Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa
File: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (raw, json)
Hash identifier: 2RQ2kX5zDajb4kTPcsNyRUqORecvlGLhw0ztmJt9qpY=
Subject key identifier: AC:64:04:34:96:8C:72:20:5C:16:C1:93:B4:3A:AC:E1:1A:C6:77:05
Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C
Certificate serial: 56FD107146E64EBB0469517F8B72E6383C48179A
Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa
Signing time: Mon 01 Jul 2024 01:02:46 +0000
ROA not before: Mon 01 Jul 2024 00:57:46 +0000
ROA not after: Mon 30 Jun 2025 01:02:46 +0000
asID: 133815
IP address blocks: 103.52.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:fd:10:71:46:e6:4e:bb:04:69:51:7f:8b:72:e6:38:3c:48:17:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C
Validity
Not Before: Jul 1 00:57:46 2024 GMT
Not After : Jun 30 01:02:46 2025 GMT
Subject: CN=AC640434968C72205C16C193B43AACE11AC67705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ec:02:e2:47:f2:29:0a:aa:7c:40:57:f8:c1:
10:27:1c:dc:f9:66:f3:a8:3e:74:88:f2:4f:31:5a:
0b:8e:70:75:62:75:79:1e:07:1c:ad:3c:fc:aa:c6:
61:65:44:e1:86:4e:4d:12:3b:0a:db:3d:b4:39:a3:
06:f7:7c:df:0e:5a:7c:6f:46:48:fa:f4:76:d9:28:
8d:6f:8e:f6:ad:7b:a8:9e:bf:e3:c5:0a:d4:64:77:
a7:2c:7f:0a:42:5f:e2:5a:0e:95:6f:cf:f8:53:87:
63:bf:5a:3b:fb:3d:35:6b:e8:d3:e1:e1:8f:d2:49:
4f:80:4e:58:f5:84:3e:9c:1f:ee:8e:3b:e6:b5:85:
d9:10:4b:88:29:c8:3f:ea:6f:3e:cc:b4:07:ff:09:
42:20:9d:28:e6:6b:df:1a:f2:da:33:2e:d2:d7:52:
21:89:64:69:d8:c3:d2:da:3b:07:11:37:e8:56:27:
67:34:ed:b8:b2:04:4b:5f:88:fb:b3:84:3b:55:0a:
56:66:b9:f2:1c:9a:8d:f7:4a:af:f9:68:e8:4a:11:
2f:8c:b1:66:72:ca:6f:1e:c1:47:b1:af:a8:e2:8d:
69:86:01:1a:0f:15:41:39:8d:26:80:2c:c9:2b:0e:
c5:5f:a8:8c:7c:aa:f6:6f:c9:4a:43:da:63:cf:4c:
0d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:64:04:34:96:8C:72:20:5C:16:C1:93:B4:3A:AC:E1:1A:C6:77:05
X509v3 Authority Key Identifier:
keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/3130332e35322e34342e302f32322d3234203d3e20313333383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.52.44.0/22
Signature Algorithm: sha256WithRSAEncryption
42:e5:2a:78:ca:db:13:d6:a2:6d:03:06:42:f2:21:4a:2f:f3:
96:08:75:79:4d:0e:c1:46:b3:28:3f:bf:86:7b:dd:90:6f:22:
90:d3:ca:19:d8:79:23:ad:af:2d:5e:59:6c:23:21:4a:0a:60:
a0:ac:33:c4:95:b3:cb:ea:32:4b:c0:0f:d2:5e:7d:7f:37:6f:
95:45:f3:71:2c:9d:01:ca:40:02:56:fa:9d:d0:28:51:14:33:
d7:aa:43:6d:5e:97:36:58:45:ad:a7:63:3e:63:88:ea:56:2d:
80:fe:e4:ec:30:64:0f:5b:7c:19:ad:4f:ca:b4:34:76:2a:31:
70:60:7a:d0:88:9c:0f:a9:91:21:e9:85:1d:80:47:54:61:fd:
a3:35:46:62:56:5c:36:0e:84:99:55:41:95:b5:c5:d0:d4:c4:
fe:16:23:9e:c0:31:a3:e0:39:62:30:25:31:10:24:4c:0d:64:
f6:2b:ca:35:96:3b:03:02:e6:0d:a2:59:17:c9:4a:5c:9b:19:
8b:2b:d7:16:13:35:5d:97:af:71:5d:d6:76:15:a9:2b:a6:0a:
fc:bd:45:95:a0:29:51:8d:77:0d:bf:e9:e8:b6:2d:53:27:1a:
e9:20:96:3f:07:e9:15:99:17:02:37:8e:c5:79:f6:36:f2:9c:
18:66:65:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:03:26 2025 by rpki-client