Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/3130332e36372e39302e302f32342d3234203d3e20313532303035.roa
File: 3130332e36372e39302e302f32342d3234203d3e20313532303035.roa (raw, json)
Hash identifier: osFwS3xf1DonSoJwht99d9Tc2cqBOTGD/HEV1v4fujI=
Subject key identifier: FB:41:0A:DB:90:8F:B8:A8:F9:47:CC:22:44:41:BA:80:47:CB:FE:FC
Certificate issuer: /CN=49011B0D97FF49210FC27249FDD23F7172FD5561
Certificate serial: 07D600A41CF6D60C1429016BF3DFCA8A9D0F99AA
Authority key identifier: 49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/3130332e36372e39302e302f32342d3234203d3e20313532303035.roa
Signing time: Wed 29 Jan 2025 03:02:49 +0000
ROA not before: Wed 29 Jan 2025 02:57:49 +0000
ROA not after: Wed 28 Jan 2026 03:02:49 +0000
asID: 152005
IP address blocks: 103.67.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:d6:00:a4:1c:f6:d6:0c:14:29:01:6b:f3:df:ca:8a:9d:0f:99:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49011B0D97FF49210FC27249FDD23F7172FD5561
Validity
Not Before: Jan 29 02:57:49 2025 GMT
Not After : Jan 28 03:02:49 2026 GMT
Subject: CN=FB410ADB908FB8A8F947CC224441BA8047CBFEFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3b:3e:50:fd:2c:80:c0:06:6c:a1:c2:8a:65:
09:3b:59:b4:4d:78:93:7d:6d:95:44:a6:f9:51:55:
06:59:7b:34:49:ee:5a:93:ed:a2:6f:23:8d:14:23:
42:3b:27:c9:78:04:39:9b:3e:03:10:14:09:89:a0:
66:7e:86:82:ea:42:e7:73:bd:09:5d:0e:ea:4b:57:
d9:46:42:df:a2:0a:5a:5e:5a:e9:5e:a2:ee:04:62:
8d:bd:a5:21:b4:4c:8e:86:30:be:48:c2:1d:a9:46:
83:ef:f8:f9:b3:ba:77:74:c2:8a:c6:be:20:51:f4:
70:02:2c:d0:1c:e3:18:ae:b9:06:b6:59:38:80:4d:
3d:4e:44:5d:c6:c4:7a:e5:89:f8:8e:4c:64:d9:e1:
71:b4:24:45:df:10:35:57:be:dd:61:1b:5f:f9:d3:
b1:24:ea:e9:44:d6:ad:aa:fe:ad:ef:a1:62:3d:99:
ed:25:dd:d3:f4:3d:7e:1e:7d:da:1a:4b:a5:87:01:
e9:7b:e3:09:ae:d5:82:ba:13:ae:5b:f1:2b:0d:0d:
de:7e:15:7c:59:fd:8d:23:fb:d9:dd:3c:75:e8:99:
cf:09:0c:9a:bc:06:21:d9:07:bc:1d:fe:3a:3e:8a:
23:0d:bb:63:ca:38:38:ea:77:f9:bc:e6:d9:20:23:
16:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:41:0A:DB:90:8F:B8:A8:F9:47:CC:22:44:41:BA:80:47:CB:FE:FC
X509v3 Authority Key Identifier:
keyid:49:01:1B:0D:97:FF:49:21:0F:C2:72:49:FD:D2:3F:71:72:FD:55:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/49011B0D97FF49210FC27249FDD23F7172FD5561.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49011B0D97FF49210FC27249FDD23F7172FD5561.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/3130332e36372e39302e302f32342d3234203d3e20313532303035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.67.90.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:fe:bd:df:b7:ae:af:a4:b0:5e:9d:71:b7:e6:22:4a:5b:2e:
6a:2e:85:9c:4e:59:47:44:0a:a8:f4:88:30:93:1a:93:23:36:
95:db:2e:8d:46:13:ea:5e:8c:e5:18:66:d9:9c:ce:75:80:d3:
ca:83:9c:01:a1:4e:1c:4d:b5:07:e4:a4:52:87:58:c5:cc:6d:
72:fa:66:a0:45:3b:f2:37:64:0f:1c:2c:37:04:af:69:0a:6f:
92:92:a3:36:61:13:75:7d:90:80:ea:ac:72:cb:65:74:41:fc:
e8:72:e5:d2:c2:80:fd:e3:81:03:44:fd:43:fd:e2:aa:14:3f:
56:cb:1f:c7:ba:8d:fe:66:32:86:cd:84:66:a1:b4:ca:4b:58:
0a:99:fb:38:f4:8b:68:16:a6:c8:01:99:17:34:ae:8b:c6:27:
24:ca:e0:46:11:1c:29:a8:80:37:78:ba:d6:40:0e:f7:f7:50:
e7:f4:84:fe:90:8d:58:40:c3:dc:46:73:ff:04:b0:8d:a4:df:
fa:bf:1d:34:2b:de:56:b3:d1:52:2e:6b:45:f8:9c:11:34:3e:
2f:19:39:f6:ad:06:02:a8:ab:a8:7e:d5:96:9d:c0:c0:26:71:
00:98:e1:9c:38:a5:e3:ad:fb:e6:58:75:08:e0:dd:c2:bd:28:
5e:de:32:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:29 2025 by rpki-client