Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230302e302f32342d3234203d3e20313431303733.roa
File: 3130332e3135352e3230302e302f32342d3234203d3e20313431303733.roa (raw, json)
Hash identifier: 8OFb1YqFfLvVOmD9iCOmQ7wZPC6oC3tNwJjYHrbkdvQ=
Subject key identifier: F3:63:E9:C6:54:45:48:04:BC:8D:7E:45:4B:6A:43:CD:7B:AA:52:CC
Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44
Certificate serial: 04A3932F17DC6830B077C0AEFDE558B860D628C9
Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230302e302f32342d3234203d3e20313431303733.roa
Signing time: Mon 01 Jul 2024 01:05:07 +0000
ROA not before: Mon 01 Jul 2024 01:00:07 +0000
ROA not after: Mon 30 Jun 2025 01:05:07 +0000
asID: 141073
IP address blocks: 103.155.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:a3:93:2f:17:dc:68:30:b0:77:c0:ae:fd:e5:58:b8:60:d6:28:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44
Validity
Not Before: Jul 1 01:00:07 2024 GMT
Not After : Jun 30 01:05:07 2025 GMT
Subject: CN=F363E9C654454804BC8D7E454B6A43CD7BAA52CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:94:c6:be:a3:28:29:6a:a0:f2:1b:04:52:1a:
4c:7d:11:41:62:f3:8b:04:e4:8d:2b:2b:a1:8a:24:
8d:16:4f:13:7d:21:eb:31:86:78:05:0c:4f:8e:1a:
60:2b:eb:74:26:dc:7f:cf:b4:f2:54:12:2f:b5:9d:
57:89:f7:df:d6:eb:fc:f7:dd:77:1e:5b:04:07:35:
d9:f4:18:cf:36:5c:f3:7f:6b:d2:5a:de:15:99:35:
01:e0:ea:b5:d6:2c:e0:c3:0e:ab:01:c3:48:fd:ab:
71:81:b3:89:2c:34:a2:d9:31:f0:99:04:9d:81:65:
f0:0f:81:8c:dd:8c:20:f2:65:72:5b:03:0d:e1:e9:
2f:de:50:8a:d7:ef:e4:49:3f:cc:08:4b:5f:4e:0e:
8e:fb:03:75:da:1a:cd:66:49:df:cc:d2:4b:8a:03:
44:70:19:91:4a:b2:db:1c:ac:ee:55:c2:ba:fa:4c:
fa:ca:9b:df:78:98:dc:05:45:a7:e4:92:f6:3c:a1:
fb:0b:22:9f:aa:b5:e3:a4:51:0c:41:13:2c:da:49:
0c:62:8e:5f:68:e1:6d:11:32:d7:cd:b3:b5:8f:3e:
40:4c:06:4b:72:33:04:1a:0a:17:a8:c3:ab:84:ea:
be:42:3f:53:65:ac:2a:07:60:cc:63:9e:41:5b:04:
1a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:63:E9:C6:54:45:48:04:BC:8D:7E:45:4B:6A:43:CD:7B:AA:52:CC
X509v3 Authority Key Identifier:
keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/3130332e3135352e3230302e302f32342d3234203d3e20313431303733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.155.200.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:bd:56:fa:d9:ad:1b:e3:4c:b6:36:9d:b1:3c:a5:6d:be:0a:
d4:d9:3f:4a:d7:dc:54:96:ec:56:16:da:a6:2c:80:14:e8:bb:
ac:92:40:80:6b:38:3e:4f:76:8d:ce:b1:3a:59:38:26:d0:6d:
c9:98:8f:ad:49:90:c3:4b:3c:32:0f:d6:cf:e1:dc:ca:39:b4:
15:af:af:8e:af:8a:2c:4e:1e:ad:8c:a1:a1:3a:81:7b:58:f8:
d5:58:9a:0f:46:cd:4a:23:ce:da:b1:a1:b3:1d:e8:97:ad:ac:
69:57:f0:5a:24:52:b3:64:e3:03:99:7b:99:1b:85:e9:43:35:
3b:f6:37:44:e8:0d:11:f3:b4:1e:98:6d:e8:d3:82:c3:fb:3c:
4c:3c:68:c5:c8:6d:60:42:76:07:61:a9:36:99:7c:d2:13:58:
0a:97:e8:03:29:82:49:47:3e:1b:91:30:fd:59:ea:c0:86:ac:
3a:da:d8:a7:bc:aa:4a:b5:e9:dd:5c:22:eb:f5:93:ec:22:08:
80:c0:33:2e:30:ae:cb:0b:1d:c7:59:10:00:50:cd:7d:4f:40:
6b:44:66:e1:45:fa:f9:da:83:e8:bd:c6:ac:81:dc:49:db:e2:
5d:db:56:9e:60:34:3e:ba:0d:13:06:07:d8:58:df:71:65:5d:
a2:cd:a5:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:54:36 2025 by rpki-client