Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/3130332e31332e3136342e302f32332d3234203d3e2034383030.roa
File: 3130332e31332e3136342e302f32332d3234203d3e2034383030.roa (raw, json)
Hash identifier: wIcdCD/tVklftRRrB04ovxGfa9tflhB+E3tjCQLZ9Ac=
Subject key identifier: 21:CC:BC:40:B8:09:2C:CB:A1:35:64:DE:84:51:01:9E:82:E2:75:C0
Certificate issuer: /CN=0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99
Certificate serial: 05A9C4DB5546D7312187EAE4B159803286B37D78
Authority key identifier: 0A:84:F9:18:C6:DC:C0:E4:A9:89:AE:30:55:3E:8D:7F:B1:3A:CC:99
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/3130332e31332e3136342e302f32332d3234203d3e2034383030.roa
Signing time: Thu 01 Aug 2024 08:00:01 +0000
ROA not before: Thu 01 Aug 2024 07:55:01 +0000
ROA not after: Thu 31 Jul 2025 08:00:01 +0000
asID: 4800
IP address blocks: 103.13.164.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:a9:c4:db:55:46:d7:31:21:87:ea:e4:b1:59:80:32:86:b3:7d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99
Validity
Not Before: Aug 1 07:55:01 2024 GMT
Not After : Jul 31 08:00:01 2025 GMT
Subject: CN=21CCBC40B8092CCBA13564DE8451019E82E275C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ac:8d:0b:7b:d0:e9:21:92:d2:61:9e:78:de:
f4:e2:ee:9c:f1:d2:dc:d6:a4:b8:a0:8c:09:37:d9:
01:25:37:e2:cf:1a:2e:de:72:5d:4d:9c:1b:75:6a:
12:de:3e:e3:f7:7b:6f:c2:98:fa:c6:4a:e9:29:c9:
bf:27:2c:77:17:ea:f3:e4:e2:8e:8d:89:f2:79:09:
cd:1c:33:50:b8:ea:b6:00:dd:cc:56:b6:d6:ab:63:
8b:0f:68:45:ed:e9:49:90:38:c3:a8:a4:e6:b6:28:
31:a9:e5:bc:80:05:09:db:c1:19:0e:d6:2a:98:11:
42:ec:13:fb:8e:20:2d:3d:ba:4b:38:c1:3f:19:fa:
f6:0c:72:54:90:47:df:3a:22:9f:7d:bb:59:86:96:
c5:64:9f:ff:82:00:1a:1b:ab:c9:b0:fb:83:7b:bc:
f1:6e:ef:ad:f8:c7:e7:09:b8:1f:f1:94:11:17:74:
aa:c3:3c:41:25:d5:05:73:f8:1e:e2:85:04:33:81:
11:63:7a:f9:1c:ae:0b:d4:7d:91:a3:c4:b2:33:77:
6c:77:d9:aa:67:f3:a5:56:66:c8:65:8f:fc:3c:82:
7c:69:37:7f:5a:29:83:23:67:ee:23:d9:ff:57:b9:
87:f0:ed:45:83:34:81:63:13:e7:25:a9:9a:04:b1:
a9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CC:BC:40:B8:09:2C:CB:A1:35:64:DE:84:51:01:9E:82:E2:75:C0
X509v3 Authority Key Identifier:
keyid:0A:84:F9:18:C6:DC:C0:E4:A9:89:AE:30:55:3E:8D:7F:B1:3A:CC:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/3130332e31332e3136342e302f32332d3234203d3e2034383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.13.164.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:55:08:7e:68:e2:5a:ef:5f:6b:eb:3a:36:c4:60:0d:00:aa:
be:27:90:1b:5d:70:85:7a:4d:ab:10:02:ab:48:4b:f0:0c:e2:
25:70:7f:e7:e0:b2:76:5d:a0:47:1f:b2:cb:a9:30:12:48:ea:
ff:ea:dc:bf:17:2f:19:41:45:42:82:d5:4b:bc:5f:1f:44:b8:
50:b4:5b:59:62:9a:f2:0a:c5:75:44:ff:8b:a6:3f:f8:12:f3:
78:7a:a5:43:39:4a:3c:84:50:19:f0:ed:5b:df:53:2d:dd:be:
0c:d7:40:f7:b1:f7:00:76:4f:b7:99:aa:5c:93:2a:9f:fa:f8:
5f:23:df:90:60:25:f7:05:8d:b5:2a:56:7e:12:05:ae:77:a4:
1e:a0:6b:c6:46:2a:65:b6:1c:bc:52:ee:9f:dc:b4:9d:f1:82:
a7:63:d6:10:a2:54:5a:04:96:56:56:72:24:b2:b3:96:5f:c9:
bc:4f:c6:18:c1:3c:d1:c9:ea:53:5b:aa:ce:c9:ce:7b:13:78:
59:81:4c:5e:81:45:2f:08:a5:27:d6:4a:09:a6:09:da:92:87:
b7:c9:bb:26:ec:92:04:c7:87:63:ad:89:0b:f3:3d:71:35:54:
3c:04:96:93:63:d8:2e:39:9f:b9:e3:33:5b:b9:85:d4:e7:b6:
ac:32:df:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:47:33 2025 by rpki-client