Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e20313439333135.roa
File: 3130332e3138342e31362e302f32342d3234203d3e20313439333135.roa (raw, json)
Hash identifier: naeH0xmbP/3ggpiYcgSMq3TL3uxCder+395Osm9cRNQ=
Subject key identifier: 68:D4:02:FD:D5:38:F9:4C:5E:21:D5:B0:61:19:8F:8E:88:19:14:13
Certificate issuer: /CN=C37B0700A782E6CCEE7D187B10AAF240353AB253
Certificate serial: 31EAB4BE08683C4113E534CB92BDF8D5BE61B7A6
Authority key identifier: C3:7B:07:00:A7:82:E6:CC:EE:7D:18:7B:10:AA:F2:40:35:3A:B2:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e20313439333135.roa
Signing time: Thu 26 Dec 2024 07:00:02 +0000
ROA not before: Thu 26 Dec 2024 06:55:02 +0000
ROA not after: Thu 25 Dec 2025 07:00:02 +0000
asID: 149315
IP address blocks: 103.184.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:ea:b4:be:08:68:3c:41:13:e5:34:cb:92:bd:f8:d5:be:61:b7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C37B0700A782E6CCEE7D187B10AAF240353AB253
Validity
Not Before: Dec 26 06:55:02 2024 GMT
Not After : Dec 25 07:00:02 2025 GMT
Subject: CN=68D402FDD538F94C5E21D5B061198F8E88191413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:33:4d:1c:82:8c:d1:37:a5:db:29:e4:2e:70:
f3:04:8e:fd:5d:8d:19:eb:02:3b:95:a5:40:f9:ef:
0f:77:62:9e:e4:86:9b:3a:c4:68:50:34:98:da:0d:
4b:3c:07:f3:bd:ee:08:a9:76:24:3f:f3:3a:ad:18:
4b:29:63:0d:31:23:27:d2:b6:1b:ad:10:54:4e:ea:
5b:59:03:eb:37:0c:f1:ac:13:12:42:d2:2f:e3:c9:
fb:c7:c4:9b:8c:4c:cd:06:d2:2c:32:70:23:a8:bd:
96:c9:49:ab:72:b1:31:ce:0b:15:08:74:82:df:5c:
fd:7b:7f:e6:22:ca:57:06:77:31:c1:a9:a1:97:fb:
1b:68:0f:5e:c7:44:c2:d5:55:2b:bf:0a:1f:1b:12:
d6:3f:7b:9d:0b:c2:30:79:d9:88:8d:f6:f4:16:32:
cb:ba:f0:03:c5:91:fc:6d:84:8e:6f:bd:a6:f5:d1:
7c:57:73:2f:82:0f:73:5f:3b:b7:f4:73:f2:2e:5c:
85:72:0e:63:f9:04:e1:77:5f:66:ad:e5:81:6f:cc:
4d:2c:29:0a:72:d7:b6:be:a0:0b:de:ee:29:bc:41:
2a:b8:65:e0:bb:92:e5:73:9f:8a:de:a5:4a:51:4e:
36:33:46:ce:a1:e6:3e:6e:a0:5a:f7:80:05:b9:b8:
af:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D4:02:FD:D5:38:F9:4C:5E:21:D5:B0:61:19:8F:8E:88:19:14:13
X509v3 Authority Key Identifier:
keyid:C3:7B:07:00:A7:82:E6:CC:EE:7D:18:7B:10:AA:F2:40:35:3A:B2:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/C37B0700A782E6CCEE7D187B10AAF240353AB253.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C37B0700A782E6CCEE7D187B10AAF240353AB253.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25d38b42-b7c2-42b6-a2fc-675da254c776/0/3130332e3138342e31362e302f32342d3234203d3e20313439333135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.16.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:b2:26:db:67:4c:17:f0:2b:41:d5:a2:c8:4a:a9:d8:e1:51:
