Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136392e302f32342d3234203d3e20313530343833.roa
File: 3130332e35342e3136392e302f32342d3234203d3e20313530343833.roa (raw, json)
Hash identifier: jpWaT+oGFZ1feNV4Ontzk7N9Bf3lE1R8kV74EOaQmlQ=
Subject key identifier: 43:25:FD:EC:40:5E:3D:23:10:F5:E4:31:77:2F:1E:BB:CE:95:09:02
Certificate issuer: /CN=F1F25C19AB419E370912452242B8B55038581157
Certificate serial: 1A49BD04DDE5C4D7146D3C3883BB907D555D821C
Authority key identifier: F1:F2:5C:19:AB:41:9E:37:09:12:45:22:42:B8:B5:50:38:58:11:57
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1F25C19AB419E370912452242B8B55038581157.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136392e302f32342d3234203d3e20313530343833.roa
Signing time: Fri 14 Mar 2025 06:00:00 +0000
ROA not before: Fri 14 Mar 2025 05:55:00 +0000
ROA not after: Fri 13 Mar 2026 06:00:00 +0000
asID: 150483
IP address blocks: 103.54.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:49:bd:04:dd:e5:c4:d7:14:6d:3c:38:83:bb:90:7d:55:5d:82:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1F25C19AB419E370912452242B8B55038581157
Validity
Not Before: Mar 14 05:55:00 2025 GMT
Not After : Mar 13 06:00:00 2026 GMT
Subject: CN=4325FDEC405E3D2310F5E431772F1EBBCE950902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:52:3a:fd:de:e5:2e:cb:62:4b:bd:d0:64:7d:
c5:d9:6e:30:de:1b:a7:fa:19:3e:0a:e1:df:a3:3e:
b2:7b:15:c6:d6:66:88:3a:18:0f:8d:68:e5:ba:51:
f8:65:b9:ac:4e:60:0f:1a:1c:cf:7d:b7:3a:f4:67:
8b:58:5f:02:8f:a4:07:4f:58:e2:3f:46:c3:88:d5:
c5:94:db:65:1d:8c:6b:2d:99:d5:d9:d6:09:ec:b9:
51:02:12:16:e8:5e:46:ba:7b:75:da:77:67:44:7e:
8c:3f:01:83:81:69:aa:9f:86:1e:b7:f3:dc:85:c3:
82:56:f1:21:db:d2:97:2a:49:f2:10:fd:75:52:27:
c0:8b:59:45:f6:15:c0:ec:07:c9:1c:00:cb:cd:f0:
07:85:a6:2d:1b:45:17:fa:a4:7b:d2:b8:d6:23:74:
bd:b2:70:ab:b8:69:3b:29:a2:b0:81:ab:5e:73:b1:
0c:28:97:33:92:32:7b:2b:87:11:1e:97:c7:ca:1b:
5e:75:ad:f3:2b:a7:91:1d:3d:ab:aa:d9:35:ef:77:
0c:2c:4e:45:7a:c9:1c:89:57:11:b9:79:d8:6a:1a:
f1:12:75:80:2e:a9:1f:3d:26:67:3c:45:69:13:c1:
31:27:63:cc:f8:c3:af:46:87:7e:d2:f0:e5:29:5d:
4f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:25:FD:EC:40:5E:3D:23:10:F5:E4:31:77:2F:1E:BB:CE:95:09:02
X509v3 Authority Key Identifier:
keyid:F1:F2:5C:19:AB:41:9E:37:09:12:45:22:42:B8:B5:50:38:58:11:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/F1F25C19AB419E370912452242B8B55038581157.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F1F25C19AB419E370912452242B8B55038581157.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fe330633-a7d1-4d0a-a1cc-b6c3eedfbc17/0/3130332e35342e3136392e302f32342d3234203d3e20313530343833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.54.169.0/24
Signature Algorithm: sha256WithRSAEncryption
13:d2:f1:ba:52:10:ee:e7:e6:c1:06:c3:60:ad:a4:e7:da:62:
6d:9c:b7:52:5d:1d:db:ed:c8:4a:ac:3f:9e:ae:50:57:5c:04:
1d:9e:7b:5d:9f:48:09:85:61:f4:9f:5b:0e:e2:74:4a:a7:bc:
db:dd:5a:54:9b:e3:5e:37:2a:35:fd:45:3d:25:30:fe:b2:e7:
f6:25:84:49:8b:0c:f0:90:a0:e4:8a:d3:a6:10:96:c6:e0:1e:
7c:b1:ef:70:59:dd:fa:15:05:f6:9d:48:fa:63:3e:2a:93:e4:
b5:8d:52:49:64:b4:7b:94:a2:a4:ad:8f:d5:71:d5:5d:b1:ae:
97:fc:45:2a:46:a3:21:4c:d8:f3:f0:69:c5:9e:ed:09:ff:47:
95:01:b8:c3:8f:82:b7:60:81:fe:22:f1:aa:00:35:8f:36:7f:
27:06:3f:67:b4:43:f1:53:3a:3e:c3:28:38:d2:cb:93:a8:42:
c4:39:aa:54:aa:99:70:33:58:f9:7f:c0:a8:2a:97:b4:f7:7e:
a4:5f:a1:01:70:7f:b4:1b:08:22:f7:91:9f:bf:43:35:9d:13:
f8:08:aa:9e:7e:23:cb:92:15:25:6f:df:d6:83:0a:2e:94:0f:
29:85:c2:98:1b:b1:19:9a:86:6a:16:bf:2c:1f:6b:16:e7:5d:
12:18:6d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:11:18 2025 by rpki-client