Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa
File: 3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa (raw, json)
Hash identifier: ii+HEOYSI26ONdCQzTSyl9DTOtWXGw12f4RUOO1wwl4=
Subject key identifier: C3:7D:82:A6:B0:A5:79:8B:D0:19:BC:EC:FA:8C:EE:5B:2B:44:88:DA
Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F
Certificate serial: 71A3BEA5596BDE083F3D35E65B539BBA44DA1F35
Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa
Signing time: Mon 01 Jul 2024 01:03:26 +0000
ROA not before: Mon 01 Jul 2024 00:58:26 +0000
ROA not after: Mon 30 Jun 2025 01:03:26 +0000
asID: 137378
IP address blocks: 103.119.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:a3:be:a5:59:6b:de:08:3f:3d:35:e6:5b:53:9b:ba:44:da:1f:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F
Validity
Not Before: Jul 1 00:58:26 2024 GMT
Not After : Jun 30 01:03:26 2025 GMT
Subject: CN=C37D82A6B0A5798BD019BCECFA8CEE5B2B4488DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9c:c0:df:4c:5c:8d:3d:54:35:3a:ca:69:28:
0a:01:c1:d2:68:97:58:d1:b4:fa:8b:7d:e8:3d:22:
58:f4:34:3b:25:d6:5d:0a:15:80:b0:34:70:4b:65:
4a:8f:69:34:31:2f:fb:2d:1d:17:34:45:8c:75:94:
2b:8c:c4:41:74:77:47:86:40:f0:69:63:43:c9:e6:
ef:57:53:4e:ae:c5:48:cd:8e:c7:4a:6c:6b:53:08:
97:e3:bc:7f:4e:d5:95:cb:ea:76:00:28:ed:4e:c4:
a1:c6:05:a4:19:d0:0c:c4:36:38:71:2a:f0:65:2a:
55:d0:7b:75:98:a4:7e:96:69:60:1e:6e:94:70:d3:
af:a9:df:c4:4d:54:4f:48:7b:41:51:c6:9f:59:54:
f9:ba:9e:8e:af:54:2d:04:9d:5b:a3:52:6a:47:86:
c8:ff:6b:8b:a6:64:eb:5b:ee:f1:a1:a3:0c:78:b6:
02:63:56:6c:cf:c8:a4:b7:5b:36:8b:c8:28:ca:65:
ea:69:d0:95:d0:5d:5d:65:58:5b:b6:bf:2a:d8:e9:
a9:22:70:d6:60:73:68:51:7e:7c:c4:ec:0f:de:2d:
9d:1b:32:d5:c4:79:2a:79:76:9a:98:17:91:83:a3:
c5:43:e8:c0:9c:f1:73:0a:4f:48:df:fc:bb:b7:ee:
9c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7D:82:A6:B0:A5:79:8B:D0:19:BC:EC:FA:8C:EE:5B:2B:44:88:DA
X509v3 Authority Key Identifier:
keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.117.0/24
Signature Algorithm: sha256WithRSAEncryption
74:64:4f:65:23:db:8a:77:02:b7:1c:e0:b8:f1:3d:fc:8f:1d:
39:ed:4d:46:58:e7:ac:41:77:b9:5a:e0:fb:55:cd:49:5b:46:
fc:16:ea:9c:98:03:5e:05:29:98:c7:2e:c6:73:d6:74:10:5e:
45:44:4b:4b:cd:c0:35:43:aa:5d:1f:0a:88:7b:94:99:97:2b:
7b:c8:ab:bf:d4:81:e9:29:59:3a:90:0f:bd:d8:37:12:07:14:
d9:6a:b8:c9:63:36:27:eb:23:c6:f9:4b:5d:07:1d:d4:58:61:
10:ef:7c:05:65:76:60:40:45:93:d6:1c:4f:f8:dc:2f:bd:bb:
12:a9:cf:1b:dd:e8:9d:3a:58:bc:b6:1b:8f:82:4c:4e:0b:b1:
35:85:5f:ea:be:8f:26:b1:60:e7:2d:48:60:0c:5f:85:ba:0c:
eb:4f:69:60:67:c9:cc:e6:a5:cf:f2:df:15:ef:08:e2:0f:af:
b2:15:ac:aa:b5:db:85:b1:69:0e:a5:6b:26:f2:89:a3:41:42:
2e:3c:b7:6d:67:f0:d5:aa:d6:a3:10:b5:8c:a9:fc:c4:8d:e5:
06:51:41:0f:bb:73:00:fa:5e:87:7b:ec:29:66:1f:86:98:aa:
99:86:44:29:83:22:bf:e6:4d:43:4b:49:a2:fc:28:3c:9b:91:
6f:f7:0a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:02:20 2025 by rpki-client