Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/3130332e35342e3137322e302f32342d3234203d3e203538383234.roa
File: 3130332e35342e3137322e302f32342d3234203d3e203538383234.roa (raw, json)
Hash identifier: rfgoK21VT80jcjTnSSTUWLHb0odprGUSbTG8ns7Fdx8=
Subject key identifier: 49:A6:63:71:58:35:88:D3:88:97:A8:BE:82:29:7E:58:D7:47:B4:F6
Certificate issuer: /CN=179284A2BF606F69A6FF340CD3D6460BE9BF26DD
Certificate serial: 77FBFEDA3FABFD676BC5A0F601549D47450FD99D
Authority key identifier: 17:92:84:A2:BF:60:6F:69:A6:FF:34:0C:D3:D6:46:0B:E9:BF:26:DD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/179284A2BF606F69A6FF340CD3D6460BE9BF26DD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/3130332e35342e3137322e302f32342d3234203d3e203538383234.roa
Signing time: Mon 03 Feb 2025 04:00:00 +0000
ROA not before: Mon 03 Feb 2025 03:55:00 +0000
ROA not after: Mon 02 Feb 2026 04:00:00 +0000
asID: 58824
IP address blocks: 103.54.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:fb:fe:da:3f:ab:fd:67:6b:c5:a0:f6:01:54:9d:47:45:0f:d9:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179284A2BF606F69A6FF340CD3D6460BE9BF26DD
Validity
Not Before: Feb 3 03:55:00 2025 GMT
Not After : Feb 2 04:00:00 2026 GMT
Subject: CN=49A66371583588D38897A8BE82297E58D747B4F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ce:75:2a:1e:0b:bb:c0:5a:cb:e6:36:2d:81:
c0:41:38:d2:91:95:3c:cb:90:8d:9a:f7:a5:57:3c:
ff:68:3a:28:08:d6:71:f0:6e:20:aa:56:a2:e0:55:
40:87:87:48:71:02:b9:5c:53:23:02:e5:e4:15:d9:
02:72:6f:df:ff:80:30:c2:f2:e6:c4:28:dc:e9:5d:
1a:85:30:38:0a:29:82:fd:4f:58:08:a6:80:84:35:
58:73:55:e8:3c:07:72:d4:bd:93:05:69:18:1a:09:
eb:69:9a:b3:7e:57:90:aa:93:e7:5e:2e:8d:06:63:
36:f7:03:7e:6e:36:65:f2:59:ea:4e:e4:77:a3:e1:
8d:81:64:1d:a7:77:a4:80:93:5b:d9:35:9e:c1:3d:
1e:f7:64:8a:1d:01:77:ae:61:69:71:a8:7e:17:93:
fd:7a:54:af:9c:38:e6:30:5d:e5:cf:0e:b8:a8:d2:
5f:40:d8:6e:ec:4b:06:95:ea:d1:57:e7:76:99:9e:
07:91:3c:c6:eb:30:e3:ea:ab:cf:80:08:10:0a:63:
7d:6b:90:aa:87:b1:2b:f9:73:cb:66:70:9b:a6:bd:
05:ca:36:a9:20:4c:e0:54:bd:46:1a:8d:ca:c0:3a:
17:28:7a:75:30:4d:90:99:8c:74:4b:94:34:55:89:
2f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:A6:63:71:58:35:88:D3:88:97:A8:BE:82:29:7E:58:D7:47:B4:F6
X509v3 Authority Key Identifier:
keyid:17:92:84:A2:BF:60:6F:69:A6:FF:34:0C:D3:D6:46:0B:E9:BF:26:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/179284A2BF606F69A6FF340CD3D6460BE9BF26DD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/179284A2BF606F69A6FF340CD3D6460BE9BF26DD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e7e0faf0-788d-495b-ac98-f3516195db60/0/3130332e35342e3137322e302f32342d3234203d3e203538383234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.54.172.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:c2:c5:63:c4:e1:91:46:d6:bf:dc:e1:34:f5:19:ee:0f:96:
48:5d:d7:15:a4:24:9c:a4:fe:e3:19:83:45:0c:00:4f:99:46:
db:be:28:06:56:77:64:99:9a:21:23:1b:6c:e1:c5:10:bf:84:
f5:0c:2b:fe:c4:a2:55:48:11:ba:1d:64:df:0e:58:30:80:f7:
15:20:b7:a2:aa:06:77:ad:22:a8:74:15:c9:09:17:bc:2b:6a:
84:f9:da:c4:ab:c7:09:7c:73:78:6f:b2:8c:b4:a9:01:cd:7e:
42:17:40:c9:db:5b:69:ca:d6:1a:d7:93:65:08:7b:b2:db:35:
d2:3a:a1:42:37:bb:75:71:4c:42:aa:c1:50:ec:59:aa:76:03:
3e:21:3d:9d:7a:a6:5b:35:38:1e:8e:b6:bf:bd:7c:a7:e0:82:
8b:fd:8a:e1:a6:f1:e4:43:f2:1a:08:e4:16:36:a2:27:76:db:
ee:8f:c0:bd:f8:78:8d:7d:d9:67:6e:5b:68:69:4b:ff:c8:6d:
4b:3d:3a:65:98:bd:2a:8a:e2:06:bd:c2:0f:c1:c1:ad:e1:dd:
79:62:b5:18:15:f2:3a:db:1c:1a:84:a4:e7:82:f6:95:b9:d3:
da:64:a7:d0:63:34:8d:f3:0b:ba:44:c8:71:fa:28:a8:0d:d0:
ba:ce:30:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 17:26:17 2025 by rpki-client