Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa
File: 3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa (raw, json)
Hash identifier: 6FLbYuy1S5qOt7tY0dfAZpELgfONO6cx6swxFm3099E=
Subject key identifier: 5C:62:6B:4D:58:C2:44:1A:CB:E0:E5:6B:7D:30:F0:CF:49:40:76:95
Certificate issuer: /CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1
Certificate serial: 057250D3B8F4AB3341CCCBD7F07C3C31D7479B3F
Authority key identifier: 2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa
Signing time: Wed 20 Nov 2024 19:00:02 +0000
ROA not before: Wed 20 Nov 2024 18:55:02 +0000
ROA not after: Wed 19 Nov 2025 19:00:02 +0000
asID: 139981
IP address blocks: 103.148.24.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:72:50:d3:b8:f4:ab:33:41:cc:cb:d7:f0:7c:3c:31:d7:47:9b:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1
Validity
Not Before: Nov 20 18:55:02 2024 GMT
Not After : Nov 19 19:00:02 2025 GMT
Subject: CN=5C626B4D58C2441ACBE0E56B7D30F0CF49407695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:eb:97:1f:e4:9e:df:b6:27:81:e8:d9:01:c5:
97:09:bb:f0:91:49:d6:4a:ec:b8:33:65:2b:8f:88:
6b:8e:69:7f:39:5f:46:33:87:64:e4:c9:b0:99:00:
ef:58:7b:cc:7b:7b:3e:c6:3b:e3:a7:c3:e2:07:52:
98:83:a0:94:09:62:d0:54:ea:c9:be:f6:b8:95:b0:
14:d8:cc:3a:64:65:56:44:65:4a:be:ef:9c:02:f9:
2c:89:0c:fb:a3:5f:dd:d8:5c:53:08:c2:cb:3d:7f:
60:9d:c8:b6:82:21:cd:65:b3:1f:52:6c:2f:34:47:
39:7e:29:eb:88:2f:71:95:05:3f:fe:b0:e1:45:69:
e3:9a:66:83:7d:44:f8:d3:02:91:9e:de:0c:dc:f2:
8c:54:6b:e2:b9:aa:3e:49:10:ad:aa:97:46:be:a9:
c1:9d:7d:ff:33:7c:13:c8:92:52:a9:b3:ab:a4:e8:
6a:60:61:cc:50:f8:a6:88:fc:cd:01:5f:7b:df:f5:
6d:03:fe:7f:c8:b4:77:68:91:c3:4c:dd:9f:c9:d7:
52:7f:0b:a9:6f:4b:33:81:19:82:0f:fe:d1:ff:07:
60:ec:05:97:f6:20:cf:38:53:68:d1:29:82:ce:b5:
a7:a6:b5:b0:60:cb:9a:52:14:46:3c:5f:af:73:09:
f3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:62:6B:4D:58:C2:44:1A:CB:E0:E5:6B:7D:30:F0:CF:49:40:76:95
X509v3 Authority Key Identifier:
keyid:2A:F5:12:1C:D1:CF:A7:79:8C:C1:DD:77:7B:46:43:69:D1:DE:A6:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AF5121CD1CFA7798CC1DD777B464369D1DEA6C1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/592e07f8-1a48-4391-a6a5-8e4e39c8588a/0/3130332e3134382e32342e302f32332d3234203d3e20313339393831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.24.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:fa:be:84:df:00:3d:3e:8c:a0:98:5f:9e:2f:9d:77:ff:43:
95:5c:2d:2d:20:4f:cc:83:a8:e6:8f:3d:af:f9:65:a6:11:34:
5e:27:20:bf:b0:80:16:53:d7:30:07:7f:f1:d1:e8:6e:c9:9c:
28:39:2b:e4:4a:70:79:31:b9:d1:a7:8f:8d:21:8b:74:67:48:
7c:5a:fa:b1:d1:a3:b9:f3:9b:31:55:d2:14:ed:6f:78:95:ab:
b0:3c:27:7b:18:29:22:6c:77:71:bf:bf:b7:3c:0a:97:c0:4f:
6d:ed:2b:85:e1:33:40:cb:1b:2e:17:26:0b:90:dc:af:46:6a:
ac:8b:53:5f:f9:ad:35:6c:89:67:9c:7a:77:12:ef:1e:68:a8:
e4:34:a4:48:d6:5f:31:75:8f:42:c3:61:9c:fc:36:ef:81:76:
5f:35:65:5b:cb:e3:fb:fb:c4:2a:74:39:da:b6:7e:43:3f:54:
c0:3c:6a:23:b8:47:f7:e2:16:0a:5c:77:1e:08:4f:a2:51:c7:
41:41:b7:7a:5d:7a:6e:4e:47:4e:ef:3f:14:67:22:c3:19:94:
d3:d1:5c:ad:d3:48:12:55:12:fd:8e:15:1f:54:33:25:0b:f7:
61:45:d1:2c:f2:9d:9f:0d:14:90:05:06:7b:b9:08:a6:93:89:
dd:04:aa:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:38:56 2025 by rpki-client