Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa
File: 3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa (raw, json)
Hash identifier: CpzM+132Mdd3sT2ikka6T6ZIOzo9cPs9M0vsLY9AeJk=
Subject key identifier: 7B:CC:E4:15:1A:BE:EB:2A:E6:3B:DD:8D:3C:5A:1C:4F:90:C2:B1:7C
Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003
Certificate serial: 5ACBF45CA66EB254873870989E7325963A5BE920
Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa
Signing time: Fri 26 Jul 2024 01:00:00 +0000
ROA not before: Fri 26 Jul 2024 00:55:00 +0000
ROA not after: Fri 25 Jul 2025 01:00:00 +0000
asID: 55701
IP address blocks: 103.112.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:cb:f4:5c:a6:6e:b2:54:87:38:70:98:9e:73:25:96:3a:5b:e9:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003
Validity
Not Before: Jul 26 00:55:00 2024 GMT
Not After : Jul 25 01:00:00 2025 GMT
Subject: CN=7BCCE4151ABEEB2AE63BDD8D3C5A1C4F90C2B17C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ad:c6:1b:15:ff:91:7b:07:a3:ea:e2:c6:fd:
4d:77:5c:40:25:97:e5:c5:a2:7f:bc:08:de:5b:7b:
87:b7:f8:3e:c5:08:e1:a5:e5:fd:70:f4:25:77:7f:
c4:1c:1e:e1:b5:50:62:13:5e:7a:90:c9:d3:e2:a8:
ea:77:71:2b:ba:39:ea:87:5f:b2:82:24:df:3e:bb:
01:a9:40:97:b2:45:a7:dc:94:66:e1:0b:10:d6:ad:
17:37:db:25:cb:0c:40:02:e6:c8:3a:2f:95:2f:05:
0f:c7:fa:88:8f:58:f5:a2:e8:fa:d0:62:6a:6e:df:
6c:d0:54:14:c0:7a:b0:37:a6:c7:0a:45:23:07:c2:
c0:91:a9:42:eb:e5:e7:a5:46:7c:73:02:ff:cb:ac:
b7:d9:a7:ae:65:dd:7a:21:9a:39:24:0d:e6:a8:36:
b5:11:c5:0d:cd:86:dc:58:05:45:12:ea:57:7f:55:
33:a5:79:9e:d3:ae:c8:42:fa:10:fe:57:12:a5:2d:
7f:da:cd:ba:44:1f:0a:f6:af:00:47:0b:84:d4:33:
e4:30:5d:0f:35:bf:b4:df:aa:2a:e1:68:49:ec:17:
3a:7e:c7:cd:b6:5c:0a:70:d0:0b:37:89:94:b4:5c:
42:74:8a:10:cb:a2:31:80:be:80:e5:0f:d7:e5:6f:
af:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:CC:E4:15:1A:BE:EB:2A:E6:3B:DD:8D:3C:5A:1C:4F:90:C2:B1:7C
X509v3 Authority Key Identifier:
keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.112.139.0/24
Signature Algorithm: sha256WithRSAEncryption
19:93:68:d4:b6:a4:9c:44:55:41:08:2c:04:2c:22:8e:3e:6c:
09:b8:9a:36:f2:cb:0a:b8:f4:27:96:a6:53:1f:0d:26:a7:7b:
73:df:15:1f:a3:e1:73:49:a5:7c:f0:21:e4:9e:a3:1d:54:e3:
73:eb:6e:c9:d9:51:bf:eb:50:d8:94:14:d1:41:13:25:2d:7e:
ba:98:8d:5d:00:1a:9f:4a:6f:c5:99:f7:1a:79:34:0c:33:40:
a7:0f:74:aa:7d:66:eb:86:67:70:ea:c1:f7:50:70:9a:f9:66:
7d:2e:e5:5d:9b:9e:ea:55:37:b8:9e:39:52:4e:49:76:0d:d2:
ab:44:2c:1e:b6:e8:87:ae:d4:7b:4c:86:c8:af:2d:ab:36:44:
73:47:22:a8:87:c2:53:31:db:3d:da:2c:0c:84:62:59:5b:01:
8a:bd:fe:49:cc:38:20:ff:3e:31:3d:22:4e:78:30:8e:f5:7a:
3a:03:53:e1:e2:60:46:69:6c:e3:53:8b:be:ff:97:27:50:68:
2c:6d:85:3a:db:80:49:8e:9a:92:15:79:0f:13:4b:54:cf:84:
05:5a:62:30:06:51:f8:00:ca:cd:e2:d1:42:32:ab:57:20:9e:
4a:e1:cf:a4:80:1e:b5:50:eb:92:95:5d:c9:4c:cc:9c:b8:9e:
7b:00:d3:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:48:04 2025 by rpki-client