Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1562cf3d-d9f7-48a9-9159-9f0d7a476790/0/3130332e3134372e31302e302f32332d3234203d3e20313339393435.roa
File: 3130332e3134372e31302e302f32332d3234203d3e20313339393435.roa (raw, json)
Hash identifier: ZhCBetiRM0oV1qkwFwKfVyjWnDYRVpaxO6Ref6QtN4w=
Subject key identifier: 79:49:37:01:C6:5A:15:D9:43:7E:9D:72:D8:9E:C6:6F:8D:8B:C9:83
Certificate issuer: /CN=CF2362E92169BC7C5B93E1CA38A3BF909879C05A
Certificate serial: 498D7084EE225A428BC54E35D73455CAB1732CCA
Authority key identifier: CF:23:62:E9:21:69:BC:7C:5B:93:E1:CA:38:A3:BF:90:98:79:C0:5A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF2362E92169BC7C5B93E1CA38A3BF909879C05A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1562cf3d-d9f7-48a9-9159-9f0d7a476790/0/3130332e3134372e31302e302f32332d3234203d3e20313339393435.roa
Signing time: Tue 07 Jan 2025 05:01:20 +0000
ROA not before: Tue 07 Jan 2025 04:56:20 +0000
ROA not after: Tue 06 Jan 2026 05:01:20 +0000
asID: 139945
IP address blocks: 103.147.10.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:8d:70:84:ee:22:5a:42:8b:c5:4e:35:d7:34:55:ca:b1:73:2c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CF2362E92169BC7C5B93E1CA38A3BF909879C05A
Validity
Not Before: Jan 7 04:56:20 2025 GMT
Not After : Jan 6 05:01:20 2026 GMT
Subject: CN=79493701C65A15D9437E9D72D89EC66F8D8BC983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2d:c0:a3:a7:90:c9:f1:50:1a:23:14:8a:46:
17:a1:34:2a:fa:f3:49:97:76:30:22:c6:e7:88:5c:
61:7d:d6:fa:eb:00:15:5c:6e:f6:b0:fa:e7:e0:24:
1c:7e:ed:a7:04:3d:dc:8a:34:68:85:02:a2:93:e4:
f3:7b:68:5a:0b:e1:cd:f0:2a:e9:42:39:b9:04:85:
5a:22:0d:9c:4c:be:ba:ff:6f:9c:53:ad:18:b3:ff:
8f:0d:22:fb:cb:73:6a:b4:99:7a:51:33:6c:43:1d:
6c:d7:4b:d3:77:ec:3f:c5:2c:fc:2e:ae:b7:c1:e0:
19:16:2b:e3:3f:29:f6:77:4e:31:ba:fb:b3:bb:8a:
22:32:00:80:e7:bd:f6:d9:7e:53:b5:ef:19:a3:5b:
61:84:02:4d:1e:12:a8:7c:b6:70:1d:be:03:53:f3:
64:9b:df:31:ca:e1:9f:17:c0:ab:2e:71:8f:7a:0e:
7a:1c:0a:2e:43:08:df:89:b2:c7:f2:f9:d0:7f:d3:
1f:8e:94:fb:d8:21:4f:b7:fb:e2:13:d6:e4:b6:c1:
e8:26:0e:a8:17:8b:6d:29:60:10:27:23:2b:db:91:
96:05:c3:c2:c5:b0:b2:ed:9f:7b:d2:fb:fc:77:68:
12:d4:e6:20:1d:d0:ae:6b:0d:c9:83:aa:6c:36:d3:
fa:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:49:37:01:C6:5A:15:D9:43:7E:9D:72:D8:9E:C6:6F:8D:8B:C9:83
X509v3 Authority Key Identifier:
keyid:CF:23:62:E9:21:69:BC:7C:5B:93:E1:CA:38:A3:BF:90:98:79:C0:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1562cf3d-d9f7-48a9-9159-9f0d7a476790/0/CF2362E92169BC7C5B93E1CA38A3BF909879C05A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF2362E92169BC7C5B93E1CA38A3BF909879C05A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1562cf3d-d9f7-48a9-9159-9f0d7a476790/0/3130332e3134372e31302e302f32332d3234203d3e20313339393435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.10.0/23
Signature Algorithm: sha256WithRSAEncryption
08:2e:f1:03:10:5c:d1:e0:f9:8c:e2:eb:70:fd:48:7b:2e:d0:
0a:1a:78:76:3c:83:de:57:ae:84:7d:d1:f3:9c:cb:57:31:c8:
1f:0a:f0:a4:77:81:e4:8c:70:18:cf:1e:ae:5b:f6:5b:3c:96:
5a:55:f0:20:7a:27:ea:ab:2f:8d:d9:2a:40:d1:f0:96:6c:5f:
6b:6d:fe:d5:59:9a:5e:41:7d:5e:3f:4b:16:1c:53:aa:5f:49:
8d:00:4e:b8:d8:70:98:bf:ad:24:27:d2:76:ba:34:d3:81:0b:
2b:14:b4:b0:1e:fd:ad:6b:b3:b7:38:f2:cb:83:ea:bb:11:b0:
e4:0d:d1:d9:59:e9:67:f0:3d:10:5c:1a:1b:4b:d4:2a:a3:62:
81:95:fe:64:2a:cb:0e:15:f7:bb:6c:1e:5f:f7:b0:d1:c0:88:
d0:34:fd:05:ac:e8:e2:a8:06:9e:0e:63:4b:e0:6a:f7:67:02:
51:fd:5c:fa:bc:ec:f7:70:73:c2:0c:c5:f1:d0:7f:73:fd:43:
11:78:65:02:98:2a:12:97:8b:8b:d4:af:75:cd:bd:c3:fd:76:
d8:b2:8b:54:10:63:30:41:49:93:11:9b:20:fa:8d:08:b5:32:
0f:81:1d:da:06:6b:c5:cd:8c:da:57:67:cf:e8:30:4d:b6:62:
2f:92:e5:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:33:03 2025 by rpki-client