Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa
File: 3130332e3135322e372e302f32342d3234203d3e20313430343236.roa (raw, json)
Hash identifier: VmRTNF6O8M+AnB/zvqxaffecroR7hC8t3eEDnSwP8hw=
Subject key identifier: 3B:AF:83:FF:97:39:D3:52:2F:75:8A:AA:50:3F:5E:24:5F:D5:ED:0B
Certificate issuer: /CN=33F0041B7CC6D4139AB23B3CD10C56E51233C589
Certificate serial: 2EBFD2989A2C66A6CF2905DAF1C8E479C5126C55
Authority key identifier: 33:F0:04:1B:7C:C6:D4:13:9A:B2:3B:3C:D1:0C:56:E5:12:33:C5:89
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33F0041B7CC6D4139AB23B3CD10C56E51233C589.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa
Signing time: Mon 01 Jul 2024 01:06:09 +0000
ROA not before: Mon 01 Jul 2024 01:01:09 +0000
ROA not after: Mon 30 Jun 2025 01:06:09 +0000
asID: 140426
IP address blocks: 103.152.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:bf:d2:98:9a:2c:66:a6:cf:29:05:da:f1:c8:e4:79:c5:12:6c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33F0041B7CC6D4139AB23B3CD10C56E51233C589
Validity
Not Before: Jul 1 01:01:09 2024 GMT
Not After : Jun 30 01:06:09 2025 GMT
Subject: CN=3BAF83FF9739D3522F758AAA503F5E245FD5ED0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:33:a8:c5:1d:cd:ea:32:5e:ff:84:2d:34:3c:
07:7c:d4:7b:c6:6b:88:80:a4:fa:58:e1:0b:b1:ed:
03:01:bb:93:86:c6:09:58:51:07:c1:68:71:2b:a5:
01:aa:eb:34:6e:e9:88:9e:96:7d:7e:e6:ad:23:03:
bd:4b:68:c3:0f:bf:e6:f2:77:3c:92:45:34:16:6b:
dc:0a:8d:b7:14:70:78:2a:08:f6:ac:1a:1b:e7:ed:
98:e0:7e:87:14:c0:13:8a:0b:47:88:6f:39:9d:4c:
3a:3a:bb:12:51:95:64:9c:00:39:65:0b:5a:6b:f7:
6f:00:5c:4a:5f:7d:09:d8:8e:54:1b:89:92:63:73:
03:aa:dc:fe:72:e0:14:68:c5:d1:37:7e:19:d5:82:
60:b9:b9:7a:4e:3f:20:87:f4:2c:4d:2a:99:74:f7:
4e:26:08:9b:90:33:82:75:a4:72:3f:76:34:51:b1:
7f:79:d8:99:8d:b2:31:17:6a:62:6a:f4:fd:2e:c3:
ba:af:9f:f2:50:3b:79:b1:5a:9a:5f:fa:6c:61:4f:
f1:82:b1:ba:9c:c1:1e:f3:e8:c5:ad:f0:e6:cd:c1:
69:75:dc:7b:14:8b:a4:63:77:7b:77:15:21:3a:cd:
b4:23:c9:4a:ad:ee:2f:ad:3e:20:0d:50:a8:ef:f2:
98:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AF:83:FF:97:39:D3:52:2F:75:8A:AA:50:3F:5E:24:5F:D5:ED:0B
X509v3 Authority Key Identifier:
keyid:33:F0:04:1B:7C:C6:D4:13:9A:B2:3B:3C:D1:0C:56:E5:12:33:C5:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/33F0041B7CC6D4139AB23B3CD10C56E51233C589.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33F0041B7CC6D4139AB23B3CD10C56E51233C589.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/3130332e3135322e372e302f32342d3234203d3e20313430343236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.152.7.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:30:d9:97:bf:fe:24:d8:01:c6:0c:c3:0d:a7:81:91:4c:e1:
45:87:e7:e3:69:6d:db:10:24:df:d6:37:52:f5:73:35:e7:d0:
66:4e:78:3b:13:6c:48:48:1f:e9:0c:7f:4d:1d:2e:4a:4d:8f:
ff:4a:b1:80:ba:92:0a:f8:6d:c1:f8:72:85:3e:21:03:f2:d8:
4e:bd:74:07:e9:db:77:64:45:d9:f8:29:3c:a6:da:65:0e:f6:
d5:ec:7a:6a:66:79:a3:df:98:78:1e:79:55:47:8d:7e:85:62:
44:7a:dd:57:af:27:ca:95:25:eb:b3:c5:a9:58:ea:29:bb:ad:
7d:8f:32:ad:d7:52:27:8f:74:b2:10:e2:d6:af:f0:47:c4:4a:
91:5a:5d:be:dd:58:96:08:2c:13:3c:70:2f:cd:40:e3:5e:13:
c7:0d:d8:bc:18:aa:34:84:02:52:70:88:a2:a0:5e:0b:52:29:
99:7a:14:43:8e:81:c1:64:dd:39:f7:0c:10:8f:1f:92:21:a5:
06:5d:9b:68:be:15:c0:48:b3:7e:f6:e3:b9:92:9e:24:67:19:
e2:43:c8:82:b1:66:3e:55:bb:6d:77:4c:20:d6:e9:1e:08:15:
f9:4c:d9:99:61:89:6e:ed:21:93:cb:28:20:14:9c:10:c0:10:
3d:e6:45:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:00:55 2025 by rpki-client