Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132372e302f32342d3234203d3e20313338303839.roa
File: 3130332e3135332e3132372e302f32342d3234203d3e20313338303839.roa (raw, json)
Hash identifier: pAwAaLum0jYdUTsB6mT2CdQGQv2HQcF0heplULsgo1Y=
Subject key identifier: CA:10:6F:82:F8:14:AF:0E:90:2C:37:F8:61:91:15:D4:D4:20:87:34
Certificate issuer: /CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C
Certificate serial: 063705B75F59401F00CD252586C2920E34FE70B2
Authority key identifier: EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132372e302f32342d3234203d3e20313338303839.roa
Signing time: Tue 07 Jan 2025 13:00:01 +0000
ROA not before: Tue 07 Jan 2025 12:55:01 +0000
ROA not after: Tue 06 Jan 2026 13:00:01 +0000
asID: 138089
IP address blocks: 103.153.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:37:05:b7:5f:59:40:1f:00:cd:25:25:86:c2:92:0e:34:fe:70:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C
Validity
Not Before: Jan 7 12:55:01 2025 GMT
Not After : Jan 6 13:00:01 2026 GMT
Subject: CN=CA106F82F814AF0E902C37F8619115D4D4208734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:6f:54:fe:5a:c9:15:70:8f:4a:97:47:55:e7:
7a:e3:8f:d4:34:43:4b:ab:d5:1b:3c:f4:af:15:c4:
b4:0e:ba:94:69:73:21:aa:cd:4f:24:87:2c:c9:14:
49:79:22:66:fb:14:7c:87:08:38:bb:f6:16:ad:16:
c5:c2:82:39:5e:81:ca:a1:6f:4b:99:46:0e:19:ea:
fe:01:9f:51:23:8f:b1:cf:10:93:09:fd:e6:a4:49:
75:2d:b6:fa:25:f0:26:66:23:77:1a:0d:d0:58:18:
3a:a3:ad:35:f3:7e:b5:9f:fc:b4:a1:2b:0a:4c:1d:
86:56:fd:4c:d2:55:f3:b9:92:3a:5a:c4:cb:1d:2d:
db:f4:f1:6f:5f:8b:d9:e0:30:6a:f7:11:b7:79:4d:
78:d0:1b:78:c9:90:66:4a:a4:45:f5:0a:c0:c4:bd:
a7:70:0e:96:78:7e:86:8f:8d:bd:c6:db:03:24:e3:
af:95:d8:42:74:65:c4:a6:ff:28:5d:9c:1a:74:d0:
1e:38:6c:fc:8a:89:70:a3:de:af:7c:14:a2:42:10:
56:cb:36:2a:59:9d:1e:76:b1:bc:ab:a3:fa:07:f2:
da:71:9c:9a:97:28:56:6a:76:1a:16:af:9a:2b:57:
c4:ea:dd:b0:f5:4b:a2:4a:77:a8:84:a1:d0:60:ba:
82:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:10:6F:82:F8:14:AF:0E:90:2C:37:F8:61:91:15:D4:D4:20:87:34
X509v3 Authority Key Identifier:
keyid:EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132372e302f32342d3234203d3e20313338303839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.153.127.0/24
Signature Algorithm: sha256WithRSAEncryption
19:bb:36:73:4d:6a:7f:73:77:98:86:f7:e6:29:00:71:b3:69:
21:33:f9:b9:c6:4e:87:81:28:4d:d3:73:b4:31:bd:b0:5e:02:
38:d3:24:d2:29:4d:8e:68:1f:e7:72:14:d4:5c:64:ed:ab:5e:
48:da:0e:31:c6:1f:13:6a:82:f2:38:45:b1:4c:07:2b:0c:9b:
be:34:a7:9b:15:f3:06:aa:ea:c6:e6:10:a8:40:59:a9:c7:ee:
0a:5f:e0:4d:8a:b8:89:93:c6:33:27:06:82:9e:f6:5a:6c:9c:
f3:bf:86:ef:3d:0d:a0:9a:5b:fc:38:03:e8:b4:1d:16:3c:71:
2c:ee:e2:2a:aa:15:c5:38:dd:17:97:c3:a0:3d:47:b2:f4:e6:
b1:a6:3a:3b:38:d6:7d:36:c7:27:59:9d:58:51:d1:cc:a8:26:
24:de:98:7c:1e:7a:a8:04:c9:aa:cf:65:15:74:68:f1:f9:f7:
a2:27:7f:cc:d1:56:ed:c6:e2:34:b2:17:dd:f3:94:20:cd:89:
86:f2:33:e3:09:d0:55:af:74:92:6a:b4:04:ab:fa:b2:66:9b:
75:59:d1:2d:58:32:d8:12:cb:e7:82:94:cc:bf:0e:90:77:5d:
3a:9e:88:40:3f:97:09:da:09:25:16:dc:01:a9:49:b0:d7:3c:
75:f6:93:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:17:22 2025 by rpki-client