Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa
File: 3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa (raw, json)
Hash identifier: fijXi7JXNmOqyGzs7/506DijuSQ1n1hxqAmgpzA5UJM=
Subject key identifier: 88:BA:B2:28:FA:2C:BF:A7:30:FC:96:47:90:F2:52:20:F7:94:DD:74
Certificate issuer: /CN=C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B
Certificate serial: 11FE661C2004C17A46C5A53B3DF57E851FDD7229
Authority key identifier: C4:CE:1B:D3:CB:FB:01:5E:60:96:5A:65:E2:FB:31:A6:BA:26:18:9B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa
Signing time: Mon 01 Jul 2024 01:01:42 +0000
ROA not before: Mon 01 Jul 2024 00:56:42 +0000
ROA not after: Mon 30 Jun 2025 01:01:42 +0000
asID: 141064
IP address blocks: 103.155.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:fe:66:1c:20:04:c1:7a:46:c5:a5:3b:3d:f5:7e:85:1f:dd:72:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B
Validity
Not Before: Jul 1 00:56:42 2024 GMT
Not After : Jun 30 01:01:42 2025 GMT
Subject: CN=88BAB228FA2CBFA730FC964790F25220F794DD74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cf:38:b1:2e:a4:b8:54:3d:0d:c7:fa:ce:4e:
32:a4:6a:11:8b:29:c8:20:ad:85:99:84:18:97:09:
f2:5a:f2:02:51:12:c2:b8:1e:1a:e8:9f:43:3c:1d:
65:67:c7:86:18:08:98:41:bd:c5:fe:88:1a:4d:c9:
1e:bc:53:3b:2f:9b:22:35:1e:1f:c5:ce:6e:0a:f9:
f1:f2:3c:9a:a1:2d:93:db:34:9b:b5:99:9b:b5:1c:
fe:ed:47:e7:f2:1d:f4:1b:31:74:b5:a4:0a:5c:b8:
0b:63:34:13:63:33:6f:43:89:4d:6b:73:b6:4f:c3:
fd:87:7e:6f:23:50:e0:05:83:8f:2a:26:32:a9:48:
d6:ee:75:29:0b:93:73:65:c5:f7:0c:57:4c:a9:a7:
fa:eb:66:dc:66:b6:73:02:4c:e3:96:7e:d4:21:e8:
b2:bb:48:3a:2a:6a:e2:af:76:b9:e2:c6:16:d4:e0:
77:ac:6a:59:73:ee:5c:99:15:8c:b4:08:14:16:02:
f9:e4:06:a5:0b:cc:7d:38:66:2f:4e:97:f1:88:7e:
5d:71:31:c9:7b:b1:89:a2:5a:81:19:1b:b2:bf:7e:
6f:f7:18:f9:d3:06:80:ce:b5:d2:92:af:b3:cf:4b:
3e:a2:12:9c:b1:5c:6d:3a:42:8e:91:26:53:0a:58:
3a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BA:B2:28:FA:2C:BF:A7:30:FC:96:47:90:F2:52:20:F7:94:DD:74
X509v3 Authority Key Identifier:
keyid:C4:CE:1B:D3:CB:FB:01:5E:60:96:5A:65:E2:FB:31:A6:BA:26:18:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.155.166.0/24
Signature Algorithm: sha256WithRSAEncryption
69:fe:38:47:27:f6:54:48:7c:9d:54:87:4e:9b:28:36:dd:79:
32:29:9e:95:d5:46:5d:ff:f3:75:c1:fc:ad:87:5e:32:6e:45:
64:1e:ae:3a:7e:b7:4c:3e:6f:04:e6:4f:37:f0:b1:20:d3:62:
ef:51:a1:94:32:2d:35:14:98:ef:94:5f:56:67:ed:7f:93:21:
2f:45:82:44:89:75:33:ab:fb:12:cc:91:11:93:dd:0d:a1:4e:
00:84:cf:73:54:c6:19:e6:3b:12:72:97:f8:f7:66:0d:ea:a9:
54:6b:dc:e3:cc:e5:04:7d:a8:47:d0:59:b8:74:a5:10:a5:c3:
bf:1c:d3:36:24:7e:44:c8:a7:36:04:b1:48:c6:1c:90:27:83:
88:59:3a:6a:c5:f3:6d:d3:0f:46:2f:d2:55:5f:35:b0:19:cc:
e7:55:69:44:11:8e:3a:ce:ed:cb:9f:7d:d5:e4:06:48:75:f6:
fa:e4:dd:01:bf:1d:2e:6f:6b:06:c9:d6:5f:1a:32:c0:90:32:
a8:18:74:93:dd:88:2c:d4:2b:7b:e1:81:fd:73:5f:a3:ab:4d:
20:91:f8:33:8b:c9:6b:3e:9d:65:a8:e2:43:7c:3e:9b:8e:2a:
ea:e2:5a:a7:a4:c7:9f:e9:3c:56:55:b0:0e:7c:c1:0c:38:20:
21:9c:ed:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:29:33 2025 by rpki-client