Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32342d3234203d3e20313430343433.roa
File: 3130332e3135322e3131382e302f32342d3234203d3e20313430343433.roa (raw, json)
Hash identifier: yhFwxGYSgpX9NxLtpkSVYLsiFIe9rD19hKsWw63qYc8=
Subject key identifier: 6F:60:87:47:2E:17:D8:54:D3:91:D1:98:4C:1B:83:3D:69:3B:21:BD
Certificate issuer: /CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F
Certificate serial: 6D3C7E3ABDBBD61BEEE3A383FE2474AA7C36846F
Authority key identifier: 6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32342d3234203d3e20313430343433.roa
Signing time: Wed 17 Jul 2024 18:00:01 +0000
ROA not before: Wed 17 Jul 2024 17:55:01 +0000
ROA not after: Wed 16 Jul 2025 18:00:01 +0000
asID: 140443
IP address blocks: 103.152.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:3c:7e:3a:bd:bb:d6:1b:ee:e3:a3:83:fe:24:74:aa:7c:36:84:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6DCC69508EF4E670EFBC5C69203D6B120FA9392F
Validity
Not Before: Jul 17 17:55:01 2024 GMT
Not After : Jul 16 18:00:01 2025 GMT
Subject: CN=6F6087472E17D854D391D1984C1B833D693B21BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2b:4c:1c:1f:16:ab:fa:20:77:e0:15:ff:c9:
07:b4:64:36:e6:40:46:8a:fa:59:68:2a:b3:76:f3:
90:cb:26:18:4c:58:b2:fc:07:c2:8b:66:46:57:32:
c7:b8:a9:62:69:e3:c1:5f:ab:92:80:6b:77:f1:ee:
d6:8d:c5:c0:fd:b8:47:2e:9b:9b:d0:be:cf:53:5d:
66:3c:23:a4:00:6b:16:b7:42:7f:d1:f6:46:0e:75:
09:6b:5b:bc:d9:fa:7f:a9:bb:33:17:12:f2:fe:fa:
1c:ab:51:9f:55:05:8a:8b:21:ab:86:6f:f8:e0:0c:
6e:8a:91:e3:d1:82:04:5b:65:90:14:0c:8e:8c:98:
89:7d:e6:e7:3d:59:42:6a:97:0b:21:a4:85:bb:2a:
93:29:e6:41:2b:bf:bc:93:9d:62:9b:a5:67:ee:de:
91:81:2c:7f:12:f1:92:b0:2e:fb:bf:f3:01:e1:8b:
00:72:f4:6d:19:8b:73:00:4d:53:6f:41:5d:6b:20:
ed:5b:af:94:57:fc:5f:84:a6:e2:2c:1f:e6:b9:2e:
8b:50:c2:e4:3d:a7:47:a9:b5:04:bd:3d:cd:a9:a6:
97:9d:b2:0c:32:48:61:94:70:ff:82:fa:88:ac:ae:
6d:1c:84:c6:04:b3:db:d9:34:f8:e4:15:dd:75:71:
e4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:60:87:47:2E:17:D8:54:D3:91:D1:98:4C:1B:83:3D:69:3B:21:BD
X509v3 Authority Key Identifier:
keyid:6D:CC:69:50:8E:F4:E6:70:EF:BC:5C:69:20:3D:6B:12:0F:A9:39:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DCC69508EF4E670EFBC5C69203D6B120FA9392F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2073ace-a691-4863-9c1c-59b2db9cb463/0/3130332e3135322e3131382e302f32342d3234203d3e20313430343433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.152.118.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d4:95:5e:10:e7:b6:39:3d:db:26:8a:1b:ec:84:44:f1:de:
10:9a:d2:ce:df:96:a1:69:a7:e5:8e:8b:ae:c1:d0:b4:06:f9:
58:7a:d3:5b:5f:01:c8:5a:23:d8:be:e5:e4:f6:3b:7d:bd:e7:
40:16:df:be:05:f1:72:d7:9d:2a:c5:16:d8:fd:bb:2f:7f:ed:
36:89:7d:bc:ef:4f:8b:c2:75:57:32:96:7b:c8:86:83:e9:12:
9a:88:6b:aa:dc:46:1a:fd:e6:62:aa:1c:22:c8:9b:97:c9:18:
ae:9a:37:d3:7c:a7:8b:85:49:e7:72:ac:af:0d:14:dc:20:c3:
0e:a6:f8:a4:e5:23:ac:4a:a5:6c:42:35:d7:bf:2b:cc:c4:be:
2f:37:03:3d:bc:e1:1e:51:30:0c:e9:7b:31:03:1d:dc:a1:cf:
95:5a:79:48:5a:c6:5e:e4:cb:d5:90:24:cf:8c:74:e2:1e:78:
91:3d:2e:b8:0d:05:d9:ba:19:35:66:20:05:e9:cb:0c:92:d5:
9d:73:7e:51:e7:5c:bf:d1:9a:aa:db:0c:2f:c5:ed:a7:b5:ee:
8e:63:36:c1:b4:c9:99:4b:63:84:b5:da:28:05:26:76:6c:6a:
6d:c5:c7:02:46:b5:0e:70:01:62:3a:fa:63:34:71:fd:1b:33:
10:76:86:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:19:27 2025 by rpki-client