Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa
File: 3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa (raw, json)
Hash identifier: OPDRtC0YANq9aPbjw+CR97g9TL7AgzyFDEfEg4LIzko=
Subject key identifier: 6E:53:43:9E:6C:BA:61:FB:F1:A1:E0:BD:0C:04:B1:CD:25:CE:D1:32
Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E
Certificate serial: 3F5B1F4F01603E4106F2C78A3BA5DB8DCCB9B819
Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa
Signing time: Wed 20 Nov 2024 10:03:10 +0000
ROA not before: Wed 20 Nov 2024 09:58:10 +0000
ROA not after: Wed 19 Nov 2025 10:03:10 +0000
asID: 58487
IP address blocks: 103.253.214.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:5b:1f:4f:01:60:3e:41:06:f2:c7:8a:3b:a5:db:8d:cc:b9:b8:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E
Validity
Not Before: Nov 20 09:58:10 2024 GMT
Not After : Nov 19 10:03:10 2025 GMT
Subject: CN=6E53439E6CBA61FBF1A1E0BD0C04B1CD25CED132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:25:e7:63:14:55:e6:ac:1e:93:cc:b9:62:2c:
7e:70:80:73:c2:81:58:e2:b2:fc:23:8c:58:02:d4:
66:70:6a:b6:e2:5f:b0:db:5c:60:bd:31:8a:e6:ee:
b4:b7:31:43:b8:ba:45:9d:48:f2:67:84:a2:40:50:
9d:97:47:95:1d:dd:07:28:9f:c4:35:8d:1c:b9:d3:
bc:6f:fa:f3:a3:29:d8:03:84:a1:6a:51:f9:fc:cd:
ec:1d:eb:39:d5:88:b6:cb:b3:1b:bc:3a:34:86:bf:
93:d2:c3:69:f4:e9:e9:e8:ee:60:03:04:6b:e6:06:
e6:bc:66:9b:d9:15:88:cd:e8:45:0f:bb:53:89:c1:
e3:21:f2:11:b9:66:3f:97:4e:b4:b0:1f:d2:9e:68:
dc:1c:e1:1b:fb:ab:b4:16:59:74:74:ae:79:fd:45:
8b:9f:5f:db:51:a4:83:2b:da:e5:04:79:62:81:12:
37:a6:35:0b:ae:b7:f7:54:82:e6:d6:d9:2d:55:e3:
04:14:8e:9c:3e:c4:f3:95:ac:5e:cd:db:84:86:e6:
9a:9c:9b:f0:fc:52:d6:63:f0:5e:35:c3:26:e1:2c:
5d:b9:e0:75:4f:a3:53:52:f6:f1:2c:04:fb:c1:14:
c1:15:21:45:c7:9e:59:15:59:34:03:9d:ff:30:8e:
79:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:53:43:9E:6C:BA:61:FB:F1:A1:E0:BD:0C:04:B1:CD:25:CE:D1:32
X509v3 Authority Key Identifier:
keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.253.214.0/23
Signature Algorithm: sha256WithRSAEncryption
c3:3b:91:8b:1c:a7:a1:da:00:11:97:7d:83:c2:1c:dc:f6:5a:
8f:48:a0:c0:bc:46:b1:9d:8a:61:27:dd:61:89:38:18:22:4b:
27:c8:a8:64:52:f3:ab:58:ef:c8:87:ec:96:4d:10:cb:06:0b:
d8:43:40:e9:e5:a4:c0:0a:2f:35:4b:fa:2c:87:90:47:dd:c8:
9c:d0:5a:44:82:2c:23:8b:33:a9:be:f0:39:b1:6c:f8:88:57:
fc:6f:49:de:92:c2:09:5d:de:1e:2c:c3:41:08:ad:a2:63:72:
ce:4e:22:55:88:5f:a5:ca:27:d7:7b:fe:fe:62:a7:14:4f:e1:
aa:de:15:65:fe:4c:08:57:8c:74:8a:26:2d:0e:6f:46:01:d8:
78:4f:1d:49:b7:dd:6f:2b:42:e2:83:31:fc:44:29:08:21:58:
2b:f4:ec:4a:e5:bf:96:e3:d9:ae:61:3b:04:04:9e:2e:87:02:
64:1c:fb:90:30:35:3d:5a:83:d5:d2:0b:b1:5a:de:c4:9f:74:
64:a6:55:e5:ef:1a:dd:ca:34:11:e7:23:97:36:63:c9:2c:93:
a0:fe:5e:b9:1a:9f:ae:f9:ca:af:be:3b:38:3a:9e:63:86:ea:
4d:11:bf:33:07:7d:90:dc:dd:26:79:4b:92:97:21:ea:36:9a:
4c:3f:82:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:07:32 2025 by rpki-client