Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/3130332e35342e38322e302f32332d3233203d3e20313530353132.roa
File: 3130332e35342e38322e302f32332d3233203d3e20313530353132.roa (raw, json)
Hash identifier: FjkCQEbxTkTrmju7umuTXr3UC7Hk/PD5qd4yUNE4PfI=
Subject key identifier: 24:61:90:84:51:B7:A1:CD:87:B4:60:67:56:1D:5C:54:F1:29:6C:68
Certificate issuer: /CN=2ADCBF290A98776E6F59353351C879A1502B884A
Certificate serial: 5A121FB7035704AD9D4E407FB90378AB9F0EAA0E
Authority key identifier: 2A:DC:BF:29:0A:98:77:6E:6F:59:35:33:51:C8:79:A1:50:2B:88:4A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2ADCBF290A98776E6F59353351C879A1502B884A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/3130332e35342e38322e302f32332d3233203d3e20313530353132.roa
Signing time: Wed 19 Mar 2025 05:00:45 +0000
ROA not before: Wed 19 Mar 2025 04:55:45 +0000
ROA not after: Wed 18 Mar 2026 05:00:45 +0000
asID: 150512
IP address blocks: 103.54.82.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:12:1f:b7:03:57:04:ad:9d:4e:40:7f:b9:03:78:ab:9f:0e:aa:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ADCBF290A98776E6F59353351C879A1502B884A
Validity
Not Before: Mar 19 04:55:45 2025 GMT
Not After : Mar 18 05:00:45 2026 GMT
Subject: CN=2461908451B7A1CD87B46067561D5C54F1296C68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:32:ba:b7:5b:73:ee:be:ea:76:39:14:bd:94:
d1:2f:33:ca:96:eb:c4:97:a0:a4:02:59:d4:b5:b8:
10:6b:b7:70:01:83:9b:df:c8:22:09:ca:2e:eb:5e:
f6:8c:00:da:1b:42:86:2b:df:e1:38:6b:eb:5f:70:
ad:1b:4f:68:d7:c8:f2:9d:17:94:05:ad:ef:55:34:
6d:23:f2:20:24:5c:4f:c3:b3:d2:77:0c:ea:a2:b2:
2c:6b:4c:10:31:c8:9f:a8:49:0f:c3:0e:34:9f:1f:
7b:63:64:80:7d:1d:ad:b8:9a:37:59:ea:9e:5a:5f:
db:7e:3e:c2:98:0a:cb:26:57:45:b5:d5:4c:03:9b:
4e:62:fc:4b:b8:e4:b0:bd:6d:4f:7c:6f:aa:5e:1e:
1c:8d:32:cc:25:c7:e2:68:49:75:21:74:b4:11:2e:
7b:7b:65:cc:1f:01:18:37:35:12:1c:ca:cb:27:d0:
49:0b:3d:a7:13:95:b3:ca:f6:8f:7b:f8:e4:89:0a:
3a:00:80:70:1f:40:e9:1c:11:e3:2e:27:9e:6f:eb:
bb:11:8f:02:90:59:38:36:92:60:12:88:4f:72:88:
e5:0b:08:91:cf:23:64:cd:39:74:99:de:1c:15:00:
45:2b:31:ee:0f:72:62:ca:6d:57:06:3d:38:86:5a:
48:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:61:90:84:51:B7:A1:CD:87:B4:60:67:56:1D:5C:54:F1:29:6C:68
X509v3 Authority Key Identifier:
keyid:2A:DC:BF:29:0A:98:77:6E:6F:59:35:33:51:C8:79:A1:50:2B:88:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/2ADCBF290A98776E6F59353351C879A1502B884A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2ADCBF290A98776E6F59353351C879A1502B884A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e8de9463-68a7-462d-9408-a7c39ce6e8ff/0/3130332e35342e38322e302f32332d3233203d3e20313530353132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.54.82.0/23
Signature Algorithm: sha256WithRSAEncryption
14:f4:6b:c8:b4:ee:50:b3:c2:7d:c0:08:4e:b6:3a:b1:21:a9:
9f:92:b8:11:f9:29:44:aa:bd:ba:47:8c:78:f3:29:0e:d3:37:
11:cf:c8:ce:f6:c4:56:7d:27:04:6a:6a:1f:91:c5:99:bb:fe:
71:8a:94:de:f1:0c:d1:3c:8f:4b:62:c1:af:c2:a4:32:a9:38:
e7:31:b3:43:d8:1b:36:4f:7f:21:2e:ed:07:e6:95:42:49:1e:
c9:63:c5:07:ce:58:75:3f:6f:a5:fb:4f:0c:92:52:83:cf:d2:
dc:4c:4b:77:c1:e8:12:c9:dd:d7:7a:46:48:a3:87:31:0a:cf:
ac:62:37:02:ab:6a:4d:b7:73:70:de:2c:7d:9c:e4:cd:f9:4f:
33:b9:c6:56:3d:27:16:58:1d:3a:a6:8b:37:cb:ba:bd:28:c4:
7d:a3:1c:91:57:a0:2c:0b:91:f8:f4:4b:c1:8c:72:c8:b8:d3:
f3:ef:00:6d:50:74:71:b7:f4:b5:2d:3b:bb:1b:1b:36:9b:5e:
6e:83:ca:5d:dc:65:22:66:3f:4e:78:5c:29:40:5a:1d:2c:93:
1f:ac:da:ce:e2:5c:23:e9:f4:cf:0b:61:da:10:bc:4a:87:58:
a7:a4:85:a6:aa:e5:95:08:7c:b9:e1:3b:59:89:8d:8e:ab:b5:
9f:02:98:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:32:05 2025 by rpki-client