9:39:05:b6:c3:87:e5:8e:b9:ef:
04:38:8f:73:f9:8e:9c:3e:ce:60:f0:13:0f:ea:97:
10:2a:0b:43:5f:1b:b5:6b:dd:e4:78:62:b9:ed:21:
e9:f7:90:a4:8e:b6:6e:d0:c0:3a:5e:f8:28:e1:bb:
6c:56:89:3d:dc:24:39:b6:4e:b1:9a:72:d0:35:6e:
c2:0f:0e:e7:cf:3d:ba:a9:7f:15:d8:ff:78:3f:55:
8a:e2:89:c0:fa:70:4d:f1:10:7f:f5:24:44:ab:de:
0d:92:74:cd:db:25:7d:0c:b8:1d:70:4d:5f:0b:e8:
ee:36:2f:23:5f:a2:ab:3a:d3:b1:76:b9:c5:0c:53:
ec:a5:e6:e6:0e:93:b8:d6:55:85:91:f8:55:ec:8e:
f2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:18:05:BC:3B:68:1A:6D:F4:46:C3:82:5C:B7:23:98:F2:4C:40:26
X509v3 Authority Key Identifier:
keyid:DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.111.218.0/24
Signature Algorithm: sha256WithRSAEncryption
31:00:36:14:30:c9:43:bb:b0:04:65:c6:e8:c6:39:d2:7a:6c:
e5:73:d0:05:ac:22:70:73:37:72:53:2f:f7:00:ed:ba:86:69:
8a:e8:7a:45:9c:86:0f:20:7b:36:22:9d:93:de:16:aa:6d:aa:
13:0c:0a:68:af:80:64:ef:2d:c5:32:c5:e7:59:6e:2f:72:f9:
99:85:ed:3c:5d:37:cc:3b:c4:fc:26:b2:1b:7c:6b:8b:a2:4c:
b3:3b:b3:ed:28:ee:65:a6:fd:a9:91:c2:ab:e9:69:ef:24:64:
0d:21:7c:17:a1:a0:b8:76:82:22:b5:3a:2d:bd:32:1b:55:86:
69:b1:fb:a9:87:72:55:be:1d:8d:01:d0:3b:17:84:18:17:19:
a2:75:b0:5c:80:c9:53:d3:9d:fe:89:fa:95:f2:9d:c6:80:ac:
3a:e6:66:7f:53:a6:1d:97:86:97:63:a0:e5:9f:f2:64:fa:21:
19:a1:6f:22:2c:ea:f0:be:e5:f8:24:52:bc:5a:7c:52:2a:0c:
bc:a0:f1:93:12:af:53:ab:33:cf:65:b2:8a:51:e5:86:56:78:
87:2d:53:fb:7a:c5:da:62:ea:00:09:83:9d:0f:0f:c8:6d:b7:
13:30:86:0e:b0:85:2b:0b:c5:83:8c:9e:f1:5c:87:4d:83:d5:
9d:e4:10:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:01:41 2025 by rpki-client