Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134332e302f32342d3234203d3e20313431343631.roa
File: 3130332e3131312e3134332e302f32342d3234203d3e20313431343631.roa (raw, json)
Hash identifier: VLiqZK5/RUS6hOrKh5dQ9m9sABBe0DKT5N2DBOt5pfM=
Subject key identifier: C2:F0:65:0E:4C:50:CA:48:FE:A9:A4:43:98:F9:41:48:EE:F3:D1:3B
Certificate issuer: /CN=EBA04070CA27E646C332039E07557734C6732ED2
Certificate serial: 1941317F4431D0DD2D003BA48CF0D87718435056
Authority key identifier: EB:A0:40:70:CA:27:E6:46:C3:32:03:9E:07:55:77:34:C6:73:2E:D2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBA04070CA27E646C332039E07557734C6732ED2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134332e302f32342d3234203d3e20313431343631.roa
Signing time: Sun 22 Sep 2024 02:00:01 +0000
ROA not before: Sun 22 Sep 2024 01:55:01 +0000
ROA not after: Sun 21 Sep 2025 02:00:01 +0000
asID: 141461
IP address blocks: 103.111.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:41:31:7f:44:31:d0:dd:2d:00:3b:a4:8c:f0:d8:77:18:43:50:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EBA04070CA27E646C332039E07557734C6732ED2
Validity
Not Before: Sep 22 01:55:01 2024 GMT
Not After : Sep 21 02:00:01 2025 GMT
Subject: CN=C2F0650E4C50CA48FEA9A44398F94148EEF3D13B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:78:de:ad:51:74:95:ee:44:bf:21:4c:79:d5:
bf:2f:75:63:60:e6:6d:ea:e0:f7:63:bb:c3:b1:3e:
e6:98:ea:d3:3e:78:30:78:58:7e:ec:6f:38:33:06:
3a:e7:35:e7:3f:c6:7c:f0:bf:ef:6d:f4:6d:9e:29:
28:8e:b8:83:3f:a6:9a:b9:fb:90:a5:6d:e9:46:f5:
1d:a2:99:5b:bd:06:03:2a:69:e6:50:7c:4a:ab:d0:
2a:55:11:38:57:d9:5d:22:c7:e3:a5:4f:37:9e:00:
52:f6:92:c0:42:6a:d6:dc:b9:1e:64:a2:47:fb:c9:
62:4f:2e:c2:28:c1:1a:0c:49:ee:57:83:e6:3d:15:
43:10:ee:c5:35:eb:4d:bb:d0:26:42:5c:0f:53:e5:
80:9e:3e:38:b8:60:59:bf:f1:9d:bb:10:95:25:83:
a7:fc:c4:19:f9:71:b0:8e:17:52:92:bc:c7:87:03:
3b:9a:a0:d8:e5:13:df:49:8f:18:98:4b:41:9d:17:
23:e5:ae:2c:9c:b3:a0:18:bd:db:74:9b:bb:80:91:
83:4d:51:59:f0:e6:41:df:33:d5:d8:a3:7c:3b:37:
e0:64:e5:fd:1e:96:21:8d:c1:03:09:55:af:35:2d:
c4:11:c0:04:28:3b:f2:e6:74:5a:61:f1:2f:7c:67:
5f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F0:65:0E:4C:50:CA:48:FE:A9:A4:43:98:F9:41:48:EE:F3:D1:3B
X509v3 Authority Key Identifier:
keyid:EB:A0:40:70:CA:27:E6:46:C3:32:03:9E:07:55:77:34:C6:73:2E:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/EBA04070CA27E646C332039E07557734C6732ED2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBA04070CA27E646C332039E07557734C6732ED2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134332e302f32342d3234203d3e20313431343631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.111.143.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:f4:da:3c:93:df:75:b1:37:07:1b:17:e4:17:3d:4a:67:0a:
ef:f8:bb:48:ec:e1:97:f9:2b:5f:2a:47:bb:75:b7:d2:93:72:
cb:9d:1c:29:54:20:ca:fb:84:35:b5:78:a2:f6:6f:ae:01:be:
f1:c2:11:c7:8b:17:39:3e:51:b6:7c:a2:9a:7a:00:7e:81:66:
e0:5b:a1:03:0f:de:14:4b:c2:9e:e3:83:a7:a6:e3:ff:12:b1:
f5:b3:55:c3:f8:99:9a:48:46:8d:63:30:5c:85:15:4b:f6:3a:
95:25:49:30:82:04:d8:6d:98:02:ae:95:7d:f5:25:96:d5:a8:
fe:db:d9:c9:0a:ff:36:96:6c:96:31:b7:83:61:b7:0c:af:cb:
e9:80:4a:ab:b6:8f:78:9d:14:16:8c:1b:96:08:0a:9f:01:64:
01:2b:25:5a:0c:15:40:74:71:27:bf:8d:95:db:d5:e5:cb:a3:
80:76:cb:2b:13:ac:27:e3:2c:e2:20:15:c5:25:1b:ca:6b:f9:
1d:64:43:df:87:cc:97:39:38:e9:33:d1:93:1a:44:58:d9:e0:
1b:a0:88:08:ae:7e:3b:6e:c1:5c:47:09:52:86:fc:12:a4:75:
03:d8:19:97:33:16:4e:0a:70:9d:22:16:f4:b3:ed:ea:d5:80:
46:10:c0:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:12:16 2025 by rpki-client