Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa
File: 3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa (raw, json)
Hash identifier: YbG5Gw9xgbijBTbp7E/AZR+gn02wD0TeW2SCv/sSqKI=
Subject key identifier: DB:27:24:E8:0C:02:A2:1C:51:BD:2B:D1:86:9B:A4:32:2D:08:8C:6C
Certificate issuer: /CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3
Certificate serial: 75A2790A7913383B67FE9B33F054AEEC68A07A29
Authority key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa
Signing time: Fri 20 Dec 2024 07:02:59 +0000
ROA not before: Fri 20 Dec 2024 06:57:59 +0000
ROA not after: Fri 19 Dec 2025 07:02:59 +0000
asID: 138127
IP address blocks: 103.132.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:a2:79:0a:79:13:38:3b:67:fe:9b:33:f0:54:ae:ec:68:a0:7a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3
Validity
Not Before: Dec 20 06:57:59 2024 GMT
Not After : Dec 19 07:02:59 2025 GMT
Subject: CN=DB2724E80C02A21C51BD2BD1869BA4322D088C6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bb:ca:a6:22:6a:c3:f3:49:51:77:fc:b7:15:
43:d6:3f:f8:49:b1:86:a2:f4:1d:1e:58:82:66:d1:
72:5c:0f:c4:93:d1:ff:17:c3:23:0e:8e:44:70:08:
c6:8c:23:c4:94:42:bf:9d:f0:de:b4:76:77:2d:9d:
e3:44:64:1a:e5:43:21:c2:46:16:9a:c8:99:fd:a8:
90:a3:9b:53:fa:c8:fd:60:0b:16:5f:e0:41:de:9d:
28:09:e5:90:22:ec:3f:c8:c6:eb:b0:c0:a3:f7:79:
16:27:9a:7b:11:59:cc:19:2b:9e:9d:3b:c6:18:c3:
f6:2c:97:45:ff:00:fa:f4:60:0b:fc:62:de:fb:ee:
0b:e7:30:d9:0d:36:20:01:33:9c:82:8e:42:08:b8:
34:99:3f:1c:a7:5b:12:0e:72:cf:7e:eb:d3:0b:8d:
a0:45:3e:2b:5a:f4:e7:a8:1e:96:a1:05:55:24:98:
b5:4a:02:e4:99:56:95:c5:a7:e6:51:33:31:2a:94:
03:dd:3e:5f:0d:5a:da:58:3d:62:d3:0b:08:54:e8:
09:6a:12:27:aa:02:64:f6:48:f2:30:65:11:17:5c:
8f:5a:06:b3:b3:0e:6f:47:c1:ae:cc:27:ef:8c:04:
62:de:00:ff:dc:07:3c:00:b5:4b:60:3a:a2:8a:f8:
55:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:27:24:E8:0C:02:A2:1C:51:BD:2B:D1:86:9B:A4:32:2D:08:8C:6C
X509v3 Authority Key Identifier:
keyid:3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.132.231.0/24
Signature Algorithm: sha256WithRSAEncryption
57:3e:f3:8f:c5:8f:40:93:2b:a5:45:9f:cf:c1:de:3c:0f:2d:
a9:85:95:25:38:17:41:05:47:04:77:e2:05:0f:d7:4e:90:81:
4d:69:a4:5f:4a:e7:b3:29:5a:7f:76:34:91:d9:62:90:a0:c8:
73:46:25:50:ba:47:14:c7:fb:a4:c3:e9:a5:06:9c:66:9a:c3:
d6:b6:b1:a6:f7:15:75:ea:21:92:47:88:a6:8f:4f:dc:b8:d2:
3a:55:1d:8f:57:37:ae:90:66:29:fc:40:0d:a4:16:04:b3:a3:
8c:5f:13:f4:57:30:3d:55:f6:2e:b5:f5:e1:d4:22:8f:f8:0d:
88:d2:ac:76:c3:02:8a:69:fd:1e:5b:25:fe:aa:e9:37:ad:bd:
81:b4:ee:74:1a:f8:6a:6c:54:e0:33:9a:66:d3:36:c8:73:3b:
7e:3c:a0:14:8f:50:bc:32:14:64:66:b3:25:cf:d5:21:68:ca:
1e:f0:09:2a:34:3c:f6:26:83:90:a5:0f:68:2d:32:a8:99:7e:
e8:7b:e7:c8:c0:c4:8b:67:f9:4c:49:f2:f2:46:e6:af:66:1d:
15:d3:a0:d5:61:82:f7:cc:f2:9c:ee:b2:d0:18:e9:53:ca:64:
42:af:82:81:90:4e:a0:07:92:ae:a5:85:4a:c4:31:fb:94:31:
bb:a8:42:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:04:57 2025 by rpki-client