Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133332e302f32342d3234203d3e203633383539.roa
File: 3130332e34372e3133332e302f32342d3234203d3e203633383539.roa (raw, json)
Hash identifier: 0xS1n+w9VXczMS13QZF1W/J/5uwMSBEtc22dFFlfKPU=
Subject key identifier: 12:89:DB:16:1D:C4:8F:D8:4A:3B:8A:F0:D9:C4:96:49:B8:77:A1:06
Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4
Certificate serial: 37BCE38AB31C1D5A71423F440079E3E82078DAAD
Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133332e302f32342d3234203d3e203633383539.roa
Signing time: Sun 11 Aug 2024 09:00:02 +0000
ROA not before: Sun 11 Aug 2024 08:55:02 +0000
ROA not after: Sun 10 Aug 2025 09:00:02 +0000
asID: 63859
IP address blocks: 103.47.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:bc:e3:8a:b3:1c:1d:5a:71:42:3f:44:00:79:e3:e8:20:78:da:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4
Validity
Not Before: Aug 11 08:55:02 2024 GMT
Not After : Aug 10 09:00:02 2025 GMT
Subject: CN=1289DB161DC48FD84A3B8AF0D9C49649B877A106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ad:c3:b2:4c:a7:d3:e8:62:d4:2b:35:5f:1f:
95:dc:6e:57:c6:7f:b8:19:e9:86:7e:cc:9c:f8:49:
0b:4e:5f:c2:4b:ea:c3:7c:db:0f:21:ff:5b:3e:93:
cb:3e:81:6e:cd:16:82:5d:38:d4:62:cb:6b:2e:f7:
ce:00:da:e9:3b:18:ec:5a:0c:06:15:2a:42:de:aa:
35:60:c3:33:e8:34:73:68:7a:d3:f9:b6:e9:a8:dd:
90:09:49:ca:6c:63:a2:ed:8a:b8:ee:d1:89:01:f6:
b4:05:e2:e8:32:62:62:fb:7d:b7:0a:bb:83:c2:9d:
6f:64:5a:a3:e1:ed:c4:40:9f:6d:46:99:c4:e8:46:
01:58:eb:e6:e5:f1:a4:8f:72:b5:b1:2a:ec:e1:b1:
ee:fe:52:f9:48:74:42:d2:c9:29:e6:2a:bd:5e:79:
75:8b:a4:4b:6b:ad:98:0b:4f:7f:68:82:3f:e6:10:
7e:1e:ab:57:c9:bb:2b:8f:5b:08:8d:31:30:52:c4:
f4:c4:f6:c4:84:e0:2e:56:89:98:48:88:3a:c8:ee:
86:cd:6c:29:12:46:72:1d:a3:a3:15:6a:69:bc:08:
01:75:47:e8:32:4b:28:c7:d9:8b:31:21:53:dc:ce:
47:0d:03:21:e8:10:dc:ef:76:9c:f1:58:86:24:0a:
f1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:89:DB:16:1D:C4:8F:D8:4A:3B:8A:F0:D9:C4:96:49:B8:77:A1:06
X509v3 Authority Key Identifier:
keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133332e302f32342d3234203d3e203633383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.47.133.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:ff:ef:37:98:3e:79:5f:e6:76:66:d3:c9:f7:f0:ca:3e:4b:
ea:5b:af:82:e3:b9:75:ed:a6:5e:fe:39:55:50:f5:a2:84:d8:
0a:aa:33:3c:fe:23:b4:7f:0d:98:a7:6b:cd:e0:4c:83:53:0e:
f4:75:4e:ee:91:81:56:c1:86:a2:b0:e8:23:94:4c:0d:41:b6:
d4:ff:d5:bc:de:72:f6:c6:ef:c6:f9:b9:5f:bc:b3:20:ac:92:
98:e7:69:8a:ed:da:d9:29:ce:40:a3:9b:8b:36:c1:5b:ed:45:
70:a5:21:98:db:73:0f:83:0a:ed:c6:f5:22:8c:3b:54:68:81:
77:af:8c:d8:38:cc:23:a1:5c:d8:b9:a6:40:20:fd:de:1f:c0:
9f:f5:74:46:32:34:73:d1:bb:32:ab:d3:98:18:b5:a8:04:6e:
8f:1b:be:df:8a:0b:34:18:33:13:b2:cd:8e:5c:00:d2:00:ff:
10:21:87:0b:c2:87:5a:78:53:d0:c2:78:4c:31:d4:e4:2e:49:
a9:89:a8:f0:4b:37:29:34:8c:33:30:fa:f9:fb:19:fa:1a:b9:
d9:3c:e6:ad:25:c6:f1:0e:0b:12:2f:d5:44:ce:41:ca:4b:11:
99:bb:d7:64:f7:77:75:46:23:7b:db:19:8e:d2:31:c9:eb:07:
63:c7:75:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:46:24 2025 by rpki-client