Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131382e302f32342d3234203d3e20313336303634.roa
File: 3130332e38332e3131382e302f32342d3234203d3e20313336303634.roa (raw, json)
Hash identifier: L+8SrkY6511c5DJDsz7fYxyef0XtUXzTGXOzwD+HTeU=
Subject key identifier: 0F:5D:8D:A3:67:FE:A3:FD:30:EB:28:1C:7B:44:6C:12:80:31:25:D3
Certificate issuer: /CN=38F85F0AA81AE33827BDF573D6A712452180A036
Certificate serial: 7627B9B7D90FE4D86530D3880D9859A31B688266
Authority key identifier: 38:F8:5F:0A:A8:1A:E3:38:27:BD:F5:73:D6:A7:12:45:21:80:A0:36
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38F85F0AA81AE33827BDF573D6A712452180A036.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131382e302f32342d3234203d3e20313336303634.roa
Signing time: Wed 27 Nov 2024 12:00:02 +0000
ROA not before: Wed 27 Nov 2024 11:55:02 +0000
ROA not after: Wed 26 Nov 2025 12:00:02 +0000
asID: 136064
IP address blocks: 103.83.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:27:b9:b7:d9:0f:e4:d8:65:30:d3:88:0d:98:59:a3:1b:68:82:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38F85F0AA81AE33827BDF573D6A712452180A036
Validity
Not Before: Nov 27 11:55:02 2024 GMT
Not After : Nov 26 12:00:02 2025 GMT
Subject: CN=0F5D8DA367FEA3FD30EB281C7B446C12803125D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:39:52:69:be:14:eb:9d:03:e5:aa:d9:17:04:
86:06:10:db:63:78:88:b9:50:60:42:64:ba:60:2b:
65:65:e0:bc:64:eb:bc:5c:23:98:c3:52:0e:e6:ec:
43:16:04:91:01:8e:59:37:d5:ae:e5:15:f0:10:53:
8c:c4:65:c0:2e:09:b9:f4:ef:9b:d0:e3:68:3f:33:
39:ad:ae:b4:b5:74:60:8b:07:8f:17:25:8b:38:82:
79:de:dd:9c:18:19:27:ad:85:da:cd:d5:3a:6f:92:
4d:d9:82:ec:49:f7:27:b3:c3:2c:ef:c4:13:13:49:
f1:8b:c7:18:45:2d:7d:25:16:da:79:e3:59:03:42:
d9:48:3a:b2:12:e5:3e:8d:8e:dd:22:7e:48:db:3d:
09:81:ab:78:26:1f:8c:4b:88:df:1e:1c:b0:ae:45:
c4:af:39:27:43:4c:a8:42:4f:7a:81:54:f7:e1:84:
4f:1d:59:cb:e0:b3:58:aa:f1:b3:71:05:44:46:8d:
11:5a:c6:f5:bb:2b:ad:b1:b5:62:c3:21:2f:74:bb:
1d:5e:6d:8a:b2:46:90:41:f4:4f:79:1e:a1:ea:d4:
c1:59:de:c7:91:8e:e3:f7:51:5e:07:82:48:90:e6:
7d:ab:38:0b:81:8e:fb:ea:58:4a:17:a4:38:97:01:
69:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5D:8D:A3:67:FE:A3:FD:30:EB:28:1C:7B:44:6C:12:80:31:25:D3
X509v3 Authority Key Identifier:
keyid:38:F8:5F:0A:A8:1A:E3:38:27:BD:F5:73:D6:A7:12:45:21:80:A0:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/38F85F0AA81AE33827BDF573D6A712452180A036.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38F85F0AA81AE33827BDF573D6A712452180A036.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4e98b3bd-284d-4a7d-9f27-cb587e9dd841/0/3130332e38332e3131382e302f32342d3234203d3e20313336303634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.83.118.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:24:46:44:e1:58:2f:c1:4d:90:ba:51:82:e6:8d:ed:75:dd:
a8:41:e4:1b:94:db:54:22:3f:03:d1:79:3e:b1:2d:ca:fb:5b:
22:25:c3:bf:ae:d9:19:ca:fe:18:b5:59:19:b7:d6:a2:02:35:
2d:df:bc:1d:93:a3:41:45:57:13:d6:a5:78:b6:47:fb:ef:86:
be:5b:80:a9:8e:42:9c:96:c4:71:e8:a6:02:95:40:45:7d:bb:
58:db:5c:3d:f1:60:5c:b6:b8:c4:40:37:e5:80:70:29:c4:50:
84:ad:ef:c9:53:8d:78:78:e0:90:b9:ec:fa:08:fb:d2:a7:0f:
19:6d:05:52:db:34:2f:0a:e2:e4:04:84:04:fe:ce:fa:a1:ab:
7b:56:f9:bd:59:7f:58:6c:cf:f1:5c:06:f0:88:77:b6:37:79:
b5:fc:a6:fb:51:4e:e3:8b:05:91:2d:11:1c:10:3a:f3:82:b6:
c4:a3:41:10:86:fd:71:1c:bf:2f:b4:ba:14:5d:11:a1:cb:e0:
48:5c:34:71:0f:99:ce:c5:bb:db:ce:e5:ad:6b:6f:27:07:70:
59:7d:ae:87:86:57:92:ae:0e:48:66:f4:ea:85:34:ac:69:92:
13:ee:9c:10:5c:4e:af:b4:d8:98:bd:d2:e5:54:92:8e:e1:ac:
09:8d:1b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:50:19 2025 by rpki-client