Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e3234372e31372e302f32342d3234203d3e203338313635.roa
File: 3130332e3234372e31372e302f32342d3234203d3e203338313635.roa (raw, json)
Hash identifier: 1oI1UJEIKKPC2V9/mRCIH9KltELEonLOlXzpRmnXt1I=
Subject key identifier: 10:B2:6B:80:B4:58:23:FB:24:74:F8:12:0E:3F:3D:44:8B:6D:52:AC
Certificate issuer: /CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Certificate serial: 659A9D126F7E54471081A4FA14FBCBC6C365D282
Authority key identifier: F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e3234372e31372e302f32342d3234203d3e203338313635.roa
Signing time: Mon 27 Jan 2025 03:00:01 +0000
ROA not before: Mon 27 Jan 2025 02:55:01 +0000
ROA not after: Mon 26 Jan 2026 03:00:01 +0000
asID: 38165
IP address blocks: 103.247.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:9a:9d:12:6f:7e:54:47:10:81:a4:fa:14:fb:cb:c6:c3:65:d2:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F2C22414BF08FC08B0AEBF44FAF85A85979D1053
Validity
Not Before: Jan 27 02:55:01 2025 GMT
Not After : Jan 26 03:00:01 2026 GMT
Subject: CN=10B26B80B45823FB2474F8120E3F3D448B6D52AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:01:c8:15:f7:4d:8b:25:6e:74:51:d5:78:fc:
be:21:25:ea:5e:04:fa:0c:d2:53:df:5b:af:4a:85:
93:a2:aa:50:3a:8f:ad:c1:e1:71:9c:60:f7:a6:cf:
b7:15:9c:f8:c6:03:07:1c:f4:da:f7:5d:86:ea:7b:
4f:c7:63:80:58:64:c3:ff:67:5b:5d:ce:d3:fb:73:
ef:f3:c3:08:66:45:07:0e:15:af:d6:d3:96:9d:55:
ec:75:79:99:a9:d2:1e:00:4f:1e:2a:e2:52:82:ea:
8f:55:03:eb:0a:4d:ac:a0:9f:82:1f:71:a0:a5:a8:
cf:3b:7b:e5:12:ea:36:cd:81:35:15:57:b2:60:61:
f4:d7:06:b2:84:3e:fd:47:ab:01:f8:e4:77:ff:3d:
15:a2:38:49:f9:6c:06:0d:20:97:97:95:12:10:f9:
c2:c9:6e:53:f2:ba:77:20:73:f3:26:49:bd:5d:ac:
3a:7c:cc:5f:fd:44:bf:d1:7c:ab:16:32:6d:d1:68:
0a:6d:50:00:dd:2c:3e:d7:9e:c3:12:a2:cb:9e:ca:
50:c2:48:18:60:8d:e9:e4:68:2c:43:6f:8c:49:b7:
e0:f1:f6:f7:b3:70:cf:c5:78:65:81:8b:f8:0d:e1:
e3:52:cd:c1:f1:37:26:b3:86:63:53:4f:51:d6:a6:
33:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B2:6B:80:B4:58:23:FB:24:74:F8:12:0E:3F:3D:44:8B:6D:52:AC
X509v3 Authority Key Identifier:
keyid:F2:C2:24:14:BF:08:FC:08:B0:AE:BF:44:FA:F8:5A:85:97:9D:10:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F2C22414BF08FC08B0AEBF44FAF85A85979D1053.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7448c11-f8d3-457d-8e22-84887ab22a30/0/3130332e3234372e31372e302f32342d3234203d3e203338313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.247.17.0/24
Signature Algorithm: sha256WithRSAEncryption
94:1a:81:fd:ae:56:cd:f3:0e:50:d5:df:37:31:c0:a7:4f:9a:
dc:75:3c:72:c6:24:48:f4:9a:4a:5d:08:e8:d1:4a:de:59:a7:
d5:5b:a5:3c:f0:52:f8:28:4e:95:86:0d:e1:df:e6:6b:4e:45:
61:7c:aa:d5:4a:5f:2e:f2:1d:fd:b2:f1:73:80:63:49:43:54:
40:7f:70:22:59:49:9d:d2:85:31:5d:1e:c6:56:db:10:98:f6:
c7:72:43:29:96:d3:db:1d:b5:9b:5f:3e:ae:96:c7:33:65:88:
c8:95:d6:4a:1a:43:bf:03:59:43:a9:2f:62:0d:3d:04:2b:d5:
6b:bc:b3:9d:54:3b:89:74:77:83:18:f4:5d:05:aa:80:af:d9:
14:65:48:19:cb:8f:5a:79:b9:a6:86:d1:fc:6e:61:42:ac:ca:
41:6a:a8:61:ad:42:ae:98:29:7d:ee:9a:c6:fc:48:b7:1b:5a:
0c:2f:10:ee:ff:8c:5c:8e:96:99:09:b6:93:ac:dd:17:58:83:
3a:13:42:4e:3c:c7:af:c8:47:65:86:20:fe:37:15:cd:57:fa:
27:68:79:b5:c8:cc:3a:9a:06:98:0f:0e:dc:e2:b6:1c:30:d3:
44:cf:dc:8f:5c:b8:17:cf:b3:6c:85:ea:7a:95:53:5b:85:c5:
25:23:88:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:47:50 2025 by rpki-client