Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa
File: 3130332e39312e35352e302f32342d3234203d3e20313530323538.roa (raw, json)
Hash identifier: InZb4Svv3A2DHv8YSHBBCPvqo5sWpcXYdxwGVe0a300=
Subject key identifier: 06:BB:78:26:10:42:1E:FB:F9:57:10:BC:A9:D3:FD:C2:02:FF:79:84
Certificate issuer: /CN=248C652A73F35EA32B7EC526D977784EB15D2C7D
Certificate serial: 7281BD3A0ABD61F65D55E5813D27224ADAB585DF
Authority key identifier: 24:8C:65:2A:73:F3:5E:A3:2B:7E:C5:26:D9:77:78:4E:B1:5D:2C:7D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa
Signing time: Mon 23 Sep 2024 11:00:00 +0000
ROA not before: Mon 23 Sep 2024 10:55:00 +0000
ROA not after: Mon 22 Sep 2025 11:00:00 +0000
asID: 150258
IP address blocks: 103.91.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:81:bd:3a:0a:bd:61:f6:5d:55:e5:81:3d:27:22:4a:da:b5:85:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=248C652A73F35EA32B7EC526D977784EB15D2C7D
Validity
Not Before: Sep 23 10:55:00 2024 GMT
Not After : Sep 22 11:00:00 2025 GMT
Subject: CN=06BB782610421EFBF95710BCA9D3FDC202FF7984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:c1:69:da:6d:63:9e:7f:7e:7f:c0:82:61:93:
89:0e:77:d0:8d:3f:6b:d5:c7:34:59:79:5a:dd:a6:
21:43:36:b8:69:22:91:27:41:73:e9:80:4c:47:f5:
ae:08:53:9b:87:af:d3:0c:02:0e:03:15:f0:e5:55:
7c:10:b2:e6:55:c9:52:2c:72:a6:7a:7a:00:67:f2:
de:f5:f1:bf:bf:f7:1d:0d:4d:e2:52:7b:f9:3c:ee:
93:87:1a:7a:87:ee:9a:68:2e:e3:a5:be:06:a8:1d:
b7:76:a8:09:64:c5:d3:b3:7e:42:4d:7a:14:45:49:
17:1d:b5:26:d0:c5:ae:6c:dc:11:7b:65:37:1a:6a:
83:d5:fc:17:ec:76:90:46:34:36:85:c4:b2:3d:fb:
bc:76:84:e5:e4:17:be:59:e0:f3:01:8e:66:e3:ad:
08:16:11:02:0e:90:64:db:8b:ed:c5:b7:b8:6b:33:
0c:b3:01:a2:28:77:1b:f6:c9:5f:68:ce:8f:21:b8:
b4:d3:0d:8d:46:ee:f0:0f:5d:03:f0:b8:57:3c:f0:
68:1c:25:7f:7e:d1:50:39:a7:fb:9b:40:39:96:51:
40:c7:c4:e8:97:33:ea:b5:98:65:48:5d:34:c4:58:
c2:73:52:c9:21:46:6a:11:65:76:58:9d:b6:74:0e:
e4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:BB:78:26:10:42:1E:FB:F9:57:10:BC:A9:D3:FD:C2:02:FF:79:84
X509v3 Authority Key Identifier:
keyid:24:8C:65:2A:73:F3:5E:A3:2B:7E:C5:26:D9:77:78:4E:B1:5D:2C:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.91.55.0/24
Signature Algorithm: sha256WithRSAEncryption
95:36:cc:e1:a3:65:3b:5f:d9:b3:9f:1e:ae:d1:8e:33:a1:92:
ca:91:0f:7d:81:64:a4:5c:cb:0d:8c:b4:5d:c1:cc:64:5c:8f:
f9:c7:42:38:95:d5:88:fa:c1:e8:82:39:be:a8:ba:6a:dd:11:
b1:0e:1a:62:8f:d6:50:f1:e8:52:94:09:4d:19:07:6e:e3:02:
14:d8:c3:e9:eb:d8:d1:d6:07:38:6b:21:46:bc:51:76:26:65:
97:2c:0e:35:87:94:f2:ae:cb:be:5c:27:1b:c3:7c:d7:c7:a9:
91:bf:97:99:6c:1e:21:af:bb:80:8e:3b:bc:33:cb:b8:a1:2a:
17:ae:cb:6f:03:e3:38:22:e2:eb:5b:d3:56:05:42:bb:1f:96:
aa:2c:ff:f0:9d:d8:66:f0:be:d5:0a:cc:77:d5:c2:0c:90:7e:
20:e7:ff:f6:37:1f:f5:14:fe:cc:ca:39:0f:b2:11:76:cd:52:
ea:bb:be:ff:1a:5d:21:2e:ea:c3:9e:cf:d1:b1:7f:b0:61:71:
99:04:65:d6:ee:38:e7:04:8f:04:90:33:61:00:d6:77:40:f4:
94:a0:9c:27:ff:28:69:2d:a2:67:9f:95:9d:f6:7a:ec:8a:17:
8e:02:2a:c3:40:47:70:e0:cc:ac:19:dd:0f:b2:4b:28:27:66:
7f:97:68:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:21:54 2025 by rpki-client