Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa
File: 3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa (raw, json)
Hash identifier: cUkI2R3JO2gQ9nm4tDMmxUk21C75l0D2xIC/jejXp/0=
Subject key identifier: 48:42:BE:E1:BD:0B:22:1C:EF:70:8A:2B:86:66:82:43:44:A2:CC:65
Certificate issuer: /CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D
Certificate serial: 6A82CA3F4D915207AC78E62A78C361D05B4D2FA7
Authority key identifier: 15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa
Signing time: Sun 27 Oct 2024 15:00:53 +0000
ROA not before: Sun 27 Oct 2024 14:55:53 +0000
ROA not after: Sun 26 Oct 2025 15:00:53 +0000
asID: 149409
IP address blocks: 103.164.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:82:ca:3f:4d:91:52:07:ac:78:e6:2a:78:c3:61:d0:5b:4d:2f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D
Validity
Not Before: Oct 27 14:55:53 2024 GMT
Not After : Oct 26 15:00:53 2025 GMT
Subject: CN=4842BEE1BD0B221CEF708A2B8666824344A2CC65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ec:93:7d:e5:5d:7d:5f:48:e0:02:f5:ee:54:
8e:10:e6:fa:db:1a:db:f1:7d:0b:18:24:4d:ab:96:
52:1e:d8:d8:10:d9:c7:4c:22:2b:bd:96:15:fc:f4:
f4:b9:b3:03:9b:b4:0e:b7:39:ea:41:b9:24:e6:78:
51:ac:cb:99:cd:44:d8:5e:52:79:cf:fc:55:fc:87:
44:35:6e:6f:4f:8b:18:d5:57:d5:28:c2:7b:36:0b:
ed:72:1e:58:84:4c:d2:d1:dc:a4:e6:63:ea:15:6a:
51:6b:a9:8d:8a:0b:ca:d2:ab:22:27:f2:51:4f:f3:
b3:de:b3:4f:65:ec:ea:9b:0b:5e:d0:73:76:2d:7b:
d7:bf:e8:ba:59:92:ac:79:87:61:06:f1:f5:95:98:
d9:6f:e9:6c:1d:90:53:7f:12:b3:cb:b6:8d:26:b6:
67:c4:4d:64:e0:bd:2a:53:98:b2:bc:a8:ce:d8:ff:
b4:d3:3f:75:fe:c8:72:a6:92:8b:c4:1e:85:e8:85:
d5:84:bf:21:e0:b4:35:6e:44:56:c2:8c:5e:bb:5b:
e4:3a:7a:ca:2e:54:84:34:28:d1:40:91:b7:62:56:
2d:46:d8:b0:2a:2d:94:c5:d8:69:a6:e1:72:da:07:
98:ec:80:13:e7:e7:ed:c1:fb:f7:14:53:74:e4:d3:
ed:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:42:BE:E1:BD:0B:22:1C:EF:70:8A:2B:86:66:82:43:44:A2:CC:65
X509v3 Authority Key Identifier:
keyid:15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.68.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:2b:48:3d:a1:6a:2a:64:3f:d3:44:21:6b:26:fb:9e:d0:0f:
9f:ee:fb:20:af:26:6e:26:80:66:32:b9:2c:5d:76:8c:27:e7:
14:8a:c9:20:13:8c:38:d8:b7:e2:d2:39:1c:0b:dc:17:70:69:
c3:19:4d:44:8a:71:59:23:9c:d0:b6:6a:dc:c3:80:22:91:34:
db:fa:0d:7a:ba:bb:1f:31:c5:16:dc:23:5c:de:74:33:19:6c:
40:c1:15:70:ea:8c:6d:6b:5c:2d:31:6f:f5:2a:75:eb:28:05:
b0:7b:02:57:66:c2:e4:b6:e0:d0:6e:b4:7a:e7:bd:69:21:ab:
f5:e8:db:01:c7:0f:77:d0:4f:a9:d1:7e:10:bf:1c:cd:10:c8:
38:9a:3b:d8:1d:7d:87:4b:be:63:88:f5:9f:d4:ba:20:63:7c:
97:d4:f9:e8:b8:21:9f:7f:d0:53:51:97:bd:83:19:19:0b:75:
11:7c:66:d7:b5:a5:b1:af:98:10:16:0d:47:dc:80:7f:98:06:
18:9a:2b:99:be:1d:37:ce:b6:e6:90:2d:96:a6:b8:4a:65:b7:
69:8b:fa:79:47:4c:14:4f:41:98:0b:38:1a:fe:6d:d7:80:74:
d9:b1:65:f0:d0:d7:7b:c0:05:88:0c:63:ce:76:07:58:9f:ab:
40:b5:bd:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:41:33 2025 by rpki-client