Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa
File: 3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa (raw, json)
Hash identifier: YPeNafffbCxEDeGWTOYrUeYYiluS0g8ccyYN1CwbY9k=
Subject key identifier: A7:C4:E7:6F:07:AA:32:36:94:2C:C0:30:6E:71:BD:A4:10:17:73:13
Certificate issuer: /CN=B5787D648E70D60E0E09510EBF1809D686E83D03
Certificate serial: 6F48D8AE191E09F097572787E5BE532316C8214C
Authority key identifier: B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa
Signing time: Mon 02 Sep 2024 19:00:00 +0000
ROA not before: Mon 02 Sep 2024 18:55:00 +0000
ROA not after: Mon 01 Sep 2025 19:00:00 +0000
asID: 142400
IP address blocks: 103.172.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:48:d8:ae:19:1e:09:f0:97:57:27:87:e5:be:53:23:16:c8:21:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5787D648E70D60E0E09510EBF1809D686E83D03
Validity
Not Before: Sep 2 18:55:00 2024 GMT
Not After : Sep 1 19:00:00 2025 GMT
Subject: CN=A7C4E76F07AA3236942CC0306E71BDA410177313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:60:f1:ab:51:11:bd:01:3c:cb:1c:9e:e9:
22:34:a9:b7:dc:ef:2a:01:9e:b8:9b:33:64:a8:bb:
ae:2f:5c:1e:e3:07:32:80:05:24:89:13:01:64:c5:
ce:83:13:74:cf:40:b4:71:ef:81:7c:dc:8f:10:85:
9b:63:ba:a2:d0:ec:e0:8c:c6:0c:d3:32:71:ac:f2:
37:03:79:33:8f:f8:50:95:c1:ff:53:49:33:53:0a:
30:a2:42:45:95:23:ca:4a:03:c7:fb:32:e8:3d:6e:
32:da:87:b0:1e:64:83:5b:3a:a7:83:8d:ad:64:16:
c1:e1:02:16:41:4f:08:81:4a:95:0e:0e:17:88:45:
29:1f:7a:9d:fc:be:b2:cc:38:3f:73:35:a7:65:96:
5d:8d:20:09:ea:b0:b6:fe:43:a6:69:cf:f7:d6:9b:
23:10:1a:12:59:31:7c:85:88:16:9c:41:7d:b8:62:
52:22:91:4f:27:94:df:a8:ac:a3:ff:b2:a7:88:b5:
d7:c9:79:51:dc:b5:a3:dc:d3:7f:77:06:67:94:0d:
e4:93:1f:96:26:d5:2c:f8:19:a6:68:0a:23:3d:9d:
db:12:32:a9:c0:94:e4:49:06:5d:23:f4:8e:ee:9c:
ab:2a:c7:92:f5:4b:0e:b9:83:a4:c1:d0:b5:5f:54:
10:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C4:E7:6F:07:AA:32:36:94:2C:C0:30:6E:71:BD:A4:10:17:73:13
X509v3 Authority Key Identifier:
keyid:B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32342d3234203d3e20313432343030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.172.186.0/24
Signature Algorithm: sha256WithRSAEncryption
09:73:a1:69:82:ae:bb:f6:3c:d7:ab:1d:b3:21:cb:ce:2d:02:
76:44:f7:ac:0f:36:e5:fc:67:f3:82:ea:4e:01:35:27:54:ff:
ab:55:5a:a9:b6:e7:be:3f:4f:71:fd:3d:0f:32:6a:d7:a1:dc:
4b:4b:1a:a3:fc:03:f7:a0:38:9d:0f:fe:eb:4a:c5:3d:a1:f4:
95:34:5a:87:d9:80:e7:c0:d6:85:8e:a1:57:3a:dc:2c:4f:80:
59:12:ec:fb:a7:57:4b:61:de:9d:53:49:d9:72:98:c5:3c:f3:
8e:43:3d:2c:17:b2:1a:e7:32:88:a1:38:62:1e:f5:ce:45:30:
85:91:62:6a:73:45:9a:d3:01:74:6e:83:4c:04:dd:d9:38:66:
5b:b1:3f:6b:6c:ae:94:24:b1:71:da:51:84:be:7c:de:40:c3:
68:99:30:15:36:f1:0e:92:c9:9a:6a:82:57:d2:8d:52:6c:bb:
44:94:ab:80:09:29:c0:67:d5:5f:23:dc:dc:34:bc:c2:b1:29:
22:7b:9c:cb:84:2a:24:84:ea:9f:08:89:9a:88:02:56:b3:05:
dc:54:13:1b:71:d1:96:c5:c1:e2:d5:51:a0:54:75:d8:0d:08:
c3:32:32:25:65:30:39:42:a7:f5:d9:c2:04:76:54:35:ad:d6:
2c:16:b0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:19:01 2025 by rpki-client