Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa
File: 3130332e34372e3133352e302f32342d3234203d3e203633383539.roa (raw, json)
Hash identifier: vkcujdZ/39Au/wJ2Cd7g42T7SVP95uPuSJkl+n4ENIE=
Subject key identifier: B9:47:F9:66:56:8B:83:79:D4:5F:A1:8B:81:0B:8F:F8:E4:17:DC:E4
Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4
Certificate serial: 3C46EF866A61032932C6319453199021BEBCF2AF
Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa
Signing time: Sun 11 Aug 2024 10:00:02 +0000
ROA not before: Sun 11 Aug 2024 09:55:02 +0000
ROA not after: Sun 10 Aug 2025 10:00:02 +0000
asID: 63859
IP address blocks: 103.47.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:46:ef:86:6a:61:03:29:32:c6:31:94:53:19:90:21:be:bc:f2:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4
Validity
Not Before: Aug 11 09:55:02 2024 GMT
Not After : Aug 10 10:00:02 2025 GMT
Subject: CN=B947F966568B8379D45FA18B810B8FF8E417DCE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a7:15:92:8b:d9:53:03:c8:03:1e:99:9b:a0:
b5:ab:ea:91:10:cf:3d:86:bd:7b:63:bc:3f:22:9b:
9e:51:04:85:ad:d0:06:ae:96:97:78:dd:3f:0f:37:
7f:5c:56:b8:13:70:4c:4b:bd:a4:79:cc:f7:a3:7e:
25:db:da:64:8e:8d:4a:13:97:f2:11:2d:03:f3:6b:
5c:e0:c7:b0:98:71:56:2c:62:5f:7f:0d:e1:de:c7:
c0:1a:b6:36:60:b4:91:7b:e6:3f:db:83:d1:d5:81:
de:85:68:c7:62:e0:d5:e9:32:6d:a6:53:b9:90:7f:
f8:3b:fb:27:89:7d:d0:fc:5d:36:0e:95:24:5c:ca:
64:1d:71:bb:90:18:df:d1:63:13:b7:3a:1d:fe:39:
71:20:e7:8b:83:89:25:fb:9e:ba:e6:e2:98:6c:41:
7c:fa:9b:bf:31:c1:81:b0:ac:b0:23:1c:f6:4b:e6:
ce:64:49:51:e9:46:a9:d4:f6:90:1b:7f:de:b4:08:
90:fd:1e:3b:48:cc:0f:8d:20:51:cd:f7:33:ca:2b:
7e:6d:25:aa:97:95:22:3d:09:5b:87:74:41:f0:14:
6d:9c:e0:6f:cd:c3:b0:1d:7c:ba:d5:4b:f0:8d:56:
b4:f7:66:4c:36:d6:73:dd:af:18:88:14:77:0d:93:
cf:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:47:F9:66:56:8B:83:79:D4:5F:A1:8B:81:0B:8F:F8:E4:17:DC:E4
X509v3 Authority Key Identifier:
keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.47.135.0/24
Signature Algorithm: sha256WithRSAEncryption
31:65:65:24:40:75:59:62:93:52:64:a3:20:7d:b1:6a:90:f7:
9d:1f:1f:4e:ac:a3:7d:d7:b8:d2:9e:70:e2:f3:7c:15:b1:f5:
fb:65:de:3f:20:d3:5e:cb:7f:ac:06:2f:48:13:8b:de:39:44:
54:97:af:a8:2b:33:90:b2:35:9c:60:b0:6d:90:c1:1b:75:a0:
26:fa:a4:07:5c:c2:32:85:35:28:72:4e:0d:d8:73:5a:41:7c:
92:da:4c:06:2f:10:08:db:fe:9d:3e:50:ce:fc:62:e0:4b:9e:
da:30:57:7f:b3:99:e1:e7:1b:7a:74:59:ad:d7:bd:20:69:bc:
0c:63:c1:96:f1:fc:9d:d4:81:13:f7:ab:ec:e3:60:50:6b:9a:
c5:c9:69:43:32:85:f1:98:f9:74:ca:ff:7d:40:e6:1e:60:d2:
45:7d:ec:28:69:e7:04:59:9d:2d:99:c2:d8:26:57:02:7e:3c:
d7:d5:64:99:a2:67:d3:29:c3:5c:f3:c3:15:71:24:b8:08:47:
e3:28:f1:c2:77:29:97:18:1b:5d:e0:1f:96:9e:8a:74:ce:70:
4b:40:83:46:3d:02:a9:9d:5d:88:26:e5:06:aa:f7:7a:9b:2c:
89:2b:89:02:ac:6b:e2:d3:c0:27:29:f1:7f:c9:43:20:b4:0b:
e8:27:ae:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:46:26 2025 by rpki-client