Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa
File: 3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa (raw, json)
Hash identifier: WHK6Zz1i6Hc2LLq8L96O4VJFpX02HYc2gUchhiH6Le4=
Subject key identifier: 88:85:D1:84:75:0D:A3:00:00:17:35:64:61:FC:B3:0A:A8:92:17:38
Certificate issuer: /CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D
Certificate serial: 4AA5F6DEB538760207731B9FE582617B2F9C53A5
Authority key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa
Signing time: Wed 15 May 2024 10:02:07 +0000
ROA not before: Wed 15 May 2024 09:57:07 +0000
ROA not after: Wed 14 May 2025 10:02:07 +0000
asID: 140478
IP address blocks: 103.154.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:a5:f6:de:b5:38:76:02:07:73:1b:9f:e5:82:61:7b:2f:9c:53:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D
Validity
Not Before: May 15 09:57:07 2024 GMT
Not After : May 14 10:02:07 2025 GMT
Subject: CN=8885D184750DA3000017356461FCB30AA8921738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b9:6a:70:1c:d4:b3:8f:cb:cf:08:9c:bb:b9:
3e:e7:e0:70:a9:31:aa:18:74:17:17:35:59:78:e1:
aa:ee:ac:63:d6:1f:34:ca:e0:2b:4d:0f:bc:63:16:
8f:e5:e4:c6:f0:c4:ea:ff:93:b9:bb:24:f4:1d:ab:
25:59:61:4e:db:4c:0b:56:eb:bf:26:dd:c7:57:84:
0c:e1:98:32:7e:24:51:25:36:ee:1a:4d:e1:d7:7f:
c6:61:41:e1:b9:a0:86:43:54:1f:09:cc:72:e3:1e:
8c:d1:69:a2:bb:81:5e:c3:a3:e1:42:ad:62:5b:55:
d0:d3:31:9b:8d:22:ec:30:21:3f:8d:54:b1:71:a8:
3b:a6:a6:e2:e9:bd:6e:45:b4:cd:ed:29:50:c6:9a:
22:9c:3b:45:21:af:de:f6:7a:33:7e:cf:ab:9e:42:
2d:a7:19:3f:69:ea:d2:aa:f5:c2:1e:93:d2:34:d3:
d2:19:18:a3:3d:ba:2f:de:8f:f4:2b:8b:36:09:93:
ad:3e:55:fd:92:e3:40:e2:5b:3a:ef:8c:2a:7a:ab:
14:09:50:ca:bd:91:b9:83:85:e9:1a:50:dc:87:b2:
b0:77:8e:cf:9a:ef:4f:3d:4c:25:04:e3:cc:ce:2f:
8e:1b:9c:ac:ba:8d:45:d5:ac:ff:32:23:39:f0:17:
be:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:85:D1:84:75:0D:A3:00:00:17:35:64:61:FC:B3:0A:A8:92:17:38
X509v3 Authority Key Identifier:
keyid:B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/3130332e3135342e32352e302f32342d3234203d3e20313430343738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.154.25.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:9d:8c:43:2f:bd:b8:08:e9:43:ec:7b:a0:43:81:8b:42:53:
7c:cc:ba:34:23:ef:bd:63:b0:09:4a:77:cc:ed:cf:9e:20:22:
a0:97:b7:e9:fe:f6:e5:90:4a:5c:22:4d:4a:e9:aa:c9:44:76:
ef:e7:d3:ed:7c:11:79:a9:0b:a0:86:de:f3:91:86:85:85:57:
c2:7b:ba:fa:64:64:ed:47:34:2f:d0:a2:e5:98:03:f8:c6:41:
4d:58:13:08:d3:33:b0:3a:3c:bc:53:24:f1:29:68:59:c7:26:
c4:9f:8b:43:a3:3b:f8:dd:9d:e8:6a:21:4f:7a:7a:40:8e:9b:
25:9e:64:5e:c4:36:20:c8:73:c6:24:71:2d:7e:35:70:70:5d:
e9:56:e3:de:20:54:e9:fc:59:98:82:f5:cb:ed:4b:76:d3:10:
6b:19:0c:a9:33:6d:d7:8d:d0:e5:95:a0:ad:d6:53:28:7e:5b:
25:ca:b2:56:14:3a:0f:a0:b6:5e:6c:cc:88:43:d6:dc:d7:2d:
38:9b:d2:b2:19:04:86:f1:89:8a:bb:12:a5:47:71:b2:37:c4:
62:5a:44:ba:d2:ec:1b:07:cf:d6:18:76:ec:2a:ac:3b:ee:c2:
34:09:58:0d:9e:f0:bb:ef:24:f7:37:8a:af:38:e9:ca:c8:a5:
65:a0:5c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:10 2025 by rpki-client