Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/97dc7ee5-ce67-45cd-9881-43489ab2b1a5/0/3130332e3136342e32322e302f32332d3234203d3e203137393935.roa
File: 3130332e3136342e32322e302f32332d3234203d3e203137393935.roa (raw, json)
Hash identifier: kuz8DZ5ry1lfwh7QeQTf+PRzgmWL9WoL+n5zTceN/vc=
Subject key identifier: 76:F1:85:48:FD:AB:34:BA:A6:6B:DD:98:CA:A5:8F:4D:1E:57:15:96
Certificate issuer: /CN=79204255412F26FC4519CA94E35B93EF4E47BC73
Certificate serial: 119EF1076E619CAE08EABC56FD8FD4F78C8F3FFF
Authority key identifier: 79:20:42:55:41:2F:26:FC:45:19:CA:94:E3:5B:93:EF:4E:47:BC:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79204255412F26FC4519CA94E35B93EF4E47BC73.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/97dc7ee5-ce67-45cd-9881-43489ab2b1a5/0/3130332e3136342e32322e302f32332d3234203d3e203137393935.roa
Signing time: Fri 02 Aug 2024 09:03:41 +0000
ROA not before: Fri 02 Aug 2024 08:58:41 +0000
ROA not after: Fri 01 Aug 2025 09:03:41 +0000
asID: 17995
IP address blocks: 103.164.22.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:9e:f1:07:6e:61:9c:ae:08:ea:bc:56:fd:8f:d4:f7:8c:8f:3f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79204255412F26FC4519CA94E35B93EF4E47BC73
Validity
Not Before: Aug 2 08:58:41 2024 GMT
Not After : Aug 1 09:03:41 2025 GMT
Subject: CN=76F18548FDAB34BAA66BDD98CAA58F4D1E571596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6d:72:d7:6f:f6:fa:1d:da:24:7e:ff:8a:fe:
fc:57:57:07:2a:33:18:29:64:5f:a0:ac:cd:32:38:
f4:eb:36:d0:c6:b5:93:34:59:34:c1:7c:06:95:3f:
f7:58:10:e7:f0:bd:59:90:28:b6:00:8b:cd:bc:69:
3a:c4:56:70:57:a8:b8:7a:d8:e1:6c:15:43:9b:48:
4c:7e:84:e7:ab:be:c5:11:98:d4:69:ff:0f:0c:65:
89:ad:55:6f:ed:99:6e:e2:87:ac:b3:b5:e5:14:21:
ed:54:fb:43:19:1b:f7:fb:df:2b:45:4d:bc:64:cf:
9f:71:47:d8:6f:ce:85:b2:c9:80:50:ff:f7:54:ab:
d0:77:30:f8:7b:ff:3d:39:44:3c:ad:a5:b2:e6:e7:
6f:7b:f5:9d:ad:66:da:0e:d5:d9:ba:fd:6e:c1:03:
c2:4d:12:31:b6:2f:bd:a7:bf:a2:c9:a8:29:51:23:
52:4c:86:48:85:de:9d:19:94:bf:49:ff:bc:dd:9e:
db:94:9e:d7:30:7d:38:c5:6c:25:1b:eb:1a:76:4c:
f8:11:92:e6:d2:3e:c7:ba:e6:97:ed:17:9d:6e:84:
40:b3:d3:e7:2e:91:75:a5:28:1f:14:d8:f2:b8:87:
df:b4:0f:cb:de:32:fd:09:a2:95:c8:8c:e0:65:35:
e8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F1:85:48:FD:AB:34:BA:A6:6B:DD:98:CA:A5:8F:4D:1E:57:15:96
X509v3 Authority Key Identifier:
keyid:79:20:42:55:41:2F:26:FC:45:19:CA:94:E3:5B:93:EF:4E:47:BC:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/97dc7ee5-ce67-45cd-9881-43489ab2b1a5/0/79204255412F26FC4519CA94E35B93EF4E47BC73.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/79204255412F26FC4519CA94E35B93EF4E47BC73.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97dc7ee5-ce67-45cd-9881-43489ab2b1a5/0/3130332e3136342e32322e302f32332d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.22.0/23
Signature Algorithm: sha256WithRSAEncryption
74:14:e9:cd:7f:5f:a7:e6:fe:2f:d0:fe:d5:ba:54:54:3b:fa:
9a:ea:c1:24:99:3c:5f:5f:9c:b3:4a:81:3b:40:93:8c:e6:67:
eb:8a:7c:12:42:d5:65:41:2a:c6:01:e3:7f:8a:cd:2b:3e:b9:
2c:f2:9d:e8:a4:26:7b:60:45:c7:53:96:5b:c2:3f:0e:34:24:
72:9a:d2:6e:a0:6c:b1:6e:13:ef:48:d7:d6:65:d1:e9:99:0b:
9d:ec:da:84:f8:69:47:24:76:7b:aa:d8:0b:b4:99:9f:c6:4e:
52:bb:3a:99:46:f7:b4:54:42:ba:4b:55:07:13:6d:8d:d4:91:
b5:ad:e4:42:24:a7:38:ab:a0:8b:69:26:10:dc:d2:6b:57:35:
f1:5d:67:57:38:e3:cb:a1:74:1b:62:b7:22:62:8a:46:07:bf:
1c:ce:b4:57:2a:eb:6a:b0:c6:7c:20:ca:b2:bd:58:59:3b:e0:
e5:d8:6e:b5:ea:ca:2c:f7:69:b6:d0:13:dc:e1:91:2a:14:ec:
a4:89:49:40:62:db:0a:7a:a3:fe:6d:ec:2b:61:35:4d:79:20:
e7:a2:72:ba:59:d6:10:04:0b:06:9c:4a:16:9f:0b:9b:14:07:
26:be:25:8b:73:f7:2a:8e:5e:19:98:13:50:10:40:1c:82:a1:
3f:b4:ba:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:13:05 2025 by rpki-client