Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3360f078-8a20-48d1-82b8-e1f50a155201/0/3130332e3135302e3135382e302f32342d3234203d3e20313430333937.roa
File: 3130332e3135302e3135382e302f32342d3234203d3e20313430333937.roa (raw, json)
Hash identifier: 42IGiLwFKLvYfl+qjbuD9uwII9RWEDzXsY4xu3MXVkc=
Subject key identifier: 5A:83:23:6C:12:DF:AE:90:4E:04:AF:31:29:97:68:69:6D:A7:F8:97
Certificate issuer: /CN=B93759B19E4C1F8FFB6E9D1E2E674E4E317D7E94
Certificate serial: 74120B77EEB8CCC648848AFA026B680583BC4F0B
Authority key identifier: B9:37:59:B1:9E:4C:1F:8F:FB:6E:9D:1E:2E:67:4E:4E:31:7D:7E:94
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B93759B19E4C1F8FFB6E9D1E2E674E4E317D7E94.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3360f078-8a20-48d1-82b8-e1f50a155201/0/3130332e3135302e3135382e302f32342d3234203d3e20313430333937.roa
Signing time: Tue 04 Jun 2024 16:00:01 +0000
ROA not before: Tue 04 Jun 2024 15:55:01 +0000
ROA not after: Tue 03 Jun 2025 16:00:01 +0000
asID: 140397
IP address blocks: 103.150.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:12:0b:77:ee:b8:cc:c6:48:84:8a:fa:02:6b:68:05:83:bc:4f:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B93759B19E4C1F8FFB6E9D1E2E674E4E317D7E94
Validity
Not Before: Jun 4 15:55:01 2024 GMT
Not After : Jun 3 16:00:01 2025 GMT
Subject: CN=5A83236C12DFAE904E04AF31299768696DA7F897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cd:a0:0a:af:bb:42:5a:67:2b:15:05:b6:0c:
70:67:ae:fc:02:5d:59:91:8d:dc:b9:d9:74:5a:c8:
f3:aa:ef:dc:41:c7:24:ce:e9:f6:0d:e5:4b:d0:61:
54:d8:67:01:f8:19:fa:5e:a7:ac:f0:f3:b5:4f:97:
b3:2d:cb:14:50:e5:ff:1e:53:ab:4c:36:e9:85:32:
08:3c:d1:61:34:16:78:7c:81:ac:bd:bf:91:17:e8:
82:85:61:67:e3:59:45:b5:d4:14:ca:9c:20:53:a3:
6e:50:ae:ee:4c:b8:02:8e:bf:86:a4:8e:48:79:ef:
56:1d:62:c3:32:4f:e8:b0:f0:2a:e5:09:7d:3b:d4:
a6:c1:12:a6:a5:5c:f3:d0:85:73:6c:d8:f0:27:7f:
bd:95:a1:f3:db:a9:50:bc:4d:c5:1b:19:e7:fe:2a:
ad:08:24:0c:3e:e4:3f:f0:d0:0c:fd:1f:c6:2d:31:
57:f9:67:d4:dd:d1:06:de:b4:c7:ff:be:39:e9:20:
ac:a7:34:85:e2:52:7f:dc:8a:2f:c1:81:94:e2:b1:
c8:14:14:2f:bb:68:29:ee:1c:cb:80:c7:92:d4:83:
36:99:e8:5e:f4:49:d7:4c:10:67:52:d4:b8:6d:2a:
45:b5:18:44:e7:17:ee:11:4b:0a:4d:25:94:f2:82:
44:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:83:23:6C:12:DF:AE:90:4E:04:AF:31:29:97:68:69:6D:A7:F8:97
X509v3 Authority Key Identifier:
keyid:B9:37:59:B1:9E:4C:1F:8F:FB:6E:9D:1E:2E:67:4E:4E:31:7D:7E:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3360f078-8a20-48d1-82b8-e1f50a155201/0/B93759B19E4C1F8FFB6E9D1E2E674E4E317D7E94.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B93759B19E4C1F8FFB6E9D1E2E674E4E317D7E94.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3360f078-8a20-48d1-82b8-e1f50a155201/0/3130332e3135302e3135382e302f32342d3234203d3e20313430333937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.150.158.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:41:e8:80:ab:28:71:7b:fd:0e:cc:18:6a:30:dd:aa:22:d4:
42:d0:47:bf:be:69:6c:1c:ea:63:5f:19:b9:6f:fd:ff:00:60:
40:bd:e2:88:bc:40:21:da:ab:b6:c9:f4:3c:89:39:78:90:da:
47:f8:21:1d:b6:83:c3:33:50:77:fb:c2:f1:9b:3c:ab:7e:3c:
01:b8:31:cf:08:6a:f6:90:a3:2c:bc:c6:95:bd:9e:c8:e3:3f:
66:aa:49:fd:bb:eb:d0:c7:f7:55:90:87:77:81:53:83:4a:6e:
4d:b6:e4:c7:c5:49:a3:5e:e0:db:89:4e:cd:a4:8a:6e:8b:fd:
ef:22:7c:36:f1:89:8c:2a:2f:89:8e:54:0a:eb:48:9c:32:4e:
c5:a1:81:22:eb:2f:b2:5c:ae:74:a2:88:3c:a3:96:aa:2b:e5:
9f:16:ad:25:e6:db:c6:ce:48:5d:83:d3:94:8f:89:4c:aa:a3:
00:cf:2c:8e:18:24:b2:0a:93:2b:13:be:09:df:e2:be:6f:b7:
80:0c:32:ca:7f:de:0d:f0:b1:28:39:75:b0:0f:53:ea:a4:ab:
8d:4e:af:93:34:f9:78:53:be:e7:5e:94:95:e8:d5:ef:9f:94:
3b:69:de:17:6f:56:37:8e:e7:cc:4e:61:57:81:0b:a5:58:ba:
5c:82:fe:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:15:12 2025 by rpki-client