Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230352e302f32342d3234203d3e203538353033.roa
File: 3130332e362e3230352e302f32342d3234203d3e203538353033.roa (raw, json)
Hash identifier: ptSpa0yORFDFTGktJ23ziYaQuqfcwcD6+X4WfU20Bt4=
Subject key identifier: 01:47:5A:3F:7A:C8:D4:08:B3:8A:62:0E:0E:41:7C:78:62:F7:AE:13
Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446
Certificate serial: 2994062A2562A3E86C6F5DD184BA94C8543933C8
Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230352e302f32342d3234203d3e203538353033.roa
Signing time: Thu 19 Sep 2024 08:00:53 +0000
ROA not before: Thu 19 Sep 2024 07:55:53 +0000
ROA not after: Thu 18 Sep 2025 08:00:53 +0000
asID: 58503
IP address blocks: 103.6.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:94:06:2a:25:62:a3:e8:6c:6f:5d:d1:84:ba:94:c8:54:39:33:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446
Validity
Not Before: Sep 19 07:55:53 2024 GMT
Not After : Sep 18 08:00:53 2025 GMT
Subject: CN=01475A3F7AC8D408B38A620E0E417C7862F7AE13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:f2:a7:61:20:5b:2e:43:d1:40:13:0e:99:
7b:ec:ef:13:85:3c:af:1f:39:8c:2b:6b:d1:ab:1e:
7e:ec:4b:9f:67:14:de:1e:70:a0:1b:17:a6:f2:2f:
fb:c5:5e:11:ee:9a:f5:b9:dd:d3:4e:ec:a8:cd:bf:
45:e5:e0:a8:1f:ac:83:b2:bf:b7:4f:d2:07:c4:7b:
56:8b:86:a3:a3:1b:89:4f:61:30:8e:b0:31:6a:d4:
6f:3f:af:01:81:86:d5:ed:7c:f4:55:52:ef:44:dd:
ce:71:34:97:70:0d:fc:7d:67:b2:1f:a6:1a:3a:dd:
dc:3a:34:73:1b:cb:be:48:c3:98:92:21:4b:fa:d7:
d0:c2:0a:95:e9:af:0c:cd:13:bb:74:f7:e6:1f:b1:
39:e4:8b:71:bb:fe:2e:84:ce:64:e2:92:5a:c2:0a:
9f:4a:c8:7b:ab:22:a3:3c:4d:d5:a4:d1:92:99:b1:
ce:77:06:59:42:a1:32:f3:a6:52:31:cb:13:f1:b9:
ff:8c:4f:63:d8:ff:2c:ad:b7:d4:14:07:1c:a2:a5:
99:0f:3f:ec:92:69:53:90:b5:5f:1f:c7:88:1c:21:
0c:02:a6:82:45:98:85:d1:be:37:4e:71:23:10:fa:
93:ce:44:e2:8f:eb:b0:86:fd:79:5e:0f:08:0a:a9:
ae:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:47:5A:3F:7A:C8:D4:08:B3:8A:62:0E:0E:41:7C:78:62:F7:AE:13
X509v3 Authority Key Identifier:
keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230352e302f32342d3234203d3e203538353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.6.205.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:9d:8e:2e:b3:0a:c3:77:f0:33:46:a8:56:c7:6b:01:86:2d:
e0:74:20:93:a1:9b:af:44:a4:36:cd:fc:81:d6:1b:03:f1:0b:
b9:c4:92:0b:de:08:ed:a2:ca:03:93:0a:15:99:5f:47:ed:37:
b9:f6:62:b2:5a:3f:b2:ee:a7:a5:94:3a:4a:ac:7d:7b:c9:81:
5b:2f:c7:71:96:7d:e5:d2:11:f6:95:2e:a0:c1:d1:0d:13:eb:
12:ce:97:8d:a9:9c:79:9e:59:ba:98:c5:66:2e:b1:4f:9d:96:
22:ff:01:a5:29:d7:00:85:d5:b5:36:60:3e:b3:1b:40:7d:75:
b1:3c:39:cf:8f:73:44:48:5d:a4:33:cf:7a:fd:35:ca:7f:65:
6f:f9:53:52:88:cd:55:b2:62:2a:49:1d:a4:fc:77:a6:1d:68:
3e:3a:3c:cc:e6:19:ad:ea:c9:2d:cc:d0:e2:60:aa:27:45:a2:
3b:5c:73:22:61:04:c8:1d:80:c0:37:f5:2c:74:75:95:06:41:
06:55:93:d5:fe:55:fb:56:4b:6d:42:5f:b9:24:cf:74:21:f0:
6c:b1:95:1b:58:fa:30:77:38:6e:16:3a:84:0a:a8:4d:7a:78:
67:ad:51:f3:75:fa:9c:8e:9d:ce:40:4f:49:76:40:e1:c2:54:
9f:3f:b8:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:28:11 2025 by rpki-client