Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa
File: 3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa (raw, json)
Hash identifier: ouXIX9GF2bsN7u33KTbYLbJVbRNSQKEsMqHEdl/mkaw=
Subject key identifier: EE:66:64:1A:C4:A0:68:60:F7:CE:3B:7A:6F:47:A7:5B:06:DA:13:0D
Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E
Certificate serial: 60506333EED451E015B520A1CA80B796A66B2EE8
Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa
Signing time: Wed 04 Sep 2024 12:00:00 +0000
ROA not before: Wed 04 Sep 2024 11:55:00 +0000
ROA not after: Wed 03 Sep 2025 12:00:00 +0000
asID: 139381
IP address blocks: 103.142.254.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:50:63:33:ee:d4:51:e0:15:b5:20:a1:ca:80:b7:96:a6:6b:2e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E
Validity
Not Before: Sep 4 11:55:00 2024 GMT
Not After : Sep 3 12:00:00 2025 GMT
Subject: CN=EE66641AC4A06860F7CE3B7A6F47A75B06DA130D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:42:2d:ab:76:e3:95:49:99:d8:b4:25:e7:94:
23:ed:6d:a1:76:7c:7c:f5:c6:00:39:1f:bb:8b:2a:
96:e6:5d:64:72:49:3a:1c:da:24:f6:48:17:4b:78:
6d:25:c2:dc:66:f2:59:7a:39:2a:5d:15:2d:ed:1f:
e0:0a:3d:c6:25:13:99:d2:52:91:78:10:0b:35:39:
fe:c4:9d:a2:37:86:57:28:7b:90:5a:63:ee:06:ab:
15:f5:b6:fe:9e:71:c8:90:16:e7:fc:f1:b0:e4:1f:
02:1d:29:01:84:14:b8:27:52:7d:3b:90:79:99:a4:
ae:d4:7d:17:e3:4f:4c:02:05:ee:8a:09:aa:a2:56:
96:27:46:7f:80:bb:8f:47:57:08:64:8f:a8:0d:5c:
13:4a:f6:68:7c:c4:63:94:18:37:c4:c6:b9:65:27:
4b:0f:b5:79:21:3c:cf:f8:0d:9a:73:26:a8:6d:f9:
43:fc:df:84:2a:47:22:19:f0:de:82:8d:2d:23:f8:
e0:5d:a1:70:dc:c5:14:dd:ff:06:b1:8b:9f:09:e2:
3f:e2:99:19:f8:db:f6:a9:34:00:43:94:11:a8:c2:
c1:cf:bb:6a:d4:7e:82:6f:b9:5b:19:00:fe:28:56:
6e:6d:96:e8:d9:76:3d:ec:f3:c6:03:53:94:09:93:
c5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:66:64:1A:C4:A0:68:60:F7:CE:3B:7A:6F:47:A7:5B:06:DA:13:0D
X509v3 Authority Key Identifier:
keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.142.254.0/23
Signature Algorithm: sha256WithRSAEncryption
96:56:a1:a3:b0:35:93:a2:a9:c4:1d:fe:6a:a6:ec:fc:4e:a6:
f7:b8:43:ea:fb:4b:c4:f8:08:5b:d3:68:91:f8:cb:d8:a1:2f:
73:37:a9:fe:3d:d9:ef:9b:47:24:d5:ef:0b:ca:fd:01:3c:ea:
ea:b7:a0:fc:02:81:7d:db:14:a3:d5:da:32:53:26:d7:3f:71:
f9:75:ef:f9:6a:96:87:54:8f:d4:87:97:00:9f:11:a8:0b:de:
92:13:64:0e:b1:20:12:33:9b:0e:e3:7e:29:a9:b8:c2:d1:b9:
65:30:75:34:ee:a7:f3:47:b8:bb:ea:5f:4e:a6:c0:64:9e:4e:
c8:5e:a2:63:82:94:1e:c5:3e:85:2a:87:27:7f:5d:ed:43:08:
17:cf:97:69:c9:54:37:9c:40:8b:b1:07:8e:bf:eb:73:76:53:
d4:23:39:19:14:8e:ec:ca:f1:c9:b5:72:19:d7:5e:dd:70:e5:
19:3c:1e:45:84:76:cb:1c:3f:ff:cc:aa:6d:39:2d:94:52:7c:
d1:b5:a7:41:f6:2e:52:22:26:33:cc:8a:2b:e3:b7:c4:55:57:
e9:00:77:80:38:26:78:17:41:e1:7b:ff:64:c1:98:13:5f:b0:
72:c2:e1:ab:9b:57:6f:57:da:31:5d:50:dd:bd:a4:82:2f:f0:
b8:22:e5:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:43:53 2025 by rpki-client