Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ce6ac01-8eac-46c5-9469-35efa36099fd/0/3130332e3232352e34342e302f32332d3234203d3e2034383030.roa
File: 3130332e3232352e34342e302f32332d3234203d3e2034383030.roa (raw, json)
Hash identifier: aR/1dOQPpmIRK6/g95bJedDCUXsMcyC+bTLr2GvJMoM=
Subject key identifier: B6:4C:23:B2:ED:9E:99:BF:93:86:50:AC:04:C5:0A:17:F0:53:ED:EA
Certificate issuer: /CN=7892183ECB217EAEF2D3DD16491BE535CA5C5A61
Certificate serial: 6D680DCA2904E64D61B4D7BF1AA88F7D7F6A3035
Authority key identifier: 78:92:18:3E:CB:21:7E:AE:F2:D3:DD:16:49:1B:E5:35:CA:5C:5A:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7892183ECB217EAEF2D3DD16491BE535CA5C5A61.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5ce6ac01-8eac-46c5-9469-35efa36099fd/0/3130332e3232352e34342e302f32332d3234203d3e2034383030.roa
Signing time: Mon 29 Jul 2024 05:02:42 +0000
ROA not before: Mon 29 Jul 2024 04:57:42 +0000
ROA not after: Mon 28 Jul 2025 05:02:42 +0000
asID: 4800
IP address blocks: 103.225.44.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:68:0d:ca:29:04:e6:4d:61:b4:d7:bf:1a:a8:8f:7d:7f:6a:30:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7892183ECB217EAEF2D3DD16491BE535CA5C5A61
Validity
Not Before: Jul 29 04:57:42 2024 GMT
Not After : Jul 28 05:02:42 2025 GMT
Subject: CN=B64C23B2ED9E99BF938650AC04C50A17F053EDEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fe:86:06:80:cc:a2:77:ec:47:f7:43:45:e1:
01:9d:a7:30:86:b6:60:64:36:8b:f7:31:78:ff:e1:
a6:cc:56:1f:77:e6:1e:40:74:08:e6:fb:9f:87:82:
62:28:cf:f1:bf:60:b3:fe:69:48:d9:cf:43:aa:40:
7e:a9:72:f4:44:a4:74:79:62:73:be:67:6f:01:32:
69:2f:bd:a4:1d:eb:8b:0b:fc:73:89:35:6f:c4:61:
4a:8b:df:02:40:8e:63:09:0e:14:5e:bc:cc:51:6a:
c3:60:ea:05:8a:01:38:a6:36:99:c2:fc:b7:46:c7:
1d:9d:82:9f:5b:57:af:fa:9b:dc:a3:92:97:b7:bc:
d7:9f:e0:66:00:18:67:a3:ae:9d:46:ec:18:b9:af:
15:06:ab:e9:b1:ac:5b:4a:6e:f2:b5:f7:0b:13:5a:
d4:28:b4:66:9e:0b:52:43:49:15:57:67:b4:19:aa:
0f:88:29:55:9c:f7:74:23:c6:4e:9a:13:68:4d:a6:
81:ef:c0:9e:18:a1:d1:21:01:b6:12:73:64:f9:ea:
d9:37:67:b7:2e:8f:10:5e:51:39:4e:91:17:94:b3:
05:8e:04:3f:b8:a5:2f:e4:d4:ca:7d:33:73:cb:aa:
4e:81:cc:32:3d:35:69:e5:10:ff:3c:c5:9f:b3:f5:
5d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4C:23:B2:ED:9E:99:BF:93:86:50:AC:04:C5:0A:17:F0:53:ED:EA
X509v3 Authority Key Identifier:
keyid:78:92:18:3E:CB:21:7E:AE:F2:D3:DD:16:49:1B:E5:35:CA:5C:5A:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5ce6ac01-8eac-46c5-9469-35efa36099fd/0/7892183ECB217EAEF2D3DD16491BE535CA5C5A61.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7892183ECB217EAEF2D3DD16491BE535CA5C5A61.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ce6ac01-8eac-46c5-9469-35efa36099fd/0/3130332e3232352e34342e302f32332d3234203d3e2034383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.225.44.0/23
Signature Algorithm: sha256WithRSAEncryption
01:dd:3f:b4:c9:fa:54:ca:63:5c:39:86:5f:2d:a1:d8:99:9b:
94:4d:10:4d:bd:3f:45:14:ef:b3:44:ab:47:fd:ac:1e:d8:62:
d4:ef:27:da:32:0f:19:aa:50:59:63:02:a2:96:2e:7a:69:25:
54:63:7f:f6:0f:74:c5:be:c3:b2:f4:98:d1:49:e1:0e:98:12:
16:e9:c4:8f:16:56:b3:20:83:82:2f:7a:9b:64:31:ad:39:1b:
31:f8:96:96:36:0a:90:80:e1:1c:6f:c6:40:15:f3:3e:7c:4e:
cc:3c:2d:d8:24:0a:1e:93:2b:b2:8e:ba:0c:a6:36:78:11:d0:
67:0f:60:ba:79:f4:e8:42:8a:52:67:cd:bd:25:88:6c:69:85:
79:08:5b:f0:83:15:86:96:19:bc:ed:7f:fd:cd:f2:f9:95:d5:
b8:bc:f6:9f:cf:d1:53:f1:00:dc:18:9f:ae:91:5d:32:7e:05:
a6:a6:e5:94:ff:0d:ac:4b:32:fb:db:86:20:84:54:30:9e:b3:
b3:f7:65:2c:88:61:83:12:01:5a:a4:c0:79:e1:1f:00:87:13:
47:2f:f9:c5:14:a9:20:e7:49:c8:d5:70:e9:cd:e6:6d:e1:27:
89:bd:a1:a0:b0:a9:60:7f:25:39:cc:35:40:fa:3c:17:3c:ed:
58:20:c4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:36:47 2025 by rpki-client