Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa
File: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (raw, json)
Hash identifier: Sr5rxwxyX//B5EAQxEl5R5AYvEEW7vDFWvwM/NlIUq4=
Subject key identifier: 75:C3:EA:C8:F7:FF:DA:3E:FB:F2:D4:E5:62:D5:DA:FC:80:04:A1:F8
Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3
Certificate serial: 686DC47DFC2664D50A03417B4F4487234DF1FBA8
Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa
Signing time: Sat 17 Aug 2024 12:00:01 +0000
ROA not before: Sat 17 Aug 2024 11:55:01 +0000
ROA not after: Sat 16 Aug 2025 12:00:01 +0000
asID: 136070
IP address blocks: 103.157.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:6d:c4:7d:fc:26:64:d5:0a:03:41:7b:4f:44:87:23:4d:f1:fb:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3
Validity
Not Before: Aug 17 11:55:01 2024 GMT
Not After : Aug 16 12:00:01 2025 GMT
Subject: CN=75C3EAC8F7FFDA3EFBF2D4E562D5DAFC8004A1F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1c:a0:e5:06:37:83:3d:19:85:35:f5:9f:69:
b9:33:7a:c6:c9:ce:ac:7d:85:2a:b5:5b:b3:ae:18:
50:5a:b0:ab:68:16:e2:c5:da:87:e0:d6:eb:34:4c:
a3:cb:3d:78:76:8d:f3:69:b1:ab:db:4a:d2:2e:58:
e2:8e:55:d2:12:7a:8e:2e:ac:cc:6c:b7:26:30:c1:
c9:3d:49:e3:3d:a9:5b:fa:97:2f:ed:81:88:76:5f:
b1:7a:0a:1e:15:15:39:36:d3:ac:82:a2:85:4f:7e:
2a:fd:be:0e:31:c7:0d:62:56:90:42:18:fd:89:6e:
fc:63:91:37:9d:48:82:63:b9:80:e5:3c:40:97:81:
42:ec:63:83:d5:f1:6b:50:87:ab:2e:92:3e:f5:6e:
27:59:42:3a:ce:7f:13:9a:f8:49:88:7b:7e:70:d9:
05:74:e3:7c:18:81:d4:12:5f:b1:b8:bf:0f:f3:ab:
9e:51:6d:7e:d9:32:e2:80:ae:4a:c7:2f:02:b3:92:
f8:dd:16:3e:03:9d:c5:d6:d6:ea:57:72:0d:c6:02:
2a:5f:36:c4:fd:3f:f0:7f:f2:3a:cb:d0:51:5d:52:
03:ca:c8:ef:8e:61:8a:26:c7:53:7f:46:49:00:14:
1d:ef:8c:92:78:71:19:00:7b:0e:01:1a:e8:25:ac:
bb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C3:EA:C8:F7:FF:DA:3E:FB:F2:D4:E5:62:D5:DA:FC:80:04:A1:F8
X509v3 Authority Key Identifier:
keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.157.55.0/24
Signature Algorithm: sha256WithRSAEncryption
88:14:82:de:62:f8:b0:91:f6:3d:29:53:b2:fa:9c:30:21:15:
c6:74:90:23:ff:0f:5a:a2:87:0b:c1:8d:b0:05:b5:5c:35:86:
e4:07:02:43:84:d4:c3:6f:8b:d3:e2:cc:54:0b:42:d1:5d:59:
71:e8:80:ba:32:90:32:49:27:4d:9d:01:14:6e:3e:c3:bf:71:
3a:47:62:4f:36:58:43:75:2a:f8:33:07:d6:95:a1:05:7a:c8:
22:4b:8a:57:80:5c:0c:2b:0a:10:1a:2b:37:71:33:a0:7f:1d:
8e:25:81:db:e9:86:d8:c0:82:2e:e7:ed:39:8a:4c:9a:22:b6:
78:76:c6:48:6b:64:bd:84:d2:29:bf:fe:af:7f:4c:14:ee:9a:
77:18:71:1c:34:49:3d:f1:29:23:ee:a1:79:27:f8:f9:76:d9:
21:bf:78:49:b2:02:d4:df:91:a6:37:91:8a:f8:23:74:d7:bb:
9e:89:d5:2b:a9:4e:c3:bc:17:29:18:1d:c3:da:9e:62:43:e2:
7c:ea:b7:01:d5:a0:6a:1e:df:94:03:bc:8f:34:e3:97:14:34:
4e:73:5b:aa:96:4e:33:83:24:1b:2f:7f:4c:30:2b:ba:2c:d2:
7f:18:55:9f:42:00:83:77:ce:9a:7e:42:6a:e4:74:b0:e4:39:
f8:23:c5:6b
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUaG3EffwmZNUKA0F7T0SHI03x+6gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2
RjNGRTBCMzAeFw0yNDA4MTcxMTU1MDFaFw0yNTA4MTYxMjAwMDFaMDMxMTAvBgNV
BAMTKDc1QzNFQUM4RjdGRkRBM0VGQkYyRDRFNTYyRDVEQUZDODAwNEExRjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJHKDlBjeDPRmFNfWfabkzesbJ
zqx9hSq1W7OuGFBasKtoFuLF2ofg1us0TKPLPXh2jfNpsavbStIuWOKOVdISeo4u
rMxstyYwwck9SeM9qVv6ly/tgYh2X7F6Ch4VFTk206yCooVPfir9vg4xxw1iVpBC
GP2JbvxjkTedSIJjuYDlPECXgULsY4PV8WtQh6sukj71bidZQjrOfxOa+EmIe35w
2QV043wYgdQSX7G4vw/zq55RbX7ZMuKArkrHLwKzkvjdFj4DncXW1upXcg3GAipf
NsT9P/B/8jrL0FFdUgPKyO+OYYomx1N/RkkAFB3vjJJ4cRkAew4BGuglrLsjAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUdcPqyPf/2j778tTlYtXa/IAEofgwHwYDVR0j
BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD
MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG
RTBCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmMzc3NzExLTFlM2QtNGU1YS1h
NGFjLTA1YTFjNTAyYWQyOC8wLzMxMzAzMzJlMzEzNTM3MmUzNTM1MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ503MA0GCSqG
SIb3DQEBCwUAA4IBAQCIFILeYviwkfY9KVOy+pwwIRXGdJAj/w9aoocLwY2wBbVc
NYbkBwJDhNTDb4vT4sxUC0LRXVlx6IC6MpAySSdNnQEUbj7Dv3E6R2JPNlhDdSr4
MwfWlaEFesgiS4pXgFwMKwoQGis3cTOgfx2OJYHb6YbYwIIu5+05ikyaIrZ4dsZI
a2S9hNIpv/6vf0wU7pp3GHEcNEk98Skj7qF5J/j5dtkhv3hJsgLU35GmN5GK+CN0
17ueidUrqU7DvBcpGB3D2p5iQ+J86rcB1aBqHt+UA7yPNOOXFDROc1uqlk4zgyQb
L39MMCu6LNJ/GFWfQgCDd86afkJq5HSw5Dn4I8Vr
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:53:38 2025 by rpki-client