Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/3130332e3137372e39362e302f32332d3234203d3e20313331313131.roa
File: 3130332e3137372e39362e302f32332d3234203d3e20313331313131.roa (raw, json)
Hash identifier: tXcQSjFRgRXWYm56Zc7JHT0yut/bAGiDVFBVYQq84Lg=
Subject key identifier: 01:85:5A:49:02:38:57:F0:0B:07:52:4C:7F:2C:ED:90:C0:EA:94:F0
Certificate issuer: /CN=1811CB623E9BFFB82945CA39C74C4C274914837F
Certificate serial: 61B2C5E7AEB941BC45245D67CE1B9BE3545DFF63
Authority key identifier: 18:11:CB:62:3E:9B:FF:B8:29:45:CA:39:C7:4C:4C:27:49:14:83:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1811CB623E9BFFB82945CA39C74C4C274914837F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/3130332e3137372e39362e302f32332d3234203d3e20313331313131.roa
Signing time: Fri 11 Oct 2024 09:02:50 +0000
ROA not before: Fri 11 Oct 2024 08:57:50 +0000
ROA not after: Fri 10 Oct 2025 09:02:50 +0000
asID: 131111
IP address blocks: 103.177.96.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:b2:c5:e7:ae:b9:41:bc:45:24:5d:67:ce:1b:9b:e3:54:5d:ff:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1811CB623E9BFFB82945CA39C74C4C274914837F
Validity
Not Before: Oct 11 08:57:50 2024 GMT
Not After : Oct 10 09:02:50 2025 GMT
Subject: CN=01855A49023857F00B07524C7F2CED90C0EA94F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:71:e5:b5:6e:1c:0b:73:db:54:91:e6:b9:62:
86:62:85:4a:9c:ff:b7:fa:a4:66:e7:0a:38:73:ec:
cf:a1:8b:6a:a7:6d:69:fc:27:7e:7b:c7:fb:d9:cc:
ae:a8:df:e1:d1:df:85:48:52:da:3b:8b:b8:0b:d8:
c2:95:1a:42:67:48:bc:6a:32:b2:d7:59:1a:77:0c:
32:31:0f:4c:17:c0:a1:f6:c8:cb:c2:aa:34:ca:22:
48:e4:80:28:df:ea:0c:09:f4:02:bd:a0:e5:3d:d2:
36:01:bf:f6:87:e3:f4:ba:b2:2d:f0:06:20:29:e9:
61:a2:45:5c:fa:5e:9c:9b:0e:9c:a0:65:fb:3b:0c:
04:90:89:71:9a:9e:af:4a:cf:e7:48:ce:fc:45:d4:
c7:d2:c6:96:3f:65:91:83:fe:c7:d4:9a:f3:07:f5:
68:ab:15:77:31:53:c0:26:ea:46:99:80:da:f1:7a:
cb:cd:40:b5:f7:fe:e6:da:55:5b:4c:fe:2a:b9:fd:
68:5a:4e:ed:02:0f:07:2c:78:86:17:10:ea:f2:d4:
84:f1:5b:41:18:0f:c2:df:ca:11:85:c9:84:56:6a:
84:e5:7a:5d:0f:95:5e:b6:11:61:c9:f6:f1:9a:51:
b3:73:9a:0d:66:04:2d:f8:05:b2:22:7e:a4:3d:82:
22:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:85:5A:49:02:38:57:F0:0B:07:52:4C:7F:2C:ED:90:C0:EA:94:F0
X509v3 Authority Key Identifier:
keyid:18:11:CB:62:3E:9B:FF:B8:29:45:CA:39:C7:4C:4C:27:49:14:83:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/1811CB623E9BFFB82945CA39C74C4C274914837F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1811CB623E9BFFB82945CA39C74C4C274914837F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e87f1d1-06fb-436b-9ce6-92daa29f1f9b/0/3130332e3137372e39362e302f32332d3234203d3e20313331313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.177.96.0/23
Signature Algorithm: sha256WithRSAEncryption
92:5e:84:d1:66:84:c3:ec:81:2c:65:f4:7f:35:51:fc:e0:b7:
7a:54:70:20:47:59:4b:db:5d:a8:a4:8a:6e:c3:6b:ff:ba:bb:
2f:0c:5a:d7:a2:34:6e:e2:e0:18:75:62:df:ac:aa:85:8e:69:
75:e2:d0:ef:3c:d5:bb:0a:88:ef:9d:a8:ad:91:6c:00:e9:ee:
ca:68:c3:dd:0a:a5:c2:a2:90:87:a1:0f:cd:a7:6b:d4:4e:3d:
b6:3c:f7:e1:86:19:ea:d6:6b:6f:8a:29:eb:cb:6e:cc:b3:41:
6d:95:c5:a3:be:a3:04:aa:c8:b5:c0:80:aa:fa:61:8a:f8:6f:
50:5a:94:71:b3:4c:ef:6e:72:2d:3f:36:88:de:90:94:e9:99:
d7:6f:4d:ff:7c:30:c3:a2:17:80:fd:bc:03:6b:8b:f0:bc:a6:
da:fd:b2:73:80:dd:35:9a:18:3c:68:2f:b9:da:b9:58:6d:7a:
eb:9a:7a:51:02:92:61:9c:c9:a9:f0:4d:62:9a:25:c7:50:62:
72:9c:06:69:21:66:d6:9e:91:16:f4:f4:1e:78:bf:ec:d8:88:
02:e2:ca:ec:41:e5:ac:b5:10:b8:02:37:9e:63:19:84:af:a5:
35:6b:03:af:60:42:b9:74:18:56:08:22:ff:51:47:86:b8:08:
8c:e9:3f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:37:42 2025 by rpki-client