Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa
File: 3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa (raw, json)
Hash identifier: 7kMgl/NBAAfJwU+xnPHcsFS6CNKIZl6ydoYTByVrcR4=
Subject key identifier: A6:3E:EE:06:16:78:AB:05:D9:18:F3:04:9E:95:21:FB:BE:9C:39:C9
Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB
Certificate serial: 6EFE42F0537751F4FAABF580CA11E27E40F56524
Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa
Signing time: Fri 15 Nov 2024 11:00:01 +0000
ROA not before: Fri 15 Nov 2024 10:55:01 +0000
ROA not after: Fri 14 Nov 2025 11:00:01 +0000
asID: 138087
IP address blocks: 103.125.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:fe:42:f0:53:77:51:f4:fa:ab:f5:80:ca:11:e2:7e:40:f5:65:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB
Validity
Not Before: Nov 15 10:55:01 2024 GMT
Not After : Nov 14 11:00:01 2025 GMT
Subject: CN=A63EEE061678AB05D918F3049E9521FBBE9C39C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9a:d2:d6:51:89:dd:97:12:fa:6b:27:c3:6f:
99:8d:3b:06:db:7d:55:78:c9:f3:bf:b9:f0:da:68:
16:b2:10:de:63:08:90:25:25:1a:60:fa:d5:1c:82:
0f:3a:13:eb:0b:67:37:70:b5:a1:f8:fb:d1:45:4a:
e4:40:79:25:61:e2:6e:4d:60:d6:9b:0c:e6:b9:93:
84:9d:a7:64:be:62:91:49:1b:7e:65:90:13:1d:cc:
43:ef:f7:d4:a1:a1:90:99:28:4e:06:a3:cb:23:46:
5d:0a:50:a9:5d:ba:ae:58:9b:c4:2a:1c:fd:8c:b6:
0e:72:05:6e:d0:7d:12:27:cc:a5:55:49:a3:a0:9e:
e7:4e:b5:87:7b:16:a4:1d:c0:f0:52:b6:66:e0:f9:
64:50:c0:4d:4b:60:55:8e:4e:94:0a:a9:74:d2:67:
a6:38:94:71:5f:91:4a:66:5b:33:33:be:d1:7d:b9:
e5:8c:b6:e1:b2:e1:88:a4:5e:36:a7:32:49:03:83:
c1:a0:6e:da:6a:8e:6a:b5:53:8a:72:a0:24:50:f5:
1d:bc:b7:51:b9:5f:d0:ff:ba:d4:63:c8:b0:6c:9b:
6f:85:48:1f:9b:a4:dc:7c:16:32:f5:51:d8:66:d8:
69:a2:45:fd:6a:30:50:74:57:8f:e7:47:c1:9e:a8:
71:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3E:EE:06:16:78:AB:05:D9:18:F3:04:9E:95:21:FB:BE:9C:39:C9
X509v3 Authority Key Identifier:
keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.125.17.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:cd:b3:f2:9c:ad:58:67:76:bf:be:e4:b6:03:4b:70:ee:63:
3f:0c:36:ab:fb:cc:8c:84:f8:ae:a4:62:42:8f:96:99:41:a5:
66:17:96:95:0e:32:43:b1:03:8f:3b:ac:52:d7:23:09:70:f9:
07:9a:46:76:01:f9:24:27:a6:dc:48:1d:e7:d7:ea:77:dd:7e:
fa:de:70:4e:8c:98:c6:fd:44:f2:71:f3:db:e2:58:8f:0b:94:
dc:cd:77:c8:ef:77:da:15:df:09:bc:8e:88:3c:15:35:fb:ca:
60:83:fa:90:63:c3:52:e0:09:7d:2a:3a:8f:bd:d8:6d:4b:68:
be:b9:9c:24:3a:f7:a2:9f:44:8a:6d:88:c3:79:2c:8a:a1:c5:
5e:d4:5b:de:d5:2c:d9:a6:c6:c8:54:f1:85:c8:d9:e9:31:0b:
41:8a:06:85:fe:77:ed:72:59:69:34:ad:c1:fb:4a:2b:72:e7:
b5:00:b9:ca:04:8d:71:40:62:4c:cd:e1:2e:5b:da:79:9f:11:
64:4f:cb:09:b7:a3:c2:26:c7:ce:91:ed:89:37:a6:a0:17:ec:
d6:4a:6c:b4:ab:50:c8:ac:7e:07:ea:f1:2e:70:99:67:e4:0d:
0d:62:db:8c:c5:a3:bb:75:14:26:3c:54:83:87:d0:b1:22:d3:
94:9b:cb:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:17 2025 by rpki-client