Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa
File: 3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa (raw, json)
Hash identifier: vtfkthTc4w7PTqVhacRm/ULh3HaRPjLVVlG+25ZUsBM=
Subject key identifier: 29:24:55:27:13:92:9E:BE:50:06:74:87:5A:26:E5:4B:96:9C:0F:D0
Certificate issuer: /CN=030BE557286D3A4FE6E9AA70636EC79D178ACE1F
Certificate serial: 32927C9EBC3F686D1D6F0A951749107A781EA44C
Authority key identifier: 03:0B:E5:57:28:6D:3A:4F:E6:E9:AA:70:63:6E:C7:9D:17:8A:CE:1F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa
Signing time: Sun 19 Jan 2025 16:00:01 +0000
ROA not before: Sun 19 Jan 2025 15:55:01 +0000
ROA not after: Sun 18 Jan 2026 16:00:01 +0000
asID: 139952
IP address blocks: 103.162.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:92:7c:9e:bc:3f:68:6d:1d:6f:0a:95:17:49:10:7a:78:1e:a4:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=030BE557286D3A4FE6E9AA70636EC79D178ACE1F
Validity
Not Before: Jan 19 15:55:01 2025 GMT
Not After : Jan 18 16:00:01 2026 GMT
Subject: CN=2924552713929EBE500674875A26E54B969C0FD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4b:5e:e4:f5:6f:a9:bd:73:2a:26:04:07:8d:
18:cf:62:ab:2e:0d:a8:2e:2d:be:31:bc:20:c0:71:
c6:b9:7c:83:12:a4:6e:7f:5f:7b:d0:52:6a:71:14:
79:de:aa:72:8b:a8:3f:b3:e8:7b:4d:16:72:ea:a5:
04:74:16:13:3f:39:d6:de:40:2e:26:53:9d:ce:b8:
d6:da:81:a7:71:ce:b9:fe:c6:e3:7e:c6:53:af:90:
11:85:0f:37:ad:a6:fa:b8:6f:ae:60:7e:05:e6:ec:
fe:e8:37:2c:21:bb:c9:45:32:00:92:e4:f3:9b:a6:
ec:b6:2a:bc:a2:f5:32:01:21:1e:6c:cb:72:cb:12:
74:57:6c:13:83:ac:46:23:7c:44:70:cf:2c:8d:a2:
85:64:df:1c:50:ba:34:6d:f3:7f:7b:81:16:8d:83:
53:36:ca:55:5d:99:76:41:0e:10:fd:0d:ba:3b:9d:
e8:35:c6:e0:36:5a:04:1d:a7:ea:ca:3b:99:67:37:
c8:35:f3:5e:f7:56:df:c7:09:ac:fa:33:b0:db:bd:
c6:ac:ae:84:8f:fa:c9:98:8b:0f:7c:b6:4c:2f:65:
83:f8:d1:74:02:69:49:98:f4:50:bb:26:0f:50:91:
e6:2e:39:71:07:16:42:18:3f:45:58:07:d6:b1:07:
96:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:24:55:27:13:92:9E:BE:50:06:74:87:5A:26:E5:4B:96:9C:0F:D0
X509v3 Authority Key Identifier:
keyid:03:0B:E5:57:28:6D:3A:4F:E6:E9:AA:70:63:6E:C7:9D:17:8A:CE:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.220.0/24
Signature Algorithm: sha256WithRSAEncryption
80:2b:4d:20:3f:ee:73:57:d3:17:73:90:1c:46:6d:f1:f2:ce:
c2:24:ac:94:ea:30:10:1e:34:07:1d:d1:0f:17:e6:b1:9d:78:
e7:93:7c:fc:ff:47:75:ee:2c:41:70:29:9f:c9:e0:2f:73:a2:
86:42:41:41:b8:93:ca:b8:dd:90:11:71:68:24:c6:64:e9:19:
1a:b3:e3:69:64:7d:46:34:d6:74:39:e4:84:4a:d4:18:07:ee:
0f:fa:a4:34:e1:16:06:6d:f2:24:a4:90:dd:0f:65:40:27:a7:
89:d2:75:a7:85:b6:3f:d3:7e:bd:f2:55:31:e3:e1:82:99:ed:
20:4a:c4:13:b0:42:f9:c7:88:ce:a4:de:ee:ce:d7:cc:62:66:
9c:bc:5f:c4:79:01:58:d3:76:40:41:fe:ab:65:c6:30:c0:54:
88:70:ec:e5:fa:30:f4:1d:ab:be:ca:57:23:44:c2:f1:67:3c:
3c:8a:cf:40:71:31:07:5f:c4:31:2e:c4:35:c3:d5:2a:8c:8f:
6f:fa:5f:d5:a0:dd:a8:d8:60:00:c8:b8:00:c2:a8:f3:e3:a3:
d4:d5:7d:50:f4:fa:dc:bb:35:74:61:f7:d3:a4:19:16:56:fc:
b4:f3:78:d7:98:a9:f6:7a:36:79:d3:d7:36:00:7b:85:d8:0f:
89:8c:95:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:58:52 2025 by rpki-client