Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa
File: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (raw, json)
Hash identifier: gqvPU7d/FWpbqi1DG6lncmDMGCYNjcCJLVj/OZXsets=
Subject key identifier: 71:2A:F1:33:74:AF:37:45:D4:58:B3:70:F2:78:7F:7D:83:0B:3D:39
Certificate issuer: /CN=53576544C2D7C29DEC5245A4A81C19686D1160AA
Certificate serial: 3170FBC9607F47432321C7240B886F5B806D00A6
Authority key identifier: 53:57:65:44:C2:D7:C2:9D:EC:52:45:A4:A8:1C:19:68:6D:11:60:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53576544C2D7C29DEC5245A4A81C19686D1160AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa
Signing time: Sun 18 Feb 2024 14:29:21 +0000
ROA not before: Sun 18 Feb 2024 14:24:21 +0000
ROA not after: Sun 16 Feb 2025 14:29:21 +0000
asID: 151575
IP address blocks: 103.99.136.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:70:fb:c9:60:7f:47:43:23:21:c7:24:0b:88:6f:5b:80:6d:00:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53576544C2D7C29DEC5245A4A81C19686D1160AA
Validity
Not Before: Feb 18 14:24:21 2024 GMT
Not After : Feb 16 14:29:21 2025 GMT
Subject: CN=712AF13374AF3745D458B370F2787F7D830B3D39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cd:eb:a6:cb:ae:c0:f3:30:7b:0f:62:2c:19:
9c:0b:c2:07:c2:c3:4f:b2:87:ef:66:cb:d5:ca:0f:
e3:d6:e4:c6:7c:84:ac:39:20:d6:d6:d1:77:1a:60:
3f:d8:39:3d:c9:a3:d3:11:75:c3:1b:aa:f1:42:93:
4b:c1:e9:db:ef:57:a1:25:eb:3d:e3:85:9f:ae:12:
3c:0e:7b:cf:ce:d9:5b:0a:9e:21:dc:5c:90:1f:9d:
06:64:fc:28:d0:3a:a0:d7:e7:8d:21:ae:51:2e:a5:
59:51:25:b5:80:2b:f1:e9:b8:4b:fe:92:2d:cb:2d:
56:64:3f:8e:30:68:da:fe:d8:44:11:ca:ef:5b:d8:
df:44:42:bb:a3:f4:cf:bf:45:96:3f:aa:bc:eb:eb:
49:e1:98:3e:97:68:0a:fb:7f:00:a7:04:2d:83:dd:
51:0a:b8:c8:0a:c7:25:0d:78:30:b5:e4:7b:bf:cf:
27:63:e9:f8:6e:bd:3d:61:60:fb:fc:5a:f8:d9:e0:
b3:b5:3d:f7:68:4d:d7:8b:a4:82:b6:b1:ac:02:34:
e3:7e:63:b4:17:89:b5:71:89:8c:6d:1e:01:b0:71:
fa:de:76:a7:81:a6:17:00:a1:71:fb:45:05:14:ca:
48:90:29:89:9f:a1:9c:bf:41:73:d4:91:45:cf:ba:
b2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2A:F1:33:74:AF:37:45:D4:58:B3:70:F2:78:7F:7D:83:0B:3D:39
X509v3 Authority Key Identifier:
keyid:53:57:65:44:C2:D7:C2:9D:EC:52:45:A4:A8:1C:19:68:6D:11:60:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/53576544C2D7C29DEC5245A4A81C19686D1160AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53576544C2D7C29DEC5245A4A81C19686D1160AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/117ea0e6-43ea-431e-a013-0b201b2c0d9e/0/3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.99.136.0/23
Signature Algorithm: sha256WithRSAEncryption
86:80:01:ef:80:a0:6b:19:61:52:e6:64:1e:b0:58:53:c0:7a:
5d:b1:33:65:79:e1:6e:7c:a5:76:6b:db:a3:f6:23:08:2d:2c:
e3:1f:e9:26:62:b8:53:f5:09:4a:42:f7:38:bb:b6:ea:6f:63:
ef:54:c2:25:8f:52:b0:18:c6:34:c0:ea:c8:5d:a0:6e:76:e5:
95:03:4e:2b:7a:04:df:b2:c1:53:a5:b7:c9:5e:75:9f:c6:b5:
37:0a:a5:d8:62:f1:b7:b5:71:28:8f:81:82:0a:d5:23:42:f7:
ad:a4:e1:40:33:34:92:c8:2a:db:e7:49:82:fa:43:88:2c:37:
6f:6d:d0:e1:b9:e6:d3:b3:77:71:00:94:e6:f3:41:b4:dc:12:
75:ef:e4:62:df:82:e8:2a:20:2b:ed:88:c7:8b:d7:df:9c:1f:
60:25:54:ec:ff:77:48:01:ea:f0:76:ab:50:70:de:3e:86:30:
1f:31:85:d9:c8:e5:9e:d9:bb:c2:64:a2:49:2c:06:e3:31:9c:
ac:5f:cb:05:90:f9:45:a6:a1:d3:52:11:e1:33:dd:4e:be:89:
d2:18:6f:48:34:1a:58:aa:e9:d7:1a:13:da:bd:aa:dc:56:48:
ee:b3:5d:04:50:28:2e:3c:a9:3d:aa:7e:18:71:6c:a7:0d:76:
a2:8c:f6:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:04:54 2025 by rpki-client