Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/060ce733-77f4-4e1d-b5ec-61ede4da074d/0/3130332e3232362e34382e302f32342d3234203d3e203539323733.roa
File: 3130332e3232362e34382e302f32342d3234203d3e203539323733.roa (raw, json)
Hash identifier: 4nF39wRALqFShI2k467oN5qmtzcgwppZaMcdszyLsyY=
Subject key identifier: 6F:B7:09:65:2D:02:81:40:B5:DF:B4:A7:BD:53:65:3C:E3:15:E9:C1
Certificate issuer: /CN=BE2A9EDC8C556D4DD7846892612E0BED3FFFB52B
Certificate serial: 76D32A448DA3EE0EB10181B9689C8F5EE2C00822
Authority key identifier: BE:2A:9E:DC:8C:55:6D:4D:D7:84:68:92:61:2E:0B:ED:3F:FF:B5:2B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE2A9EDC8C556D4DD7846892612E0BED3FFFB52B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/060ce733-77f4-4e1d-b5ec-61ede4da074d/0/3130332e3232362e34382e302f32342d3234203d3e203539323733.roa
Signing time: Wed 03 Jul 2024 19:00:00 +0000
ROA not before: Wed 03 Jul 2024 18:55:00 +0000
ROA not after: Wed 02 Jul 2025 19:00:00 +0000
asID: 59273
IP address blocks: 103.226.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:d3:2a:44:8d:a3:ee:0e:b1:01:81:b9:68:9c:8f:5e:e2:c0:08:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE2A9EDC8C556D4DD7846892612E0BED3FFFB52B
Validity
Not Before: Jul 3 18:55:00 2024 GMT
Not After : Jul 2 19:00:00 2025 GMT
Subject: CN=6FB709652D028140B5DFB4A7BD53653CE315E9C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d6:89:bc:a8:31:fb:dd:d0:63:bc:a3:1a:e6:
e8:39:f0:78:8e:f3:01:d5:f7:a3:e8:c3:17:36:5d:
70:d2:e0:04:a4:0f:7e:52:17:1f:5e:f8:84:83:40:
37:58:ab:dc:a2:ef:55:35:73:22:99:ff:c9:ec:b8:
c6:a0:a1:54:ff:fb:fd:f3:29:9e:5d:32:a1:7a:20:
71:d4:e7:e8:14:33:2c:2b:c9:db:ef:01:f5:4a:9d:
ce:3b:11:ac:80:5e:d3:a3:de:52:ec:5e:ed:9e:bc:
f4:d6:75:22:94:d8:44:2b:05:1a:bf:c4:15:4d:af:
e4:11:18:b1:96:a1:8b:9a:15:44:91:e6:96:db:0b:
e4:67:41:2f:2e:06:ca:95:34:09:28:2f:33:59:73:
8d:c3:3c:87:51:8d:57:f9:64:60:fc:dd:c0:ff:e8:
a8:ad:58:9f:aa:f2:5c:26:ed:e3:94:dd:7e:bd:1e:
86:a7:70:ad:ff:7f:20:1c:e4:0c:99:43:f7:7b:5e:
f3:08:d6:1f:92:23:8d:91:41:69:0d:b1:9b:ad:52:
38:f8:e0:1f:08:09:2e:83:7f:ad:f3:38:c3:67:35:
26:14:78:30:d0:3e:80:1f:14:14:24:ca:1b:4a:69:
51:39:cd:32:aa:0f:cd:f0:0a:d2:57:92:16:07:3d:
44:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B7:09:65:2D:02:81:40:B5:DF:B4:A7:BD:53:65:3C:E3:15:E9:C1
X509v3 Authority Key Identifier:
keyid:BE:2A:9E:DC:8C:55:6D:4D:D7:84:68:92:61:2E:0B:ED:3F:FF:B5:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/060ce733-77f4-4e1d-b5ec-61ede4da074d/0/BE2A9EDC8C556D4DD7846892612E0BED3FFFB52B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE2A9EDC8C556D4DD7846892612E0BED3FFFB52B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/060ce733-77f4-4e1d-b5ec-61ede4da074d/0/3130332e3232362e34382e302f32342d3234203d3e203539323733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.226.48.0/24
Signature Algorithm: sha256WithRSAEncryption
68:94:3c:aa:ef:f9:65:53:ef:a8:f0:a2:00:ad:46:ea:3a:82:
50:81:1d:b8:68:e9:73:39:71:77:ab:6b:07:51:ba:bd:cc:43:
a8:ef:bc:46:3c:c5:3f:49:39:9f:19:bb:b8:b2:c9:ae:27:99:
35:a1:4b:34:00:7b:3e:87:dc:2e:0c:cc:5f:88:82:23:e3:d4:
10:d2:56:b6:4e:b4:5e:c8:05:03:28:b0:aa:35:7e:e6:31:c5:
c7:56:62:d1:d9:54:5e:af:10:a6:fd:01:2c:d4:97:7e:38:33:
50:63:56:85:63:d5:ee:fa:67:bb:a7:a0:51:11:c8:55:3d:99:
55:f3:b7:20:ec:da:15:b0:a4:32:84:37:f7:bb:db:43:ad:75:
af:76:b0:cf:30:fe:cb:c1:da:94:01:c0:72:b3:75:b8:55:cc:
02:99:a7:73:ab:c0:5c:40:95:72:26:27:a4:77:a1:9a:a9:22:
44:26:29:18:8b:00:92:26:6a:85:d0:be:ea:ea:7f:15:7c:fa:
5b:d3:b1:ad:35:d0:84:04:15:75:c4:d9:62:2d:de:36:33:65:
aa:be:f3:8e:28:34:9e:d9:32:61:c5:76:b4:42:50:72:0b:a1:
02:62:bd:2c:45:0e:fd:5c:36:c5:4e:cd:ac:b5:d4:9c:1f:30:
bd:27:33:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:10:06 2025 by rpki-client