Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232332e302f32342d3234203d3e203338313438.roa
File: 3130332e33302e3232332e302f32342d3234203d3e203338313438.roa (raw, json)
Hash identifier: 8BH7HUPp+qT0dOPwFMHWiAT720E6kg8wn1sWk04/fIM=
Subject key identifier: 05:22:E5:BA:3D:F9:70:15:C5:46:08:39:7B:09:2E:1F:3E:D7:B5:15
Certificate issuer: /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Certificate serial: 6B2276B70F8A56BB3636FF3302D97CD49997081D
Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232332e302f32342d3234203d3e203338313438.roa
Signing time: Wed 16 Oct 2024 04:02:04 +0000
ROA not before: Wed 16 Oct 2024 03:57:04 +0000
ROA not after: Wed 15 Oct 2025 04:02:04 +0000
asID: 38148
IP address blocks: 103.30.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:22:76:b7:0f:8a:56:bb:36:36:ff:33:02:d9:7c:d4:99:97:08:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1
Validity
Not Before: Oct 16 03:57:04 2024 GMT
Not After : Oct 15 04:02:04 2025 GMT
Subject: CN=0522E5BA3DF97015C54608397B092E1F3ED7B515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:34:bf:b6:5f:e6:14:f7:bb:0c:a1:76:d3:b7:
19:56:6c:76:4e:9b:59:e9:f2:48:f0:29:a2:e4:69:
95:ad:36:48:ee:8f:45:a5:3f:7c:31:e6:07:a7:61:
46:dd:be:a5:fb:de:2e:96:03:db:50:96:b5:df:67:
e0:8d:47:4f:ba:2d:68:fe:ac:27:7e:0d:22:f0:ec:
7b:3d:57:2f:56:64:d4:5f:6a:62:9d:c3:a0:03:2e:
47:0e:e3:53:28:ca:d1:64:13:34:85:50:80:5f:c4:
82:d9:23:a4:b4:94:40:33:74:cb:c4:b3:a4:7e:c8:
12:65:bd:91:31:79:98:d3:49:c8:46:06:67:98:5a:
23:23:95:8a:73:e0:ea:b5:f7:89:7f:2e:20:1e:be:
3e:5f:80:28:a0:e4:8f:35:a4:47:41:b1:c5:7f:74:
e2:50:58:50:98:41:95:a1:22:7b:de:08:42:73:aa:
b6:3a:81:86:3f:48:3b:8e:6c:0e:d4:2d:24:a2:38:
4c:3d:e6:12:58:23:26:5e:eb:2a:19:bd:3e:8c:c4:
36:df:6e:c0:46:a5:de:45:85:c3:76:72:21:b5:35:
04:07:7d:b9:67:ef:9c:0c:7a:7a:d2:b9:47:63:dc:
d3:fe:78:0a:0d:32:14:3a:2b:f6:2a:14:07:fc:b0:
50:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:22:E5:BA:3D:F9:70:15:C5:46:08:39:7B:09:2E:1F:3E:D7:B5:15
X509v3 Authority Key Identifier:
keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232332e302f32342d3234203d3e203338313438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.30.223.0/24
Signature Algorithm: sha256WithRSAEncryption
18:53:49:2d:d5:06:ac:29:3c:f5:d1:ad:d3:71:a3:86:d0:1f:
30:57:dd:68:69:47:e1:50:7e:8c:1b:97:e9:6f:21:d9:ff:ce:
22:0c:c2:54:21:6c:34:5a:cd:4b:4c:e8:dc:66:8a:57:3d:55:
fc:79:f5:33:07:a5:49:f3:33:54:1c:c5:4a:12:c3:f0:1e:6b:
42:22:cf:b3:9a:fd:13:c2:cf:d6:51:95:dd:7b:88:c8:7c:ca:
37:70:bb:9a:f2:66:7c:87:8d:a6:66:16:fb:3f:34:00:fc:57:
b8:06:94:91:ab:6a:ae:61:ac:5e:f7:ff:cd:87:13:b3:59:10:
a0:f2:bb:90:62:36:01:5f:8f:8d:f2:89:95:7a:b2:22:78:18:
34:12:6c:a0:33:9b:9f:a6:0f:8d:bc:bb:3d:be:db:59:12:6d:
c0:cc:4c:c2:3d:9b:26:44:a9:b7:03:46:51:c1:ff:91:42:3a:
1e:be:c5:d8:bb:ed:bd:92:9e:dc:42:a1:88:8e:9a:03:81:ab:
b3:f6:42:44:e7:9b:a7:55:ac:cd:cb:06:06:44:44:04:c2:23:
d8:20:f0:71:e3:bd:27:39:e7:19:24:69:cf:df:e8:9b:2d:d5:
e9:78:f6:17:ad:0c:fb:5f:34:ca:62:8f:ec:56:da:8d:58:5c:
84:5b:f5:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:32 2025 by rpki-client