Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/34079bef-7f7d-43cd-927f-d5cf59a0b0fb/0/3130332e3230352e36322e302f32332d3234203d3e20313530393932.roa
File: 3130332e3230352e36322e302f32332d3234203d3e20313530393932.roa (raw, json)
Hash identifier: IFF8MMQl7QrAWHNWN8IJDvMcW+S+e7mDZB2ax29c+ck=
Subject key identifier: 86:E4:7A:3E:72:BC:7F:34:24:BE:95:04:9E:9E:F5:BA:BE:FE:5C:26
Certificate issuer: /CN=053084D88D32CFF591DBCBF3109B9137C3E74648
Certificate serial: 34EB36A802CC7B4F0230616CE1A1408582FF3946
Authority key identifier: 05:30:84:D8:8D:32:CF:F5:91:DB:CB:F3:10:9B:91:37:C3:E7:46:48
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/053084D88D32CFF591DBCBF3109B9137C3E74648.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/34079bef-7f7d-43cd-927f-d5cf59a0b0fb/0/3130332e3230352e36322e302f32332d3234203d3e20313530393932.roa
Signing time: Wed 24 Jul 2024 17:31:55 +0000
ROA not before: Wed 24 Jul 2024 17:26:55 +0000
ROA not after: Wed 23 Jul 2025 17:31:55 +0000
asID: 150992
IP address blocks: 103.205.62.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:eb:36:a8:02:cc:7b:4f:02:30:61:6c:e1:a1:40:85:82:ff:39:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=053084D88D32CFF591DBCBF3109B9137C3E74648
Validity
Not Before: Jul 24 17:26:55 2024 GMT
Not After : Jul 23 17:31:55 2025 GMT
Subject: CN=86E47A3E72BC7F3424BE95049E9EF5BABEFE5C26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5a:05:55:bb:7f:0e:c6:13:3e:19:db:0a:31:
9d:13:1a:54:8b:4e:00:b9:cb:22:ca:2d:ae:a8:c7:
35:76:96:44:9a:43:f3:11:91:50:62:89:79:33:0a:
ca:6c:03:ef:66:bd:d8:ba:0a:cb:b4:b9:aa:5e:e6:
43:41:ec:d6:aa:25:75:f6:70:1f:cc:2b:3b:4a:87:
bc:7a:f3:c0:82:a9:0e:35:51:07:92:b5:c9:a5:83:
b8:0d:05:e1:f4:90:31:b6:4d:dc:da:6a:e8:85:e2:
8a:40:80:c3:e6:f3:a3:fc:5b:5b:5d:69:09:8e:21:
bc:25:73:c0:aa:96:a9:41:52:5c:40:41:ef:a0:55:
9d:29:4c:75:81:b4:bc:38:85:ad:a6:a5:a6:7a:72:
19:bb:53:21:d1:12:90:00:11:be:0e:96:f2:f3:79:
b5:76:5d:6c:2b:d2:98:ff:e0:96:f1:3a:6a:11:84:
22:7a:ac:8e:88:17:cf:6d:f4:43:91:ec:7e:28:6d:
35:a8:20:b1:29:04:e8:56:94:40:c1:46:e1:30:33:
cd:b9:88:5f:85:a7:6e:01:09:2e:27:f9:7f:30:e3:
af:e1:16:27:0c:37:70:61:71:08:b8:f3:a7:b7:9a:
82:3d:ad:42:cc:07:7a:e5:e4:11:52:88:64:73:d9:
f7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E4:7A:3E:72:BC:7F:34:24:BE:95:04:9E:9E:F5:BA:BE:FE:5C:26
X509v3 Authority Key Identifier:
keyid:05:30:84:D8:8D:32:CF:F5:91:DB:CB:F3:10:9B:91:37:C3:E7:46:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/34079bef-7f7d-43cd-927f-d5cf59a0b0fb/0/053084D88D32CFF591DBCBF3109B9137C3E74648.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/053084D88D32CFF591DBCBF3109B9137C3E74648.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34079bef-7f7d-43cd-927f-d5cf59a0b0fb/0/3130332e3230352e36322e302f32332d3234203d3e20313530393932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.205.62.0/23
Signature Algorithm: sha256WithRSAEncryption
59:d1:b0:18:b3:6d:22:d1:13:48:cb:09:4c:c3:e6:40:97:7f:
12:ad:70:d3:a1:30:fe:c7:4f:0f:fa:49:b3:a7:d0:4a:80:e8:
e2:d3:17:54:27:54:d4:16:f7:a4:a9:58:90:d7:a7:c8:11:58:
bc:fa:42:56:f7:ba:ca:bd:eb:33:d3:61:13:3f:eb:a5:3e:88:
6e:ac:2d:5c:d6:d1:a5:aa:1a:5a:cd:83:23:af:92:9c:f8:3d:
8a:e1:dc:5e:78:7f:00:79:a1:59:bd:70:e8:c4:1b:8e:1f:77:
b9:56:a1:60:02:f7:6d:e4:9c:8d:0a:5b:f7:58:6c:23:2b:25:
b0:9b:b8:64:34:a7:ad:d7:4a:89:c8:1e:cd:05:44:94:e4:eb:
38:85:47:93:f3:e6:00:5d:8f:ec:89:ca:07:fa:25:11:7a:0b:
ac:dc:86:15:c8:b4:21:54:d8:c9:a5:9e:f1:be:81:68:5a:c3:
7d:10:c1:b3:74:66:fd:21:e8:0e:98:b1:2b:81:20:7d:c6:7e:
bf:4f:77:15:2f:9e:18:d4:55:e5:cd:8f:be:37:51:41:4a:87:
de:41:57:b1:7f:49:00:f8:ca:4b:18:2b:07:0e:69:89:f5:f8:
97:02:aa:b5:5c:d2:21:b1:da:0e:cc:34:8b:db:6a:ea:6f:38:
59:be:02:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:45:54 2025 by rpki-client