Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131362e302f32332d3233203d3e20313431393638.roa
File: 3130332e34322e3131362e302f32332d3233203d3e20313431393638.roa (raw, json)
Hash identifier: deSk7dhV94Q/bI20PuBTuLDi+FeXmglvV/8pK3EJY0A=
Subject key identifier: 8D:DE:64:C9:57:35:AC:23:CE:1B:A3:4C:88:A3:0F:41:2E:51:53:43
Certificate issuer: /CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8
Certificate serial: 19B43A5600109DDB03E87C7DE668209D6B9EEE9C
Authority key identifier: 6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131362e302f32332d3233203d3e20313431393638.roa
Signing time: Fri 20 Dec 2024 09:00:01 +0000
ROA not before: Fri 20 Dec 2024 08:55:01 +0000
ROA not after: Fri 19 Dec 2025 09:00:01 +0000
asID: 141968
IP address blocks: 103.42.116.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:b4:3a:56:00:10:9d:db:03:e8:7c:7d:e6:68:20:9d:6b:9e:ee:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8
Validity
Not Before: Dec 20 08:55:01 2024 GMT
Not After : Dec 19 09:00:01 2025 GMT
Subject: CN=8DDE64C95735AC23CE1BA34C88A30F412E515343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c6:36:26:3c:15:cc:59:dc:7d:6c:23:8e:1f:
c2:c7:da:8e:ce:de:c9:47:d7:f9:ff:30:e8:38:28:
8b:db:4e:b8:13:c6:03:2a:1d:41:98:6d:fb:67:9f:
b5:65:24:f4:e6:23:45:09:2c:81:79:2d:b6:f8:4c:
17:9a:c7:e5:f6:c0:9c:8e:3f:8d:be:02:08:b4:48:
e1:49:94:22:fc:5a:06:aa:25:c9:67:d2:87:40:3c:
c2:ae:03:ff:09:09:ee:b2:18:7e:75:92:45:c0:71:
83:26:72:b9:f1:84:3c:77:81:3c:ed:69:8e:8d:b6:
aa:32:8a:eb:fb:63:43:d9:7f:a4:29:35:c2:08:28:
23:d2:66:26:6f:9c:12:8d:8b:8b:dc:fd:b7:a1:a4:
e5:b4:40:9f:ee:eb:9d:ba:cf:60:a5:50:73:93:bb:
4d:63:0e:f9:05:ef:df:f9:b8:ef:0f:57:54:a9:d1:
3b:f6:bc:5f:13:9d:7c:87:8f:a8:e8:2f:a1:91:85:
bc:6c:c5:81:78:ba:d4:61:ae:da:70:4d:ee:e7:93:
2e:0f:7a:25:14:3d:fa:4c:5b:68:d4:f2:22:33:fb:
68:97:6a:bb:00:8d:0a:22:5d:0e:28:68:24:12:3f:
a6:76:7c:e1:44:fa:c1:96:c2:87:fe:c3:b0:f7:6f:
63:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:DE:64:C9:57:35:AC:23:CE:1B:A3:4C:88:A3:0F:41:2E:51:53:43
X509v3 Authority Key Identifier:
keyid:6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131362e302f32332d3233203d3e20313431393638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.42.116.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:5c:6e:48:ed:5c:02:64:53:53:41:8d:d6:6e:9e:a3:11:f5:
f3:a4:f4:4c:1f:60:05:b5:29:cf:c7:e7:79:aa:34:26:ec:94:
ca:20:d4:11:61:29:5f:90:73:3d:a1:72:2f:de:13:e4:20:80:
31:26:8b:66:0b:09:aa:fa:76:9b:56:b5:f9:09:6b:0b:ee:57:
cc:b4:d0:3b:c0:13:45:f3:ba:97:d3:6a:ca:61:f5:4b:91:09:
20:53:7e:43:0c:24:b9:78:36:cf:91:76:7d:4c:af:1f:e4:3a:
9e:0f:01:e7:6c:2c:b8:4f:62:27:bc:e8:63:a9:6b:a5:68:de:
9e:fa:52:8b:41:c2:6b:b8:f8:d5:f6:f8:11:b0:ff:a0:41:30:
56:d7:42:55:22:ac:f6:87:5c:f2:02:89:61:84:cf:8e:11:27:
ec:ba:3d:73:ba:a9:6f:aa:5a:71:cb:38:25:e5:a5:3e:74:56:
d1:5a:7e:db:42:46:04:db:09:5c:dc:88:f9:bd:13:5b:12:43:
da:29:d9:20:8c:35:ce:68:fd:d8:89:44:1e:e7:d6:28:02:ee:
42:d1:66:d1:d6:aa:8e:19:db:38:e2:11:ab:51:3c:4d:9a:c2:
23:6a:17:e0:25:4c:d1:89:9c:3d:b9:23:46:c9:1b:36:9b:ee:
37:b6:95:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:21:23 2025 by rpki-client