Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa
File: 3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa (raw, json)
Hash identifier: wn8mnwMzffhjqaH3mMBTlGmbXGRcg3dHonFKFCyctVQ=
Subject key identifier: 17:4A:6D:26:33:FD:05:E4:3B:88:75:74:D3:D3:96:C3:A0:70:8C:89
Certificate issuer: /CN=E420F134FA1A6BA70588424BD4E862EE6C50C188
Certificate serial: 1D1AFF52097B3B5B6847D89BEABEA4B3A21C0279
Authority key identifier: E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa
Signing time: Mon 01 Jul 2024 01:05:29 +0000
ROA not before: Mon 01 Jul 2024 01:00:29 +0000
ROA not after: Mon 30 Jun 2025 01:05:29 +0000
asID: 63885
IP address blocks: 103.194.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:1a:ff:52:09:7b:3b:5b:68:47:d8:9b:ea:be:a4:b3:a2:1c:02:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E420F134FA1A6BA70588424BD4E862EE6C50C188
Validity
Not Before: Jul 1 01:00:29 2024 GMT
Not After : Jun 30 01:05:29 2025 GMT
Subject: CN=174A6D2633FD05E43B887574D3D396C3A0708C89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c3:c0:cb:e8:59:dd:e9:1d:67:90:ec:5f:a8:
38:78:a3:21:12:3b:43:a7:f0:94:ca:f6:cf:0a:9e:
f1:fe:0d:87:81:05:af:8b:be:99:76:5b:0c:7b:5d:
ae:51:c1:d4:4e:fa:ae:15:ce:44:a7:db:23:ed:de:
ae:55:8d:58:1c:92:e9:82:03:71:99:9d:48:d4:5a:
37:28:a8:a6:ce:02:69:51:b6:3d:b1:90:8e:c9:1b:
0e:82:e5:d6:1e:64:c1:56:c8:b5:ed:38:97:37:c3:
fd:6a:bf:75:08:6d:0c:cb:6b:2c:8f:a1:a0:bd:b2:
c7:9c:c8:4c:6a:4d:b8:95:eb:4f:8a:3c:51:34:ab:
21:b5:56:7e:e6:e2:e4:f5:a2:44:38:08:07:88:ec:
07:11:2c:d8:02:71:68:83:c4:6c:08:13:47:ac:b6:
6c:30:58:a3:d3:66:da:54:c1:c7:9f:57:33:de:db:
1e:74:f0:95:20:f4:4b:3a:fd:63:c1:97:c2:7c:fd:
34:79:03:66:04:d8:6d:2b:28:2f:24:50:96:0f:fb:
e3:63:f1:0d:96:bb:7a:a8:66:db:e0:0a:63:9c:e4:
34:dd:85:65:ec:8b:47:f5:ac:a8:b3:01:cb:6b:8a:
0d:a1:dd:5b:b0:3c:f5:9b:04:26:61:c8:31:c5:83:
f3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4A:6D:26:33:FD:05:E4:3B:88:75:74:D3:D3:96:C3:A0:70:8C:89
X509v3 Authority Key Identifier:
keyid:E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/3130332e3139342e3137322e302f32322d3234203d3e203633383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.194.172.0/22
Signature Algorithm: sha256WithRSAEncryption
13:f1:8e:2b:7d:c8:31:81:6c:3c:ce:e6:b0:b6:49:24:26:09:
de:e9:f7:0c:ce:65:b5:dd:10:87:50:e8:88:b5:7a:8d:b5:69:
77:6c:e4:8d:f9:b7:d7:cf:b2:50:77:9c:1e:5a:6b:1d:2d:91:
01:40:f3:0d:0e:a7:18:ce:b8:1a:ba:79:f2:60:82:48:c3:0e:
b1:7b:5c:d4:c2:2c:b7:ba:d4:12:4e:b8:a4:f6:5c:03:b3:d4:
77:73:d3:16:cf:1a:a6:78:bb:d0:b7:b6:08:c4:94:37:04:21:
10:16:a2:17:96:d7:d3:7d:99:ce:28:d8:04:d4:98:4d:88:74:
cc:1e:69:46:45:a4:5c:9f:77:fd:83:14:35:30:2f:2d:8b:b0:
a0:15:ee:7d:19:c3:b3:fb:6f:7d:d3:9b:8e:71:6b:99:47:ec:
cb:a4:e1:df:8a:78:18:18:b5:95:59:b6:6c:ae:fa:08:81:0c:
29:7f:29:d4:d3:a9:0c:04:63:58:5d:80:ec:79:a2:7a:79:84:
2c:5e:29:21:f2:ab:69:97:96:c8:0a:65:af:73:d5:6f:82:4a:
03:5e:3b:9d:14:d2:08:8b:8e:f2:c1:ad:42:e6:d9:0a:d4:21:
af:c3:36:68:9f:11:53:fb:b6:5c:9d:d0:18:70:17:b8:4e:b5:
32:00:78:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:40:12 2025 by rpki-client