Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa
File: 3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa (raw, json)
Hash identifier: 9EQwN+mEUoStnc1hS+Hz3JRfkGKJjf8PG+0UqrXEwKQ=
Subject key identifier: 4B:85:77:41:EA:D1:16:3C:91:1D:9B:78:D2:E8:41:48:F4:A3:AB:68
Certificate issuer: /CN=F9B3A4FD209FB6DF8BDC168B15C872083A3495A2
Certificate serial: 2EF3195A5AC02C538A692C194702BF62FF275D05
Authority key identifier: F9:B3:A4:FD:20:9F:B6:DF:8B:DC:16:8B:15:C8:72:08:3A:34:95:A2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa
Signing time: Sun 05 Jan 2025 06:00:00 +0000
ROA not before: Sun 05 Jan 2025 05:55:00 +0000
ROA not after: Sun 04 Jan 2026 06:00:00 +0000
asID: 58369
IP address blocks: 103.106.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:f3:19:5a:5a:c0:2c:53:8a:69:2c:19:47:02:bf:62:ff:27:5d:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F9B3A4FD209FB6DF8BDC168B15C872083A3495A2
Validity
Not Before: Jan 5 05:55:00 2025 GMT
Not After : Jan 4 06:00:00 2026 GMT
Subject: CN=4B857741EAD1163C911D9B78D2E84148F4A3AB68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:49:9b:0b:0c:49:76:cc:93:54:f9:2b:e3:5d:
11:6f:db:bc:ba:63:86:30:4c:d3:03:d8:05:0b:69:
a2:58:31:c0:c6:c5:6a:91:ff:93:bb:fb:6c:15:8a:
c2:0d:84:45:17:87:46:6f:ac:ec:41:e7:d1:a4:01:
5e:8d:f9:8b:ea:9f:d8:82:e0:bc:4d:f4:52:08:6c:
3e:c4:a7:24:a2:57:22:81:c3:d5:8a:e6:a7:ab:34:
bf:6e:a1:e2:bb:14:47:3c:56:de:ab:6b:36:68:35:
3b:f7:48:77:eb:50:26:d9:8c:f5:d8:0a:8e:af:5e:
49:20:27:d0:5f:b1:95:5c:fb:85:c2:13:e8:e2:80:
3a:be:47:d7:52:1d:88:93:1c:39:c4:24:a8:b2:56:
e3:2c:f0:7b:94:d0:bb:17:df:2d:b7:47:c6:ff:fa:
80:7b:ac:06:ab:34:18:fb:9c:2e:33:f1:26:19:cf:
67:d5:27:4f:de:0d:40:b8:51:ec:92:f8:4e:9e:71:
6a:58:b7:7c:fe:5f:c0:b6:41:7a:06:bf:5e:6c:84:
89:10:08:32:c1:f4:95:d3:be:65:57:ae:7f:64:84:
f4:f2:17:87:60:ae:af:37:ed:eb:4a:0e:7d:0c:2c:
83:c4:3e:ae:39:b8:c3:04:36:b9:5c:0a:74:88:d4:
ac:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:85:77:41:EA:D1:16:3C:91:1D:9B:78:D2:E8:41:48:F4:A3:AB:68
X509v3 Authority Key Identifier:
keyid:F9:B3:A4:FD:20:9F:B6:DF:8B:DC:16:8B:15:C8:72:08:3A:34:95:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9B3A4FD209FB6DF8BDC168B15C872083A3495A2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/11791b73-bb08-4a83-a197-b6360f1d47de/0/3130332e3130362e3134352e302f32342d3234203d3e203538333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.106.145.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ca:3f:80:91:22:47:af:81:1c:c1:96:e5:02:12:99:5c:14:
2c:3e:04:db:7c:de:d1:17:a9:a4:2f:3f:d4:e3:4d:ab:c4:99:
e8:f0:c2:18:63:35:9f:2e:2c:79:99:44:52:9a:3d:b9:99:2e:
30:5a:6b:5a:01:af:25:9e:ee:c7:d7:32:f2:9a:7f:24:2e:37:
25:98:b5:1b:85:6b:c9:86:68:2f:e9:7c:7d:c4:d6:09:55:09:
1f:7a:3a:4f:39:f2:47:1e:3c:4a:75:df:d7:53:79:c8:ef:eb:
6b:54:b6:56:d3:e1:21:f3:a7:2d:df:9c:b5:4e:14:e5:9e:63:
79:4b:b3:d7:84:bd:86:a8:a2:9e:cc:77:e3:ba:b0:4f:9a:4a:
29:20:6e:69:c0:b4:4c:14:95:dc:02:ae:fb:c5:01:0e:70:7b:
2f:be:86:e0:88:a4:d6:9d:a7:43:8b:3c:bb:96:40:38:f5:d1:
38:f2:f3:24:0a:98:84:7f:0e:84:f6:84:31:7b:db:59:f1:c1:
98:03:12:24:87:d0:79:57:cf:28:bb:2e:bb:01:51:f1:a3:ab:
75:41:8f:15:3d:c4:49:7c:41:d1:ab:90:1e:a5:c6:04:ae:b6:
4a:84:25:9b:b0:a9:ac:e8:56:c4:b8:ae:e3:fa:e6:6e:fa:37:
f7:b5:57:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:13:13 2025 by rpki-client