Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32332d3233203d3e20313431353936.roa
File: 3130332e3137392e3231382e302f32332d3233203d3e20313431353936.roa (raw, json)
Hash identifier: P+IUE1LGD8ElXeQQSjrtgfcVyLtwl4130alY1sqZ59Q=
Subject key identifier: 7B:6F:A7:CB:DA:7D:66:F9:C7:96:0D:47:F4:0C:09:74:13:F3:89:13
Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653
Certificate serial: 7685C1A751A95834C29E3A36BB48E9337ECBD297
Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32332d3233203d3e20313431353936.roa
Signing time: Tue 02 Jul 2024 11:00:01 +0000
ROA not before: Tue 02 Jul 2024 10:55:01 +0000
ROA not after: Tue 01 Jul 2025 11:00:01 +0000
asID: 141596
IP address blocks: 103.179.218.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:85:c1:a7:51:a9:58:34:c2:9e:3a:36:bb:48:e9:33:7e:cb:d2:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653
Validity
Not Before: Jul 2 10:55:01 2024 GMT
Not After : Jul 1 11:00:01 2025 GMT
Subject: CN=7B6FA7CBDA7D66F9C7960D47F40C097413F38913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cf:5e:64:6f:37:1f:2b:fa:e7:de:07:e2:59:
b6:66:ed:c1:55:42:e9:91:8c:67:b5:96:68:dd:86:
3e:3c:83:ba:e5:32:53:2a:cc:ba:c6:1c:86:72:6f:
db:f4:df:b4:e0:de:1e:11:ca:42:92:06:b0:90:34:
22:f2:2c:c1:8a:ef:5e:93:90:b2:83:09:d6:38:74:
88:73:fb:8f:e7:45:f3:19:01:f3:e7:1e:22:ed:bf:
29:36:c4:fa:c0:7b:53:f5:18:01:82:0e:f6:1e:d8:
3c:be:da:61:82:6b:d7:d1:2f:e2:78:a6:61:5e:39:
81:67:80:83:c9:6b:4e:1b:c1:48:dd:f7:2c:38:5e:
50:6e:8b:6e:d9:5d:29:d4:1a:9a:68:bd:f5:ed:0d:
f5:35:c2:19:a2:07:b3:83:3f:79:65:3f:3f:1d:ca:
f3:5b:2e:cb:d6:d1:b2:53:f3:a2:6d:42:e8:dd:46:
80:81:8b:b9:d0:d9:e4:14:ec:bf:5b:34:72:3b:c1:
5f:32:55:d6:4f:95:95:4b:ff:61:a8:3a:82:5c:9c:
73:65:c2:53:3c:c2:1a:5d:0e:ea:26:fb:70:ba:a2:
b8:20:c4:24:e7:eb:a5:00:ae:cc:6d:d4:e0:87:01:
29:93:c8:48:58:6c:78:0a:bd:ea:e8:01:e1:ff:f7:
57:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6F:A7:CB:DA:7D:66:F9:C7:96:0D:47:F4:0C:09:74:13:F3:89:13
X509v3 Authority Key Identifier:
keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/3130332e3137392e3231382e302f32332d3233203d3e20313431353936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.179.218.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:2e:0e:5f:53:dd:0c:50:8f:62:92:f1:32:61:28:76:1d:fd:
85:78:1b:69:3c:80:34:dd:27:75:d3:87:b5:a6:84:78:f5:50:
76:6f:07:df:4a:f1:69:c4:84:a5:a8:01:03:a6:e0:15:98:f4:
06:2a:69:79:1d:3f:bc:62:e4:3e:8c:dd:a0:a2:20:b0:5e:36:
f2:3c:c9:41:75:3f:6c:b6:48:ac:e0:03:66:14:41:a6:d7:1b:
e3:5f:d7:ee:5f:57:61:39:74:bb:b7:ac:fd:ed:4e:85:39:81:
1a:86:cc:ce:97:7e:54:9b:f8:eb:eb:1d:86:52:5d:02:cb:99:
b1:ec:1d:63:de:45:72:52:dd:9d:92:72:16:34:90:85:77:e7:
5d:15:03:9d:d8:10:2c:18:c3:35:a7:da:50:ec:3c:bb:82:1e:
90:19:c6:c8:34:f8:05:96:89:15:34:a2:f0:b5:9c:8b:e7:80:
fb:40:57:b6:98:79:14:dc:7d:dc:df:35:3b:1c:5d:d9:56:67:
dd:31:8f:fa:5b:92:8b:ac:71:22:08:67:93:cf:a5:ad:e2:31:
a7:5e:78:e1:bc:34:37:74:44:81:a5:11:43:1a:47:ed:64:48:
9b:3c:47:5b:88:66:14:e7:92:3a:eb:e2:92:2f:ef:d7:cf:a2:
f3:9f:07:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:44:56 2025 by rpki-client