Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32332d3233203d3e20313339343535.roa
File: 3130332e3134352e35322e302f32332d3233203d3e20313339343535.roa (raw, json)
Hash identifier: 7DJwBHtzGlb/NDl1/3zGyCjwc3DhiipUzCGFUXWXjoE=
Subject key identifier: 16:5F:C6:37:7F:C9:0C:B8:95:BF:DA:7A:32:DA:27:A8:0C:F7:B0:F8
Certificate issuer: /CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3
Certificate serial: 3D916E2B22CC4CBDA2605E4C2331B9C6F160AB45
Authority key identifier: 90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32332d3233203d3e20313339343535.roa
Signing time: Fri 14 Mar 2025 04:02:07 +0000
ROA not before: Fri 14 Mar 2025 03:57:07 +0000
ROA not after: Fri 13 Mar 2026 04:02:07 +0000
asID: 139455
IP address blocks: 103.145.52.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:91:6e:2b:22:cc:4c:bd:a2:60:5e:4c:23:31:b9:c6:f1:60:ab:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3
Validity
Not Before: Mar 14 03:57:07 2025 GMT
Not After : Mar 13 04:02:07 2026 GMT
Subject: CN=165FC6377FC90CB895BFDA7A32DA27A80CF7B0F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cf:6c:d2:ef:84:56:c0:c1:53:5d:64:7a:7f:
bc:ac:d3:73:3a:f9:e0:67:cb:a6:85:3e:44:6c:a6:
41:44:8f:1d:9a:36:32:24:0d:79:3a:f0:0a:2e:7e:
87:a8:0c:a2:f0:08:ab:57:6b:ec:3e:62:8a:17:8e:
af:7b:c7:a1:b8:05:9a:d7:48:06:fd:e2:67:1b:08:
6c:18:f1:56:73:b0:ab:31:b3:24:10:82:24:14:5f:
ee:66:7d:0d:b8:5d:d7:c1:77:9f:11:df:e3:e5:a8:
54:5c:ab:ec:78:9a:8b:f4:6a:cc:b1:5f:18:db:e5:
e7:5b:6c:47:e8:b4:36:01:1f:0c:36:a6:1b:4e:14:
16:aa:c8:e0:e7:58:cf:32:2a:a4:1a:5a:c7:ae:18:
51:b4:cc:1d:c7:2b:8d:da:e7:9e:d7:1d:2d:8a:a3:
f0:40:0c:0c:47:34:ef:f5:51:05:af:1e:5e:65:66:
22:49:b3:a4:2e:96:16:91:80:79:39:ff:93:88:95:
7b:c4:c5:f7:1b:a9:bd:16:8a:19:47:42:98:4e:1c:
37:15:d0:19:5d:63:29:3c:a0:29:ea:ae:c1:fb:5f:
57:e8:e3:43:fe:de:41:be:ba:6a:39:1f:d6:7f:df:
92:a5:46:8f:f6:dc:34:cc:ee:d8:aa:1c:ed:04:86:
ef:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:5F:C6:37:7F:C9:0C:B8:95:BF:DA:7A:32:DA:27:A8:0C:F7:B0:F8
X509v3 Authority Key Identifier:
keyid:90:E2:CC:AC:A3:23:EA:B2:14:5F:54:B7:CF:65:C5:FA:EC:EF:83:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/90E2CCACA323EAB2145F54B7CF65C5FAECEF83A3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f77ffe2a-31e4-4800-97d4-7874c1231911/0/3130332e3134352e35322e302f32332d3233203d3e20313339343535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.145.52.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:ac:c5:a1:87:8a:a1:a3:24:12:56:5f:ae:83:3f:e6:46:9c:
cc:19:7b:73:45:5e:40:6d:4d:18:cb:ea:14:71:70:f9:dc:59:
64:66:45:b1:9c:c3:c7:68:ef:4e:ce:e6:7f:6b:04:2e:4e:57:
31:c7:80:ca:a0:b9:3d:90:59:19:3a:eb:a0:91:3f:93:b6:6f:
be:94:ef:a3:dc:a9:7f:7c:64:2c:2d:96:09:35:f5:ab:04:08:
de:06:af:5c:5a:9b:60:2d:c2:ef:ed:96:6d:0f:9d:84:74:d3:
e5:71:27:02:79:04:55:f6:d4:54:28:86:c8:62:bd:05:7d:38:
0b:8a:68:fd:3e:20:95:b5:5d:6e:33:4f:71:b1:66:b1:5a:62:
6a:8b:05:de:25:b2:2c:ce:45:7e:d5:00:fa:e0:6c:d0:6c:29:
0c:ed:46:ec:7e:59:d9:c3:bb:5f:19:0c:a8:96:a7:38:6e:12:
6d:ad:c7:fe:e2:6a:e4:c2:a9:8d:5c:48:25:38:00:a7:63:4b:
47:81:a0:5c:62:59:6c:ef:09:27:6f:25:24:44:36:f2:8d:aa:
20:3b:55:ed:41:58:71:14:00:c2:54:f5:9a:da:23:90:9c:38:
7c:88:b3:5c:16:8b:a4:7c:2c:f5:67:eb:d9:6c:2b:b6:07:94:
6d:af:1a:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:38 2025 by rpki-client