Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/3130332e3138362e38392e302f32342d3234203d3e20313439373137.roa
File: 3130332e3138362e38392e302f32342d3234203d3e20313439373137.roa (raw, json)
Hash identifier: d85h85v2ptQz3vrVN5qkUm0+GStqZnlOAr5LKlkna3k=
Subject key identifier: 97:97:2B:00:94:BA:87:F4:61:82:3A:93:A9:24:24:D1:E4:33:D6:94
Certificate issuer: /CN=7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0
Certificate serial: 11EC154F3D7853245BCADCCB0E53C1D73DD15A23
Authority key identifier: 7F:DB:76:1B:09:E7:A9:A8:0C:D2:8C:84:A5:FF:DB:12:F5:C9:BB:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/3130332e3138362e38392e302f32342d3234203d3e20313439373137.roa
Signing time: Sat 15 Mar 2025 06:00:00 +0000
ROA not before: Sat 15 Mar 2025 05:55:00 +0000
ROA not after: Sat 14 Mar 2026 06:00:00 +0000
asID: 149717
IP address blocks: 103.186.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:ec:15:4f:3d:78:53:24:5b:ca:dc:cb:0e:53:c1:d7:3d:d1:5a:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0
Validity
Not Before: Mar 15 05:55:00 2025 GMT
Not After : Mar 14 06:00:00 2026 GMT
Subject: CN=97972B0094BA87F461823A93A92424D1E433D694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8b:e5:7e:17:10:36:a2:fc:35:60:26:a1:6b:
7d:f3:f3:78:3d:5e:a1:5d:36:2c:e1:8f:c4:95:4f:
03:99:fe:03:8e:3d:1a:11:59:53:f7:28:d1:a4:43:
6e:ff:50:89:c8:71:d7:09:b7:fa:23:e0:13:56:9f:
e7:ad:0a:14:db:45:60:d5:33:0f:ff:65:51:0c:ce:
e4:12:09:30:ee:f6:e1:54:29:a4:08:c8:6b:81:cd:
31:a7:de:24:ba:92:61:0b:a4:b8:c9:ad:7d:1a:3e:
c3:03:88:3f:7e:63:de:8a:eb:95:ce:4f:54:ab:fe:
49:9b:00:27:8b:e4:0b:21:bb:3c:56:62:0b:0e:7a:
8e:16:25:e6:52:6b:f1:9c:6b:6c:38:e2:1b:88:71:
dd:84:6c:5a:4d:6d:16:68:38:33:49:9d:3a:ba:14:
a7:71:3e:2c:7d:de:48:a4:10:6b:52:f7:b1:10:1f:
63:a7:f1:6b:11:e8:26:70:32:da:c8:35:e3:6a:ad:
48:29:95:63:2e:d9:4d:1a:91:3d:f3:f6:4f:aa:4e:
01:22:3f:01:35:ff:ad:f5:d2:42:ea:39:22:e5:e9:
3a:5e:6f:43:81:63:76:81:20:fb:63:0c:eb:6b:df:
5c:29:ba:65:6c:78:96:b0:7e:93:a3:82:e2:a2:5e:
06:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:97:2B:00:94:BA:87:F4:61:82:3A:93:A9:24:24:D1:E4:33:D6:94
X509v3 Authority Key Identifier:
keyid:7F:DB:76:1B:09:E7:A9:A8:0C:D2:8C:84:A5:FF:DB:12:F5:C9:BB:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FDB761B09E7A9A80CD28C84A5FFDB12F5C9BBD0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3295de6-2058-46a7-936b-052cf2fa920d/0/3130332e3138362e38392e302f32342d3234203d3e20313439373137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.186.89.0/24
Signature Algorithm: sha256WithRSAEncryption
51:af:52:df:b0:09:d5:d7:74:d4:b0:a6:7d:55:30:9d:e2:70:
6f:66:ec:f3:73:b2:17:90:7f:2c:f8:fb:9a:ae:5b:09:d8:5e:
db:9e:13:6f:f2:2b:fa:81:ee:85:55:f6:86:af:47:1b:76:c9:
93:0b:95:27:c7:35:17:65:72:29:aa:bd:b4:f1:df:7d:25:9a:
c1:6b:84:1b:c9:a5:43:e4:9b:33:b0:36:b7:6f:b4:90:91:6c:
f7:ae:34:ed:ad:e9:df:81:b5:d6:23:a8:d8:88:98:0c:bb:58:
45:7d:cc:a2:fd:71:61:5a:9d:22:38:56:c8:3b:05:ed:d5:23:
a0:90:7b:7b:c2:4c:88:0f:57:76:ab:8a:eb:d8:1b:94:7e:21:
78:89:36:6d:08:22:1b:19:5c:9d:f2:65:57:d8:87:9f:e7:7b:
35:cc:8c:4d:f8:81:ed:09:df:92:5e:85:ca:01:97:46:fd:fe:
4b:81:71:7e:07:68:b5:57:be:50:7a:a1:29:3c:d8:4e:e8:77:
1e:54:05:98:c2:9a:4a:e5:29:04:40:4c:1e:28:b0:a2:e6:4c:
17:a6:9b:c9:42:62:98:43:e8:1f:b0:53:f5:0d:30:0e:d9:27:
0b:c0:67:fd:33:99:ed:a1:91:9b:47:dc:7b:46:aa:80:1b:05:
fe:b2:aa:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:55:22 2025 by rpki-client