Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e4ae57b3-46a2-423d-b244-03ffee105b77/0/3130332e3133302e38302e302f32332d3234203d3e20313339393737.roa
File: 3130332e3133302e38302e302f32332d3234203d3e20313339393737.roa (raw, json)
Hash identifier: bPoKAtFpVmlvxxXnV223Oyctgi/gxMHoISI94OwfY5Q=
Subject key identifier: 0E:5D:BA:76:A5:60:61:E1:C3:23:FC:AB:64:74:F9:61:C5:47:59:6B
Certificate issuer: /CN=961C97EF8E7664408011D05E6A81CF905A1336B1
Certificate serial: 71D4AC1D55552947D1F553D3EAE650455EBCAEA3
Authority key identifier: 96:1C:97:EF:8E:76:64:40:80:11:D0:5E:6A:81:CF:90:5A:13:36:B1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/961C97EF8E7664408011D05E6A81CF905A1336B1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e4ae57b3-46a2-423d-b244-03ffee105b77/0/3130332e3133302e38302e302f32332d3234203d3e20313339393737.roa
Signing time: Thu 13 Feb 2025 05:01:01 +0000
ROA not before: Thu 13 Feb 2025 04:56:01 +0000
ROA not after: Thu 12 Feb 2026 05:01:01 +0000
asID: 139977
IP address blocks: 103.130.80.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:d4:ac:1d:55:55:29:47:d1:f5:53:d3:ea:e6:50:45:5e:bc:ae:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=961C97EF8E7664408011D05E6A81CF905A1336B1
Validity
Not Before: Feb 13 04:56:01 2025 GMT
Not After : Feb 12 05:01:01 2026 GMT
Subject: CN=0E5DBA76A56061E1C323FCAB6474F961C547596B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:98:b2:b3:be:c3:2e:24:01:fe:5b:34:88:cd:
b9:fe:6f:62:39:95:2d:41:5b:8e:b1:bd:b7:ea:a4:
f2:cf:44:cf:9f:2a:85:e9:fb:85:9d:b7:d3:57:d3:
81:30:46:c4:f9:e2:e8:0a:18:39:80:30:37:9c:4c:
25:3f:45:18:a8:eb:87:52:78:98:a7:7d:b4:36:f7:
90:d6:06:04:70:de:5b:12:e5:03:0d:0b:0d:b6:80:
91:ad:21:85:26:4a:f1:89:69:9f:21:9d:ac:2b:f6:
4f:9c:3c:1b:4c:2c:01:15:0e:39:2c:0c:e0:18:5f:
e4:e7:6d:4e:82:8e:61:43:09:ec:2b:06:11:6e:34:
e8:99:32:82:b0:c9:11:4a:66:e1:0a:6f:bc:c3:ed:
cc:77:72:d6:f4:ea:a9:61:08:d7:b4:87:f4:6b:77:
6e:9f:6a:18:fd:85:fc:e0:56:6c:67:57:12:6b:92:
4c:a0:13:7d:0c:77:90:3e:33:db:ba:31:9c:1d:7c:
a2:d2:de:98:80:ed:6d:81:80:05:03:c1:3e:13:85:
08:d1:8b:8a:8c:7a:84:97:cf:37:d6:89:3e:19:fd:
38:a1:ed:1a:db:7f:49:01:15:79:fa:e7:f2:e8:cd:
30:f2:ce:fc:45:b4:69:f8:16:69:67:d4:33:80:5b:
2e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5D:BA:76:A5:60:61:E1:C3:23:FC:AB:64:74:F9:61:C5:47:59:6B
X509v3 Authority Key Identifier:
keyid:96:1C:97:EF:8E:76:64:40:80:11:D0:5E:6A:81:CF:90:5A:13:36:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e4ae57b3-46a2-423d-b244-03ffee105b77/0/961C97EF8E7664408011D05E6A81CF905A1336B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/961C97EF8E7664408011D05E6A81CF905A1336B1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e4ae57b3-46a2-423d-b244-03ffee105b77/0/3130332e3133302e38302e302f32332d3234203d3e20313339393737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.130.80.0/23
Signature Algorithm: sha256WithRSAEncryption
82:4f:6d:21:2e:59:c5:d9:d7:b7:6d:67:6b:1d:dd:49:50:ff:
6b:94:2c:89:14:db:62:da:38:5c:4b:b3:ed:8b:1c:40:3a:9c:
86:27:e0:c8:29:ad:47:68:a5:b0:41:7b:b5:4a:b6:9e:28:ba:
b6:e7:3d:71:de:e0:da:7b:60:b5:1e:37:70:fc:1c:ba:ab:02:
2f:09:2c:87:a6:57:8c:3c:d8:4f:4b:0b:a8:71:04:db:0f:a4:
c5:18:03:90:70:37:a3:dc:1a:d3:05:12:f1:e5:0d:c2:79:1e:
ad:88:bb:cd:75:4e:32:4c:83:d9:3e:c3:7d:13:bb:6a:6b:49:
84:39:3e:d2:06:f9:8c:2d:58:0f:56:8a:80:55:82:bc:c7:a5:
fc:d8:f3:62:1c:b3:b5:4f:0b:73:6f:08:6b:2a:4e:e5:d4:d4:
7b:4d:2d:38:35:44:52:fc:56:c5:0a:ed:75:d2:e3:d5:33:ed:
b7:61:3d:29:52:f5:0a:19:57:4c:2c:f2:d7:61:34:a3:7f:32:
28:d0:4c:e3:e1:35:f9:2e:37:b0:7f:89:67:0c:f6:53:13:ff:
6e:d0:c6:7c:fe:11:8d:f7:fb:71:c6:be:66:26:f8:c3:5d:c6:
91:51:da:17:3a:80:c1:fe:90:60:c4:9a:d7:a5:2c:0c:fe:cb:
65:fd:19:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:25:52 2025 by rpki-client