e7:82:3f:b3:fa:67:b6:0c:4d:63:b6:9a:c3:1f:26:ee:00:4e:
44:ea:49:56:4d:ed:1a:26:bd:de:5d:4c:54:96:46:8e:61:ae:
d0:0e:66:bc:ea:67:ac:64:f9:8c:4d:54:73:4b:52:ed:bf:bd:
5e:01:3b:bf:7d:2d:cf:91:80:d9:c0:34:df:aa:87:5c:5d:90:
18:a7:24:1a:a6:7d:4a:8b:f4:f9:c5:c7:c4:74:47:da:3a:40:
14:4a:ae:5d:4b:da:4e:cc:de:83:21:10:87:f7:f8:eb:d8:3d:
79:bb:b3:31:3e:b1:c0:00:5d:4c:db:37:a0:f7:6f:23:0a:77:
2e:8b:9a:1f:ae:8f:58:f0:21:55:75:39:dd:60:72:56:89:f2:
4c:dc:a3:92:ee:6f:7b:73:1c:9d:25:0e:59:11:9b:68:8e:2c:
fe:e2:71:06:b4:79:1c:98:c6:8a:22:81:c6:9a:18:00:38:a8:
a9:01:9a:28:e7:5b:21:c3:ad:5b:8e:91:dc:5a:85:6a:0d:9e:
65:8d:22:28:e2:30:4a:fa:da:bb:9e:4f:77:63:a4:0d:95:9c:
33:14:28:96:71:23:83:88:f5:38:6f:5e:0a:e9:6d:52:5c:74:
f1:98:06:4f
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUMeq0vghoPEET5TTLkr341b5ht6YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzM3QjA3MDBBNzgyRTZDQ0VFN0QxODdCMTBBQUYyNDAz
NTNBQjI1MzAeFw0yNDEyMjYwNjU1MDJaFw0yNTEyMjUwNzAwMDJaMDMxMTAvBgNV
BAMTKDY4RDQwMkZERDUzOEY5NEM1RTIxRDVCMDYxMTk4RjhFODgxOTE0MTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeM00cgozRN6XbKeQucPMEjv1d
jRnrAjuVpUD57w93Yp7khps6xGhQNJjaDUs8B/O97gipdiQ/8zqtGEspYw0xIyfS
thutEFRO6ltZA+s3DPGsExJC0i/jyfvHxJuMTM0G0iwycCOovZbJSatysTHOCxUI
dILfXP17f+YiylcGdzHBqaGX+xtoD17HRMLVVSu/Ch8bEtY/e50LwjB52YiN9vQW
Msu68APFkfxthI5vvab10XxXcy+CD3NfO7f0c/IuXIVyDmP5BOF3X2at5YFvzE0s
KQpy17a+oAve7im8QSq4ZeC7kuVzn4repUpRTjYzRs6h5j5uoFr3gAW5uK+7AgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUaNQC/dU4+UxeIdWwYRmPjogZFBMwHwYDVR0j
BBgwFoAUw3sHAKeC5szufRh7EKryQDU6slMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
NWQzOGI0Mi1iN2MyLTQyYjYtYTJmYy02NzVkYTI1NGM3NzYvMC9DMzdCMDcwMEE3
ODJFNkNDRUU3RDE4N0IxMEFBRjI0MDM1M0FCMjUzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQzM3QjA3MDBBNzgyRTZDQ0VFN0QxODdCMTBBQUYyNDAzNTNB
QjI1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1ZDM4YjQyLWI3YzItNDJiNi1h
MmZjLTY3NWRhMjU0Yzc3Ni8wLzMxMzAzMzJlMzEzODM0MmUzMTM2MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7gQMA0GCSqG
SIb3DQEBCwUAA4IBAQDOsibbZ0wX8CtB1aLISqnY4VHngj+z+me2DE1jtprDHybu
AE5E6klWTe0aJr3eXUxUlkaOYa7QDma86mesZPmMTVRzS1Ltv71eATu/fS3PkYDZ
wDTfqodcXZAYpyQapn1Ki/T5xcfEdEfaOkAUSq5dS9pOzN6DIRCH9/jr2D15u7Mx
PrHAAF1M2zeg928jCncui5ofro9Y8CFVdTndYHJWifJM3KOS7m97cxydJQ5ZEZto
jiz+4nEGtHkcmMaKIoHGmhgAOKipAZoo51shw61bjpHcWoVqDZ5ljSIo4jBK+tq7
nk93Y6QNlZwzFCiWcSODiPU4b14K6W1SXHTxmAZP
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:30:02 2025 by rpki-client