Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/3130332e3136302e3139332e302f32342d3234203d3e20313530353433.roa
File: 3130332e3136302e3139332e302f32342d3234203d3e20313530353433.roa (raw, json)
Hash identifier: o2WSd88T5Yk4yDRaDAGYrx6ZV/9P+INdE5Ta2qKaOHI=
Subject key identifier: 56:D9:21:8D:2A:30:C6:36:92:98:69:7B:19:DC:2A:F8:7D:37:51:A1
Certificate issuer: /CN=6D3440FA38B51321C8A8FD8136BA70597A8686E0
Certificate serial: 39C73AC0E085E5F654B9FD5443A7EDD147653BA7
Authority key identifier: 6D:34:40:FA:38:B5:13:21:C8:A8:FD:81:36:BA:70:59:7A:86:86:E0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D3440FA38B51321C8A8FD8136BA70597A8686E0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/3130332e3136302e3139332e302f32342d3234203d3e20313530353433.roa
Signing time: Fri 03 May 2024 08:00:00 +0000
ROA not before: Fri 03 May 2024 07:55:00 +0000
ROA not after: Fri 02 May 2025 08:00:00 +0000
asID: 150543
IP address blocks: 103.160.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:c7:3a:c0:e0:85:e5:f6:54:b9:fd:54:43:a7:ed:d1:47:65:3b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D3440FA38B51321C8A8FD8136BA70597A8686E0
Validity
Not Before: May 3 07:55:00 2024 GMT
Not After : May 2 08:00:00 2025 GMT
Subject: CN=56D9218D2A30C6369298697B19DC2AF87D3751A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:03:ec:38:01:39:19:97:ca:1d:ab:71:03:6a:
0d:04:62:a0:24:a9:27:a3:bf:aa:61:22:56:ff:55:
51:1f:fd:6f:a8:e2:57:8f:d4:ce:58:f4:35:a6:fb:
36:50:96:46:8c:f7:a5:bf:03:a4:33:4e:f6:68:68:
95:26:f2:b2:ef:ec:4f:78:02:4d:c2:66:b5:f1:f4:
3a:c9:4d:6a:e8:32:69:ab:f9:2b:dd:b7:b4:7a:de:
87:9b:8d:be:aa:b9:fe:94:11:78:db:00:56:1c:ed:
2f:bc:9d:fe:35:77:b0:a2:a6:a9:72:bf:c7:d3:ad:
f5:be:21:0b:fc:f3:d2:46:48:cc:60:5b:6d:1b:ab:
8a:d6:a1:7f:f5:30:9d:c6:df:73:3d:27:03:91:87:
f1:be:63:3b:48:cb:a2:1f:11:7d:ab:bc:69:b4:74:
d2:f3:ab:8f:aa:ce:36:58:34:5e:b5:8a:bd:47:da:
c0:09:1f:91:69:33:64:c6:96:f2:eb:47:93:42:19:
47:34:64:cc:83:87:0d:ff:0c:f7:a9:6f:b0:37:14:
ae:3e:26:68:de:68:30:04:1d:66:d1:00:eb:86:3d:
82:5a:de:27:84:3c:5a:5b:32:5e:af:8e:cc:62:76:
0c:ed:f4:bb:f3:24:94:f7:c7:cc:43:72:9a:0f:0b:
78:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D9:21:8D:2A:30:C6:36:92:98:69:7B:19:DC:2A:F8:7D:37:51:A1
X509v3 Authority Key Identifier:
keyid:6D:34:40:FA:38:B5:13:21:C8:A8:FD:81:36:BA:70:59:7A:86:86:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/6D3440FA38B51321C8A8FD8136BA70597A8686E0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D3440FA38B51321C8A8FD8136BA70597A8686E0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/3130332e3136302e3139332e302f32342d3234203d3e20313530353433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.193.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:bc:6f:57:8d:d3:31:40:eb:0a:3b:7f:38:0c:d9:85:63:da:
a0:bd:63:64:99:a9:b6:5d:8b:ee:73:5c:e0:07:b6:17:f9:5f:
9f:d1:f9:8e:cd:68:76:f8:7a:53:b5:34:b5:e0:ab:c5:ad:b6:
e2:4c:72:0b:ee:7f:30:5a:71:81:1a:4d:98:05:8e:94:2b:70:
1b:f8:53:8a:a2:0a:6e:84:78:f8:a7:49:e4:ad:19:87:14:69:
9d:d5:48:b4:20:8c:84:0e:8c:ff:52:80:55:52:b5:11:fd:35:
fc:98:50:6d:b0:80:e5:a1:32:01:7d:9d:f0:c0:aa:75:eb:15:
75:f2:11:b3:38:9b:f7:25:4b:77:d6:ff:f7:b4:cd:8a:98:f8:
7e:12:6e:ca:6d:dc:b5:98:68:bd:ae:8b:31:7a:34:2f:a7:2e:
ce:25:16:17:90:d0:a8:1f:90:53:41:4f:5a:df:f5:d9:4f:b0:
00:6b:75:12:5d:be:80:21:4b:c0:af:dd:a5:a4:02:21:97:e3:
2a:40:ff:a0:33:cc:79:4f:48:8a:3f:7c:0b:b6:33:e9:0e:ea:
2b:f6:b4:7b:31:76:bc:90:12:7d:e3:88:e7:20:1a:9d:d2:fd:
d0:65:84:53:c8:f7:39:88:2b:4c:8b:89:ea:a1:1a:16:90:60:
e6:a1:cf:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:22 2025 by rpki-client