Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa
File: 3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa (raw, json)
Hash identifier: NUPlEw08Zx7YoeB4OqO+Ox+lwPcpmhcKsBziz0RYTAM=
Subject key identifier: 96:1A:86:F1:D2:5A:AA:F1:F5:DC:E3:45:9A:A3:ED:1F:9A:E8:65:07
Certificate issuer: /CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307
Certificate serial: 6DB2D2741CEA6340F9775D56DCBBDD1FE87A98F3
Authority key identifier: BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa
Signing time: Wed 15 May 2024 09:00:01 +0000
ROA not before: Wed 15 May 2024 08:55:01 +0000
ROA not after: Wed 14 May 2025 09:00:01 +0000
asID: 149746
IP address blocks: 103.189.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:b2:d2:74:1c:ea:63:40:f9:77:5d:56:dc:bb:dd:1f:e8:7a:98:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307
Validity
Not Before: May 15 08:55:01 2024 GMT
Not After : May 14 09:00:01 2025 GMT
Subject: CN=961A86F1D25AAAF1F5DCE3459AA3ED1F9AE86507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c4:d0:58:83:b5:d7:09:c9:1a:3a:25:09:80:
86:fd:a5:1b:ff:4e:2e:cc:a6:d2:be:f1:bd:d8:34:
39:5a:dd:25:a3:e6:5e:4e:b4:81:4c:c0:35:31:41:
50:46:17:5e:74:a7:0c:01:ff:d2:7e:78:08:41:4d:
d6:5a:d6:6c:bc:31:22:ed:29:2d:5a:f5:98:ed:e2:
26:6c:6a:31:62:aa:81:6b:76:cc:a6:64:51:70:46:
36:37:51:aa:b5:f7:0d:01:d8:ac:9c:3f:e4:3d:fc:
24:ea:b8:14:84:c1:80:6e:4f:e1:53:73:e8:e1:64:
30:a5:ee:11:d5:82:80:92:3d:49:16:6f:e4:31:73:
b1:32:71:49:7e:fb:cb:d1:c4:52:3f:c5:46:84:6e:
a0:5d:0e:2f:83:57:36:43:c8:e9:dc:0a:50:dc:e3:
52:63:f6:9d:37:e2:25:f2:b4:9a:c9:ed:aa:e7:be:
ef:f1:55:94:0d:ea:12:d7:08:2f:49:97:a5:1e:ca:
00:f3:67:4f:7d:32:e5:a3:fa:a4:2e:38:df:06:c7:
cd:85:0a:60:ff:12:28:03:8d:82:a5:77:21:35:4a:
ff:1b:75:1a:94:f3:28:33:98:8a:d6:7c:44:68:02:
80:67:90:b0:a3:af:46:90:2d:ac:fc:c0:7b:c1:fa:
f8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:1A:86:F1:D2:5A:AA:F1:F5:DC:E3:45:9A:A3:ED:1F:9A:E8:65:07
X509v3 Authority Key Identifier:
keyid:BF:38:DD:D5:DA:2A:BF:08:EB:1D:D8:D8:7B:56:6F:36:EE:73:F3:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF38DDD5DA2ABF08EB1DD8D87B566F36EE73F307.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0234ef1d-734d-4c71-8ba7-d31e168b632c/0/3130332e3138392e36332e302f32342d3234203d3e20313439373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.189.63.0/24
Signature Algorithm: sha256WithRSAEncryption
88:2e:c1:26:bd:3c:3a:f1:f7:8f:3a:c5:ea:2d:cb:b2:5d:40:
d3:62:24:15:f5:d9:15:82:4d:30:eb:89:5b:17:0c:69:16:c9:
c9:e7:53:10:c4:50:dc:ec:4c:4a:7a:e6:a0:6c:4e:33:bb:1e:
5b:6b:25:ba:db:86:9b:8e:84:89:99:86:6b:8d:d0:36:2b:f6:
6f:c2:45:e2:68:56:49:66:60:84:62:ae:77:dc:ed:e4:f4:e6:
7a:cc:e2:06:05:72:09:f3:77:ba:17:87:7b:93:45:34:f6:8e:
ed:94:89:a1:4a:3b:a4:05:a3:0e:6f:00:d8:61:ef:98:1f:42:
cd:55:49:7f:a6:d1:87:6a:cd:e3:25:9a:8d:fc:de:41:29:91:
3d:ab:18:28:4e:36:c5:cc:3b:30:38:0f:8a:e5:cc:0f:13:25:
86:72:15:18:a6:a4:b2:c2:6d:df:07:5a:1c:4c:b3:4e:3a:b9:
1a:b8:e5:67:6c:6d:52:5a:1a:9c:bb:36:22:01:47:01:b6:c4:
1d:fc:5d:ac:4a:42:e9:09:0a:72:54:f5:5d:a6:b5:66:c2:8d:
45:13:1f:29:a8:36:ee:ca:47:ef:e0:c0:7f:52:9b:6d:95:f2:
5a:56:58:18:30:39:85:55:b4:e8:c4:d4:e2:95:66:d8:04:57:
f8:f4:f8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:03:02 2025 by rpki-client