Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/3130332e34362e342e302f32342d3234203d3e20313530343630.roa
File: 3130332e34362e342e302f32342d3234203d3e20313530343630.roa (raw, json)
Hash identifier: 70RFcRoz1w22nVDdjd8xwvOHx9oaAPRDsiAFJSjZRVk=
Subject key identifier: CF:F9:5D:EB:97:85:D5:91:FA:A3:F8:04:70:5C:7F:B7:CB:AB:0E:62
Certificate issuer: /CN=7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953
Certificate serial: 520D6BF9F7D0AB11733DC9C8662754D3FECC951A
Authority key identifier: 7D:6E:DF:DB:21:B8:B7:E6:A7:5A:99:0A:7B:EC:AD:85:E8:BE:B9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/3130332e34362e342e302f32342d3234203d3e20313530343630.roa
Signing time: Sat 23 Nov 2024 07:02:32 +0000
ROA not before: Sat 23 Nov 2024 06:57:32 +0000
ROA not after: Sat 22 Nov 2025 07:02:32 +0000
asID: 150460
IP address blocks: 103.46.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:0d:6b:f9:f7:d0:ab:11:73:3d:c9:c8:66:27:54:d3:fe:cc:95:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953
Validity
Not Before: Nov 23 06:57:32 2024 GMT
Not After : Nov 22 07:02:32 2025 GMT
Subject: CN=CFF95DEB9785D591FAA3F804705C7FB7CBAB0E62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7b:70:8a:93:f5:5b:a2:e0:f7:79:40:f5:8a:
ef:c6:0b:cc:c6:5d:f1:1c:62:2a:12:f2:9d:67:10:
a8:e8:02:a0:67:88:06:16:d2:fa:f2:73:43:85:64:
90:33:5e:d6:a3:2f:30:94:02:1c:61:5f:cb:c0:15:
8e:50:2e:5f:58:86:ed:98:dc:dc:b1:71:7f:9a:9d:
ce:0d:25:fb:a3:76:37:9f:2f:a9:9f:b7:54:80:7f:
1a:22:6f:cd:3d:86:08:34:7d:75:c9:3c:22:19:7b:
8e:29:25:65:49:f0:2c:f4:ee:08:d2:e9:bd:bf:e5:
d7:09:f5:5c:9d:90:47:c8:6e:00:b6:e8:40:7c:0e:
d9:e2:3d:9f:14:19:25:7f:65:ba:c4:b5:a2:b9:50:
fa:da:b3:35:d9:61:ec:6a:51:b3:fa:8a:03:9f:46:
8f:b4:71:f9:ae:cf:fd:02:e8:01:e3:03:eb:75:17:
ff:88:e6:e9:2b:59:81:1a:98:74:65:76:53:3d:d7:
e3:3a:1c:1b:5b:2d:46:a2:08:10:3f:45:f6:f3:1e:
36:af:e3:25:cb:1e:50:90:b1:a9:08:cb:1e:47:13:
d2:58:aa:37:29:fb:db:f2:64:73:b1:f4:b4:87:46:
ef:35:8e:92:df:28:f1:56:59:f1:ab:34:21:61:fa:
2c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:F9:5D:EB:97:85:D5:91:FA:A3:F8:04:70:5C:7F:B7:CB:AB:0E:62
X509v3 Authority Key Identifier:
keyid:7D:6E:DF:DB:21:B8:B7:E6:A7:5A:99:0A:7B:EC:AD:85:E8:BE:B9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/3130332e34362e342e302f32342d3234203d3e20313530343630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.46.4.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:5c:66:f9:74:3c:07:67:c7:ab:36:3b:a9:e9:30:cf:22:ba:
0f:01:63:74:f4:ef:0d:a2:1a:d0:cf:69:f6:ab:87:d4:af:b0:
7c:9e:ed:58:b1:82:d7:b4:2b:e1:9f:3f:23:3f:65:12:77:ba:
97:79:2b:7e:15:6f:cb:30:75:ac:19:e1:f2:a9:80:60:45:ad:
be:7c:f8:52:b0:6e:6c:5d:4b:c7:07:78:b4:d3:b5:0a:d1:ad:
0c:f5:fa:32:b3:95:96:2f:52:07:b2:36:be:6e:dc:1b:02:7a:
c6:b0:d9:73:b5:00:1b:cd:cf:78:95:e2:bf:e2:2d:7d:fe:d6:
18:b8:57:35:66:22:ff:80:37:0b:38:a4:4b:1b:1b:dc:e4:d6:
99:36:07:30:ee:e6:18:bc:00:fd:89:17:03:ac:81:9d:6e:f5:
4f:9d:7d:5b:55:56:17:a5:af:6b:74:e5:6d:b6:8f:fb:b8:2c:
f8:00:be:56:50:42:e0:33:39:62:08:6f:87:e8:51:79:fb:7c:
cf:59:52:9c:90:86:a9:8b:37:b6:b1:6d:d0:c2:e3:03:3e:0a:
59:fb:e1:15:60:f4:7d:0c:95:85:c1:59:63:84:28:21:6f:ac:
5f:88:d9:3f:ca:d7:2b:1c:02:0d:38:d9:91:65:c3:92:66:31:
14:45:74:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:56:36 2025 by rpki-client