Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa
File: 3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa (raw, json)
Hash identifier: LfLeLwmqbwIkdEDU9U48eQJPk8ImKB/XqlPEOEL8JqE=
Subject key identifier: AC:AB:AA:A4:20:3A:AE:9E:F6:48:16:08:F5:71:B1:D4:0C:D8:D1:D7
Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E
Certificate serial: 14E1A98008D7D8CF1F275A534255DF8E0A22F680
Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa
Signing time: Wed 20 Nov 2024 09:00:03 +0000
ROA not before: Wed 20 Nov 2024 08:55:03 +0000
ROA not after: Wed 19 Nov 2025 09:00:03 +0000
asID: 58487
IP address blocks: 103.253.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:e1:a9:80:08:d7:d8:cf:1f:27:5a:53:42:55:df:8e:0a:22:f6:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E
Validity
Not Before: Nov 20 08:55:03 2024 GMT
Not After : Nov 19 09:00:03 2025 GMT
Subject: CN=ACABAAA4203AAE9EF6481608F571B1D40CD8D1D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ee:dc:70:5c:7b:5f:0c:83:b0:ae:4f:1e:f8:
8c:91:2c:2c:65:5d:bc:cd:ef:ff:2a:de:0e:b0:29:
ce:fd:64:b5:06:08:d6:00:e6:98:1c:38:fd:bd:8c:
6a:bb:b7:e7:e0:77:19:08:a7:5e:e8:f7:6b:ef:f4:
b3:91:87:6a:7c:e2:ac:05:d1:b6:cd:cf:c1:66:21:
98:76:e5:7c:7b:5a:3a:fb:ed:5a:11:c5:98:c5:37:
68:1c:c4:6c:24:51:87:3c:43:7b:a0:23:51:d9:13:
7f:b1:fb:00:de:2f:08:84:d7:a0:ef:42:29:ae:17:
3d:0a:da:50:8a:b4:31:a8:8c:b2:d9:19:8a:f3:17:
c0:ed:29:15:a8:a0:60:17:d0:2e:d5:21:38:10:82:
84:f1:f7:1f:a2:63:2e:86:57:bd:a1:06:7c:34:fe:
ea:2c:79:c3:af:10:6f:c1:0e:7b:ca:f4:15:57:30:
b3:8c:14:4d:b6:8d:d7:ab:af:66:5e:01:89:25:ce:
af:36:c6:f5:8d:9f:44:b8:4a:b1:51:b2:20:d0:77:
33:bb:55:6d:e6:11:6c:da:7d:bc:a9:81:04:2a:10:
fc:54:b0:48:71:3b:b7:2b:24:23:e5:cc:4c:85:1e:
e5:3e:03:59:06:b3:be:51:e1:84:16:60:c8:14:c5:
b9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:AB:AA:A4:20:3A:AE:9E:F6:48:16:08:F5:71:B1:D4:0C:D8:D1:D7
X509v3 Authority Key Identifier:
keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.253.212.0/24
Signature Algorithm: sha256WithRSAEncryption
68:57:a3:02:c9:1d:b8:c7:73:97:41:f5:45:7a:0d:2c:ad:fd:
c1:81:b9:1a:4b:47:00:49:51:3f:0c:47:90:38:59:f3:3b:06:
e7:09:5e:78:1d:4b:d2:06:e1:ff:5c:19:f2:43:45:58:69:1a:
19:34:8d:c9:3a:92:14:3d:f0:b8:0c:05:8d:e1:e9:10:8a:36:
f9:ee:31:33:d1:5d:3a:15:8b:92:15:2d:04:6b:e8:20:f6:59:
ba:8e:98:78:c8:16:59:bd:bd:28:ac:19:32:6c:95:91:4c:f4:
04:10:76:0f:0d:0b:46:67:72:73:0a:a2:09:72:c8:54:af:51:
a0:df:b4:db:b9:d1:1f:5e:a3:e1:c4:56:dc:e5:1d:2e:7d:b9:
b4:de:95:dc:17:0a:ab:38:c8:cf:99:77:da:b7:54:1e:b4:e3:
ed:31:0a:db:6c:51:9e:be:30:f0:c3:2b:a6:51:16:12:cc:b3:
2e:a5:d0:41:8e:6f:17:f3:15:bd:b4:1c:67:b3:7c:57:bb:19:
06:3a:f9:c6:91:0a:d0:18:ba:25:a2:47:d1:58:3d:6e:31:d1:
cf:25:aa:06:14:33:96:35:1b:03:88:1c:6e:5e:4e:97:9b:a8:
94:cf:af:83:f4:f4:2a:55:18:ba:4e:60:63:4d:0b:c6:14:a6:
ea:83:a8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:06:53 2025 by rpki-client