Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230372e302f32342d3234203d3e2039333431.roa
File: 3130332e3138392e3230372e302f32342d3234203d3e2039333431.roa (raw, json)
Hash identifier: i1GJNbRBwGVtNAHRB092WhlJo2rSh0vU4nk0qFCAm/A=
Subject key identifier: AD:AD:85:88:23:68:E5:67:32:24:E2:D7:F1:C5:57:12:23:A1:F3:40
Certificate issuer: /CN=69945C3869B3E429D4B0AECEDF9999EA5DAEE429
Certificate serial: 7EA132F37A08654267C0CE454F4DE51983B5E3FC
Authority key identifier: 69:94:5C:38:69:B3:E4:29:D4:B0:AE:CE:DF:99:99:EA:5D:AE:E4:29
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230372e302f32342d3234203d3e2039333431.roa
Signing time: Wed 01 May 2024 07:00:00 +0000
ROA not before: Wed 01 May 2024 06:55:00 +0000
ROA not after: Wed 30 Apr 2025 07:00:00 +0000
asID: 9341
IP address blocks: 103.189.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:a1:32:f3:7a:08:65:42:67:c0:ce:45:4f:4d:e5:19:83:b5:e3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69945C3869B3E429D4B0AECEDF9999EA5DAEE429
Validity
Not Before: May 1 06:55:00 2024 GMT
Not After : Apr 30 07:00:00 2025 GMT
Subject: CN=ADAD85882368E5673224E2D7F1C5571223A1F340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:82:15:5d:02:20:55:87:dd:1e:cf:a1:29:a5:
2c:ac:38:ee:9f:bb:03:c9:19:72:eb:67:9c:dd:64:
f6:61:93:18:6c:9f:90:ce:b1:37:04:cb:11:f3:e2:
24:b4:56:2d:92:13:ef:14:4c:9c:71:b2:7d:5d:b6:
42:f3:95:be:c6:85:97:1f:25:13:e8:23:9e:c3:f7:
7e:c5:23:7b:da:ed:d6:4c:9e:2e:94:01:ef:ac:f3:
5d:66:d7:69:24:39:49:11:5d:9c:fc:b1:4a:65:70:
60:e0:f8:b4:bb:19:fb:da:59:72:bd:b4:3f:b3:26:
f9:d1:9a:00:11:eb:61:1d:da:f8:48:81:45:d6:db:
a2:ca:7c:9b:a9:4a:56:7f:78:9b:45:76:20:84:7f:
a7:c6:50:a9:01:6f:a0:f6:be:be:e5:4a:5d:2c:0b:
d7:1b:fe:36:09:58:d6:59:b8:ba:06:ba:93:c1:7a:
a8:d6:a5:49:ae:bb:0f:3c:d0:89:b8:2b:03:e7:fd:
56:7f:8b:f2:95:5a:d2:b5:fc:64:6d:7e:10:6d:87:
55:2b:d3:10:4c:05:24:29:e7:a7:3a:fb:04:2c:34:
c6:a7:cf:39:c2:56:ae:9f:3a:89:d1:e0:2e:07:cc:
02:b6:90:39:59:19:1f:07:aa:a2:3e:b8:a1:74:1e:
94:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AD:85:88:23:68:E5:67:32:24:E2:D7:F1:C5:57:12:23:A1:F3:40
X509v3 Authority Key Identifier:
keyid:69:94:5C:38:69:B3:E4:29:D4:B0:AE:CE:DF:99:99:EA:5D:AE:E4:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69945C3869B3E429D4B0AECEDF9999EA5DAEE429.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1831eeb4-f357-45a7-9265-428b007a0270/0/3130332e3138392e3230372e302f32342d3234203d3e2039333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.189.207.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:14:d7:c2:55:3c:80:03:1b:c1:43:79:e5:7f:0e:bb:b3:f1:
f3:43:31:b0:33:b2:72:4f:64:73:24:d1:df:ec:46:91:ec:df:
75:9a:e0:c0:cd:a4:69:e9:e1:e5:1e:54:a7:ff:51:1f:3c:c7:
e7:dc:df:71:77:3d:87:01:36:3a:d4:2c:79:56:76:b2:bb:01:
04:c8:58:36:1a:88:77:a7:4c:85:dc:01:77:4d:01:52:49:97:
07:2a:1f:a9:aa:93:6e:97:c0:99:bc:de:68:24:0e:7e:07:21:
57:2d:59:96:cd:86:da:a1:26:6b:fe:35:c6:f4:1c:4e:69:9d:
0a:49:25:08:08:ca:22:5d:30:7b:46:18:4b:90:0f:90:b8:99:
0e:24:4c:0d:e7:91:3c:ee:3b:31:64:1c:dc:6e:fe:0d:2f:8c:
1f:f2:23:db:d7:75:10:59:83:54:af:f5:65:a2:a0:a1:78:04:
0b:ed:c5:28:d5:a4:d7:4f:d6:aa:29:9a:91:38:1d:ea:4d:1e:
19:78:0c:e2:d7:f3:aa:f2:62:af:3a:df:e5:d7:55:59:44:9d:
b8:f4:63:5c:c7:d2:e9:19:fa:b9:21:35:92:cb:df:37:50:b2:
9d:cf:59:cb:8a:f6:a6:2e:bf:99:50:47:eb:89:3e:d5:e9:c3:
ec:52:e3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:20:36 2025 by rpki-client