Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/3130332e3134312e3235352e302f32342d3234203d3e20313331373639.roa
File: 3130332e3134312e3235352e302f32342d3234203d3e20313331373639.roa (raw, json)
Hash identifier: UaQ/mjwTv+b6NTjX6YdQwkzBFAEMayy8kKSUdpdv01Q=
Subject key identifier: B1:E0:BF:FF:A6:5B:ED:7D:1A:C1:61:C2:94:CA:26:CD:86:75:35:06
Certificate issuer: /CN=B1015FDC3ABDC9EC594F6E8A82A116F769CA5665
Certificate serial: 7E281D6CAC4B44C3A1052BD5AF16C110DC54E716
Authority key identifier: B1:01:5F:DC:3A:BD:C9:EC:59:4F:6E:8A:82:A1:16:F7:69:CA:56:65
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/3130332e3134312e3235352e302f32342d3234203d3e20313331373639.roa
Signing time: Mon 03 Feb 2025 09:02:22 +0000
ROA not before: Mon 03 Feb 2025 08:57:22 +0000
ROA not after: Mon 02 Feb 2026 09:02:22 +0000
asID: 131769
IP address blocks: 103.141.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:28:1d:6c:ac:4b:44:c3:a1:05:2b:d5:af:16:c1:10:dc:54:e7:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B1015FDC3ABDC9EC594F6E8A82A116F769CA5665
Validity
Not Before: Feb 3 08:57:22 2025 GMT
Not After : Feb 2 09:02:22 2026 GMT
Subject: CN=B1E0BFFFA65BED7D1AC161C294CA26CD86753506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:97:45:b6:51:e6:b9:c7:6a:39:41:b0:78:1b:
c5:8a:ce:65:a6:fa:15:b5:1b:52:d5:09:e1:67:43:
5e:92:8a:09:4c:af:c4:3f:1f:2d:b8:4b:34:17:08:
a8:9f:80:7e:b3:e6:4d:d2:85:1c:d0:df:e7:d5:a4:
e1:8e:8a:cb:f6:5c:65:a4:ea:ff:96:bc:6e:cc:cc:
f2:d5:64:59:5b:58:e4:6b:c3:45:7b:d8:0d:c7:fd:
f0:32:c7:67:da:28:7a:2b:45:62:9b:71:3f:a2:d6:
73:be:0b:69:3b:5a:05:cf:4e:0c:12:f7:5d:87:84:
68:6d:75:91:07:12:a5:4e:98:96:67:35:64:29:7b:
10:56:53:52:88:d4:21:10:9f:e0:e5:49:ae:a7:60:
d1:e4:37:65:0d:dd:66:59:d6:d7:75:2e:cc:04:2b:
fd:57:ec:1a:6a:2e:af:15:04:4d:61:e7:fc:63:5d:
4f:ab:30:55:c8:d2:e7:e2:a8:c2:13:24:75:b3:8f:
07:c4:d8:0b:c6:31:65:fb:b5:8d:f9:50:89:f8:ff:
28:41:9c:8a:c5:e1:b0:91:12:9c:4d:e8:71:04:2a:
5d:01:dc:8e:1d:a2:a8:99:f1:9b:c9:eb:47:8a:c2:
f3:14:a4:c3:bf:e1:51:04:9f:ac:75:80:bd:57:22:
28:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E0:BF:FF:A6:5B:ED:7D:1A:C1:61:C2:94:CA:26:CD:86:75:35:06
X509v3 Authority Key Identifier:
keyid:B1:01:5F:DC:3A:BD:C9:EC:59:4F:6E:8A:82:A1:16:F7:69:CA:56:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B1015FDC3ABDC9EC594F6E8A82A116F769CA5665.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ed850a8-abb9-4482-a5bc-54d79eb7f323/0/3130332e3134312e3235352e302f32342d3234203d3e20313331373639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.141.255.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:c1:f9:2d:c0:2d:16:a0:09:33:cc:ca:ed:c9:23:4e:d6:52:
89:dc:66:bc:23:8e:9f:83:6e:10:2b:ad:b0:c3:00:77:07:bd:
4e:ea:dc:10:6f:2e:d4:51:a9:ab:d1:d6:19:7d:8c:63:d8:84:
d3:8b:e2:c5:75:c5:3d:20:84:a1:f0:b7:d9:81:e9:80:9e:e0:
47:eb:b6:14:97:71:41:f8:59:5e:ef:2d:a6:a4:06:47:60:78:
6a:6e:6d:f5:0c:42:f8:0d:66:f7:88:31:38:04:3c:35:03:72:
b0:e6:eb:11:03:b5:bb:e8:48:20:3a:c8:47:4a:1a:35:56:6e:
36:80:5f:8c:15:17:88:f0:34:fa:3a:44:a2:50:5f:12:1f:e4:
69:10:7f:ca:a4:ed:fc:f5:16:f8:5e:b4:20:9d:29:26:2b:f5:
a8:3f:36:6b:fa:73:e9:47:57:f6:fc:fa:41:54:ee:15:02:cd:
3a:49:06:7f:ea:5c:95:9b:5d:04:07:cf:22:e2:91:d2:d7:5a:
20:62:62:3a:cb:eb:53:1c:02:8f:1a:9b:46:ab:59:5b:11:4c:
36:6b:31:8c:24:0d:ce:15:a3:9f:1e:63:19:45:bc:1c:ac:a2:
c9:fb:1c:5c:57:04:95:32:8c:bd:11:c8:e1:f1:42:93:33:b7:
07:7e:12:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:04:56 2025 by rpki-client