Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138312e302f32342d3234203d3e20313437313037.roa
File: 3130332e3137342e3138312e302f32342d3234203d3e20313437313037.roa (raw, json)
Hash identifier: 27vppbMlwwwFcDlsbA8pyh2HjZV3e/4dVfkzUX4OWkw=
Subject key identifier: 6A:CB:F5:23:04:99:F6:97:97:38:F2:0B:4B:C1:2E:8B:A1:DD:C8:17
Certificate issuer: /CN=166B4918E7A1A1641E7C79C537833379E393522E
Certificate serial: 3251D8AD4D39333BBC48E48ABCEA160847DC2879
Authority key identifier: 16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138312e302f32342d3234203d3e20313437313037.roa
Signing time: Wed 04 Sep 2024 10:02:23 +0000
ROA not before: Wed 04 Sep 2024 09:57:23 +0000
ROA not after: Wed 03 Sep 2025 10:02:23 +0000
asID: 147107
IP address blocks: 103.174.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:51:d8:ad:4d:39:33:3b:bc:48:e4:8a:bc:ea:16:08:47:dc:28:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166B4918E7A1A1641E7C79C537833379E393522E
Validity
Not Before: Sep 4 09:57:23 2024 GMT
Not After : Sep 3 10:02:23 2025 GMT
Subject: CN=6ACBF5230499F6979738F20B4BC12E8BA1DDC817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:81:4d:66:03:cd:b1:45:07:4a:2a:b4:1a:7d:
dd:9d:1d:9a:c0:85:13:0e:eb:e6:9b:5b:ab:a5:96:
4d:d1:ac:30:7f:c3:66:c7:69:32:8c:f3:d3:65:50:
9f:4b:2c:4b:e0:b2:a4:d4:8c:4b:b6:1e:c2:55:28:
13:ad:58:e8:92:eb:6e:81:6c:f8:ad:ac:06:4c:9c:
72:5b:e8:8a:e1:72:3d:d3:ec:ac:8f:47:01:8c:fb:
a3:06:6f:c7:33:33:cc:f0:59:26:43:60:78:52:e5:
5d:22:0c:79:c3:ec:c1:d4:af:58:13:a0:d3:c9:9a:
31:2d:62:72:68:3d:64:7b:5a:d7:7c:3a:87:2c:33:
73:36:29:b4:7e:39:d0:f4:87:1d:2c:bc:5a:bc:b6:
2f:0b:78:68:89:f2:5d:c4:d7:d3:f9:59:54:a3:00:
a8:0a:b4:29:9c:32:67:3b:50:d2:40:cf:db:20:70:
ae:9d:af:2d:cd:85:f9:50:c5:d5:ae:10:a3:49:e6:
ff:37:d4:ef:dd:67:c4:13:7f:bd:e6:b8:dd:57:cf:
50:b1:0e:76:1c:20:b0:9e:f4:df:d1:c3:40:87:15:
f0:ee:b6:b3:59:de:60:e7:7f:7c:9a:e8:12:d9:b2:
0d:af:e4:68:87:ce:e2:da:cb:c3:fd:c3:d7:ee:68:
98:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CB:F5:23:04:99:F6:97:97:38:F2:0B:4B:C1:2E:8B:A1:DD:C8:17
X509v3 Authority Key Identifier:
keyid:16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138312e302f32342d3234203d3e20313437313037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.174.181.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:00:c8:3c:03:a4:b0:59:65:21:8b:37:f8:0a:6e:96:cc:77:
01:14:18:ca:5a:f7:19:b8:30:91:02:e0:aa:fd:2b:3f:c2:6e:
59:f2:39:8e:53:95:76:11:ae:b6:7b:cc:ee:df:8e:a2:f1:28:
7f:6b:06:67:81:2b:69:22:52:2f:47:61:ef:1f:25:98:e2:35:
d9:ac:83:77:65:af:e9:00:8f:43:06:88:30:33:33:b9:b8:fc:
b8:de:7f:31:91:3d:cf:c1:ab:51:5a:73:b7:91:f0:0c:c5:02:
04:86:44:6c:25:ca:d4:66:5b:58:88:b1:9f:e7:8b:ea:47:4e:
5e:96:0c:38:a6:63:b9:40:97:d7:d3:8a:e4:d1:2b:33:16:41:
0a:e8:d4:0b:9a:3f:a2:57:0c:94:00:da:c2:f2:5b:1e:7e:42:
17:0f:11:e0:d0:6d:fd:fc:f7:13:ad:26:5f:d5:4a:95:66:a0:
6c:08:38:2f:ea:0f:6f:fc:a9:9c:be:45:c4:08:25:4c:96:87:
68:82:7b:74:fa:66:7e:dd:ff:30:af:74:2c:5f:c7:7d:db:4e:
73:35:50:1c:7f:5a:bc:fa:1f:9e:21:03:b5:24:28:11:34:c9:
af:56:c3:bd:0a:c1:c3:3b:11:e1:29:21:23:50:b2:f0:52:d8:
d7:4e:18:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 12:05:41 2025 by rpki-client