Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa
File: 3130332e35332e32302e302f32342d3234203d3e203436303334.roa (raw, json)
Hash identifier: YHAiLGhk7A6ZE4X7obU+oz12qWeh7X0M2hlk6hYX8jU=
Subject key identifier: 1B:8F:1E:72:C7:6F:E1:B8:D0:B6:61:E8:F3:71:64:A9:17:5F:17:AC
Certificate issuer: /CN=E89C93F089A07D03B5794B0C02239EF67E1D721C
Certificate serial: 0394321A15EB174C641DD39C20DE5321C6BD99CC
Authority key identifier: E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa
Signing time: Thu 21 Nov 2024 12:34:22 +0000
ROA not before: Thu 21 Nov 2024 12:29:22 +0000
ROA not after: Thu 20 Nov 2025 12:34:22 +0000
asID: 46034
IP address blocks: 103.53.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:94:32:1a:15:eb:17:4c:64:1d:d3:9c:20:de:53:21:c6:bd:99:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E89C93F089A07D03B5794B0C02239EF67E1D721C
Validity
Not Before: Nov 21 12:29:22 2024 GMT
Not After : Nov 20 12:34:22 2025 GMT
Subject: CN=1B8F1E72C76FE1B8D0B661E8F37164A9175F17AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:26:48:dc:f0:07:85:03:8e:62:32:6d:c7:fb:
4e:04:de:31:af:ca:9a:a9:d9:1c:35:f3:83:be:25:
02:4b:4c:b7:bb:8b:7d:b2:e9:20:bc:ac:9a:28:84:
58:5d:93:8a:57:47:f7:76:3f:49:d3:60:69:0d:e9:
27:e3:35:dc:25:6b:09:00:5a:9d:8e:8a:8c:d0:07:
1b:d3:de:b5:c8:70:76:9c:01:72:2e:69:5b:52:d4:
97:21:dd:b5:c0:27:1e:7d:63:79:78:c4:29:7d:ff:
2d:55:50:cb:7e:c1:44:4f:c0:fd:4f:c3:87:03:c2:
52:e0:b5:ce:1a:96:96:14:89:2d:5a:46:a7:76:d2:
d3:34:cf:9a:44:c8:83:40:62:35:b2:72:a8:1a:69:
35:79:ed:f1:1c:21:35:41:d1:af:3a:06:ed:67:81:
e6:9d:d2:ec:67:c3:54:94:ce:71:9c:7f:06:03:40:
47:bc:f3:80:a9:a3:2e:e2:45:08:7a:3b:49:35:92:
4b:5d:01:8a:07:44:61:57:43:c2:da:75:42:31:76:
cc:82:e0:87:25:05:a5:0f:3b:e0:aa:11:61:68:36:
b6:26:2f:2f:e6:7f:57:f6:06:2a:43:f2:a2:8b:00:
9b:31:9d:7c:86:2d:d6:68:ee:85:fe:4c:52:92:f9:
53:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:8F:1E:72:C7:6F:E1:B8:D0:B6:61:E8:F3:71:64:A9:17:5F:17:AC
X509v3 Authority Key Identifier:
keyid:E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.53.20.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:e2:88:36:b3:8a:20:9b:ec:96:8b:57:ed:93:ec:b4:73:26:
4f:48:90:84:07:c3:e5:a6:1a:bc:24:f1:5d:7d:90:22:35:6c:
c6:ec:5b:f7:5c:ac:df:f7:2f:bb:47:3b:76:00:94:4a:1e:e5:
e6:16:0b:31:06:9d:c8:98:5a:ad:98:49:a1:fb:ae:9f:5f:d4:
39:c8:59:cd:91:bd:3c:3d:2f:13:8a:5b:9f:fe:a1:01:ee:a0:
49:0f:4f:39:a1:7c:ac:f5:c5:72:69:39:be:7f:b8:42:31:38:
86:f6:9e:6b:91:4c:4b:b9:b1:10:35:76:32:39:35:bb:a6:e2:
a1:b3:d2:27:75:9f:21:8d:2e:10:0f:64:b4:bb:d3:e5:4b:94:
7e:b5:48:3d:9c:67:a5:dd:cc:2d:db:1d:19:76:77:0d:c6:30:
92:19:1d:77:1b:cf:7c:0d:7e:dd:60:00:15:96:f4:a0:bd:44:
84:1b:ca:a0:48:cf:33:da:85:00:2b:bd:40:24:27:a7:85:c4:
a1:96:92:98:ab:bd:cf:26:14:b3:ae:26:0f:7a:c3:ed:57:4f:
d5:68:12:59:86:25:fa:f0:4d:2f:90:22:71:87:c7:1e:84:b9:
96:79:bb:62:fa:c2:88:b2:2a:5d:f3:06:de:7b:ba:e3:6b:67:
fb:a5:95:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:46:48 2025 by rpki-client