Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32332d3234203d3e203436303233.roa
File: 3130332e32342e3130342e302f32332d3234203d3e203436303233.roa (raw, json)
Hash identifier: RgROg0bd6gQr67p7nLCZA2hX91iNe++oIgyboKMiPUw=
Subject key identifier: 40:53:39:B7:CF:67:E5:1F:9C:8F:47:B3:53:67:66:42:D2:D4:A2:F6
Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695
Certificate serial: 375FE320ACFCE9F4792592E8778C2DD97638B046
Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32332d3234203d3e203436303233.roa
Signing time: Tue 12 Nov 2024 12:32:30 +0000
ROA not before: Tue 12 Nov 2024 12:27:30 +0000
ROA not after: Tue 11 Nov 2025 12:32:30 +0000
asID: 46023
IP address blocks: 103.24.104.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:5f:e3:20:ac:fc:e9:f4:79:25:92:e8:77:8c:2d:d9:76:38:b0:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695
Validity
Not Before: Nov 12 12:27:30 2024 GMT
Not After : Nov 11 12:32:30 2025 GMT
Subject: CN=405339B7CF67E51F9C8F47B353676642D2D4A2F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b9:d5:6e:3c:2b:03:a5:06:3f:3c:38:25:37:
2f:31:b7:bc:44:af:d9:2d:e4:08:c7:02:bf:fb:b3:
b7:18:10:3e:17:6b:d3:ff:51:7d:4d:6c:2b:97:c7:
24:d9:0f:41:05:7b:a0:87:5d:08:56:b5:9e:ab:67:
c2:b6:53:62:61:a4:0f:a9:6e:a8:ce:d8:00:28:63:
f7:80:29:9a:b2:a8:6c:fd:ba:b3:d0:c2:b8:fb:75:
8a:1d:28:ea:a3:ba:23:1d:6a:5c:9d:78:10:30:ab:
34:2c:8c:ba:92:7a:19:58:7c:0b:9c:98:37:82:82:
26:bb:04:04:f8:65:2f:84:d3:16:2c:c9:bc:0f:83:
7e:ba:8f:56:a1:10:43:5c:92:4a:32:c9:1e:ef:62:
4a:fc:b9:74:a2:66:7a:10:0d:f7:e9:ae:9d:20:34:
d5:5f:9c:ca:30:da:24:c7:de:5d:8f:16:ea:3a:da:
b4:74:d5:8d:43:e3:bc:b7:88:a2:45:a3:aa:3b:a3:
61:8e:f9:86:ba:3f:8e:7f:c9:20:92:d1:4f:e5:b2:
15:fb:52:ad:b7:36:44:44:a8:71:73:75:e4:fd:95:
ce:cf:3f:30:86:83:85:33:2f:93:b4:ea:ba:fe:1b:
7e:05:a2:c9:55:4d:56:1b:f4:db:25:0e:99:30:35:
f1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:53:39:B7:CF:67:E5:1F:9C:8F:47:B3:53:67:66:42:D2:D4:A2:F6
X509v3 Authority Key Identifier:
keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130342e302f32332d3234203d3e203436303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.24.104.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:27:38:6f:e7:01:f9:76:18:7f:f7:05:0c:70:d7:fe:17:94:
d5:87:fe:90:33:7f:6f:0e:25:1c:9e:b9:02:65:dd:ce:4a:f5:
74:94:23:c7:dc:13:ed:44:34:7a:7e:8c:03:59:5b:84:17:72:
79:b9:c1:c0:1d:a4:b4:cd:07:47:40:48:4f:9a:4d:77:97:77:
60:9a:96:a7:0e:0b:85:cd:cc:01:a5:1a:64:8e:c5:cc:59:5f:
1b:da:fd:da:ef:e8:0e:ab:a9:61:6f:0f:5f:17:00:e8:93:2b:
c5:dc:fc:52:c2:7c:33:1a:37:fd:0c:c5:28:d2:86:3f:a9:1b:
02:89:5a:6f:9d:cb:ae:b9:e1:2f:52:8f:98:c2:5a:26:82:f6:
0c:04:63:1b:91:25:a4:cf:b0:7b:40:16:b8:fa:ff:6a:c4:6a:
0c:4b:21:2b:b9:b1:55:34:c3:f6:a5:c4:bf:d1:64:2d:c8:65:
e5:c4:ac:21:a4:9d:6e:46:24:fb:76:07:cd:2e:89:83:c6:7c:
d1:5f:d9:28:02:86:a1:65:a9:8f:e6:23:e4:1e:96:67:01:ef:
50:44:dd:b1:1d:54:9c:be:91:09:cd:53:6f:aa:29:99:1d:fc:
72:ca:35:d4:a6:b4:e6:9f:f8:03:d0:8d:79:51:8c:64:96:20:
ab:af:92:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:18:10 2025 by rpki-client