Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa
File: 3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa (raw, json)
Hash identifier: 4ZQAqwv3D6xv0wZbi1M8yeP/AQMFxtqYLV8/krPMgXw=
Subject key identifier: 4D:83:2F:91:69:61:35:31:4A:A6:AA:78:0B:66:43:55:6A:4F:50:55
Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9
Certificate serial: 47BA0DC12F5C749E9D2158D1141F9DA7FCE0F6C2
Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa
Signing time: Mon 01 Jul 2024 01:04:51 +0000
ROA not before: Mon 01 Jul 2024 00:59:51 +0000
ROA not after: Mon 30 Jun 2025 01:04:51 +0000
asID: 139421
IP address blocks: 103.144.102.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:ba:0d:c1:2f:5c:74:9e:9d:21:58:d1:14:1f:9d:a7:fc:e0:f6:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9
Validity
Not Before: Jul 1 00:59:51 2024 GMT
Not After : Jun 30 01:04:51 2025 GMT
Subject: CN=4D832F91696135314AA6AA780B6643556A4F5055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:25:51:be:c7:86:bd:3f:d6:f7:dc:7d:0a:2c:
f8:18:91:f4:41:09:b8:8c:02:74:72:5c:76:00:6f:
29:e9:60:ab:5c:49:0c:3a:68:94:17:b4:c1:50:ad:
5f:12:12:fc:67:4b:33:8b:44:71:d9:54:b8:f3:8a:
fe:0a:5d:b4:ca:5d:af:d1:01:65:97:a3:e6:a6:3e:
4c:af:25:34:c8:07:34:aa:73:80:f6:1c:21:a2:68:
6c:a1:62:91:2d:5d:95:8a:64:b2:fb:16:e7:c4:91:
19:a9:c6:90:ec:19:11:2c:2d:7d:4d:05:4a:bd:f4:
bc:f5:af:1d:67:ca:11:a8:cf:34:51:d6:48:93:8d:
a1:e6:25:b5:87:36:49:2e:88:7d:fe:de:6d:14:de:
96:99:cc:75:94:c3:ff:ba:80:d1:8c:62:ab:34:3d:
aa:55:66:71:f9:f4:ef:f0:de:ff:b6:4b:3d:77:0e:
5d:ec:95:72:30:49:2d:33:04:1d:07:07:64:00:f6:
21:7e:ba:77:64:f4:23:65:85:48:78:68:2a:e8:ab:
7e:9d:08:0b:1b:6c:74:dd:f0:b4:87:7f:e1:86:11:
32:70:ec:55:bd:ed:5c:52:50:67:75:d5:dd:d4:95:
9f:b9:74:25:15:27:96:3d:ca:ed:a6:ad:75:29:0a:
3c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:83:2F:91:69:61:35:31:4A:A6:AA:78:0B:66:43:55:6A:4F:50:55
X509v3 Authority Key Identifier:
keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.144.102.0/23
Signature Algorithm: sha256WithRSAEncryption
63:32:f7:b8:dd:03:9e:61:35:9a:f5:ee:f4:f9:32:da:21:d3:
32:53:ab:3a:03:17:79:50:67:43:39:2f:51:78:4d:57:55:a3:
a8:2a:e4:ec:09:45:6d:11:07:d7:3b:c3:1f:94:c4:4d:01:f9:
04:ec:a1:04:01:47:83:ce:81:86:6d:25:5a:4b:d6:14:22:4b:
93:5a:94:fc:f0:6a:68:bf:b1:56:e1:52:9b:fd:ce:37:c1:b8:
43:7b:ff:0b:c5:1f:26:df:8f:b4:35:fc:b4:e4:9a:d2:af:4f:
f0:63:0f:8b:18:ef:a8:13:1f:96:d8:1c:92:11:94:8c:57:0b:
86:71:83:98:3b:86:9b:d8:41:72:a9:30:cb:9b:a6:77:bc:fc:
5e:60:bc:91:17:96:43:ca:5b:d7:35:bc:4c:b0:7d:fc:7a:80:
f7:4f:6e:b8:95:0c:42:90:2c:71:00:e4:bf:b6:50:5d:ef:80:
9d:b8:c1:53:25:c7:7c:1c:24:d9:3f:4f:2d:a0:dc:04:f4:51:
7a:6a:48:b9:77:23:45:f5:3a:ae:ba:1f:27:97:75:3e:6f:e4:
0e:6d:39:7a:52:33:36:9a:23:01:9c:17:83:b9:6a:36:40:c3:
e0:95:2f:9f:d7:d9:b7:1a:71:91:e9:be:b4:b2:32:25:77:e9:
c6:bf:c0:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:01:01 2025 by rpki-client