Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/3130332e3136342e3135312e302f32342d3234203d3e20313431393039.roa
File: 3130332e3136342e3135312e302f32342d3234203d3e20313431393039.roa (raw, json)
Hash identifier: 74TGkae1+QCuTSaWAZ/1dR0+kJTY94tmxgSufeIPFe8=
Subject key identifier: 04:E9:4B:95:54:E9:92:50:01:F7:E2:11:64:CC:E8:83:E9:E7:A2:9F
Certificate issuer: /CN=26C01247693F68CFDA1F8CB6B88F7A3700D30001
Certificate serial: 116074FD45CAA6AEBE204C87E93A8AA1094FEC26
Authority key identifier: 26:C0:12:47:69:3F:68:CF:DA:1F:8C:B6:B8:8F:7A:37:00:D3:00:01
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26C01247693F68CFDA1F8CB6B88F7A3700D30001.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/3130332e3136342e3135312e302f32342d3234203d3e20313431393039.roa
Signing time: Fri 08 Nov 2024 11:00:02 +0000
ROA not before: Fri 08 Nov 2024 10:55:02 +0000
ROA not after: Fri 07 Nov 2025 11:00:02 +0000
asID: 141909
IP address blocks: 103.164.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:60:74:fd:45:ca:a6:ae:be:20:4c:87:e9:3a:8a:a1:09:4f:ec:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26C01247693F68CFDA1F8CB6B88F7A3700D30001
Validity
Not Before: Nov 8 10:55:02 2024 GMT
Not After : Nov 7 11:00:02 2025 GMT
Subject: CN=04E94B9554E9925001F7E21164CCE883E9E7A29F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:77:f0:80:4f:80:5b:e6:87:71:c4:3a:d5:3a:
03:5b:86:1a:bc:52:3b:f0:c2:1b:a0:6b:c4:06:57:
42:ae:2e:de:b7:83:80:da:0c:0f:94:a2:67:32:55:
34:88:51:aa:92:a2:69:ca:e1:6b:a0:a7:83:37:f5:
87:3d:9c:d3:94:00:95:64:93:bd:41:6d:34:95:fd:
1d:19:d9:dd:7a:39:18:04:e4:a8:7c:18:e1:7b:a3:
5d:31:d7:ca:a2:11:72:fe:47:63:98:02:4b:e5:fd:
2d:3b:94:05:a1:39:59:17:8f:09:39:17:8c:c2:02:
e7:9d:bf:d1:4d:b7:9b:03:8a:a6:47:e8:19:eb:ab:
1b:54:42:cf:8c:3f:a6:0f:de:3e:c7:58:86:5d:3a:
7d:85:b2:16:83:4a:e2:9a:44:a8:cb:d6:17:71:8b:
0a:c0:be:e1:a1:8a:f4:2c:05:58:fb:01:4a:9b:18:
8e:23:21:42:1c:55:3b:fa:27:a1:8a:d1:b4:3b:20:
ed:73:34:31:87:d1:c9:74:b6:15:04:be:99:26:9d:
13:65:66:06:ca:87:d2:9d:e5:36:a2:ff:8b:1e:5f:
15:ef:96:fd:6b:24:c1:e1:2d:d4:ff:ed:7c:bf:49:
bf:6b:cf:ab:83:38:9e:6c:ad:8a:4d:da:b2:e9:2d:
af:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E9:4B:95:54:E9:92:50:01:F7:E2:11:64:CC:E8:83:E9:E7:A2:9F
X509v3 Authority Key Identifier:
keyid:26:C0:12:47:69:3F:68:CF:DA:1F:8C:B6:B8:8F:7A:37:00:D3:00:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/26C01247693F68CFDA1F8CB6B88F7A3700D30001.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26C01247693F68CFDA1F8CB6B88F7A3700D30001.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/3130332e3136342e3135312e302f32342d3234203d3e20313431393039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.164.151.0/24
Signature Algorithm: sha256WithRSAEncryption
e9:38:0c:7d:be:0a:03:bb:4e:23:15:35:a2:6f:c3:de:20:f1:
59:d2:18:5b:08:c6:f0:4a:eb:6a:66:6e:54:98:2d:1e:74:cc:
6e:cc:87:1e:01:f7:2e:b2:6d:15:cd:85:5d:82:2c:f3:b9:af:
62:40:27:88:64:d4:3b:1b:22:fe:79:26:19:76:81:48:56:40:
ca:df:46:01:91:0f:6e:3f:51:14:6c:7b:b6:9e:14:f4:95:da:
f7:80:b9:40:e3:cd:b8:69:3d:30:ad:d7:32:0b:27:13:f0:bd:
e8:7d:24:3a:50:2b:dd:4a:ef:80:52:d6:32:fe:a7:03:f2:ab:
30:f5:8a:89:95:1a:2d:38:e3:89:5f:27:88:31:29:4a:f7:99:
f9:f2:f9:a6:91:53:28:09:1b:80:ba:1b:2a:58:f7:c8:36:b1:
e2:fe:4c:84:e7:58:87:a0:1f:39:9f:0a:14:b7:ea:85:2d:c6:
19:ee:aa:37:9a:7b:13:3c:f2:21:ef:9f:f6:d7:7f:0a:1c:e1:
38:99:3b:ef:30:93:9c:01:33:c1:5a:2a:cf:c4:38:7a:42:17:
d3:85:37:37:52:8c:68:b7:3b:48:06:e6:ae:ba:58:11:d4:1e:
fd:43:49:42:0a:9d:a2:d0:3b:67:53:7d:00:7a:c5:6b:4e:df:
29:f0:a6:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:46:52 2025 by rpki-client