Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231362e302f32342d3234203d3e203234353239.roa
File: 3130332e3231372e3231362e302f32342d3234203d3e203234353239.roa (raw, json)
Hash identifier: SscI993Dt7eLqGBoQBX8oyNOZ7enmFzcIvZg0Fy4SGo=
Subject key identifier: 90:61:B7:D2:B5:E2:D2:BE:6F:79:55:8B:C0:81:1A:26:86:3E:F7:01
Certificate issuer: /CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8
Certificate serial: 1DCAAA7E5FD2E2AA5E66BDDBEC8DD7B484BAE23E
Authority key identifier: 37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231362e302f32342d3234203d3e203234353239.roa
Signing time: Mon 01 Jul 2024 01:06:05 +0000
ROA not before: Mon 01 Jul 2024 01:01:05 +0000
ROA not after: Mon 30 Jun 2025 01:06:05 +0000
asID: 24529
IP address blocks: 103.217.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:ca:aa:7e:5f:d2:e2:aa:5e:66:bd:db:ec:8d:d7:b4:84:ba:e2:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37DE961707CEC8F63834DCDB8C5A278376D51AC8
Validity
Not Before: Jul 1 01:01:05 2024 GMT
Not After : Jun 30 01:06:05 2025 GMT
Subject: CN=9061B7D2B5E2D2BE6F79558BC0811A26863EF701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:47:06:ee:33:d1:c8:04:9e:97:2f:17:47:6d:
0f:ac:a8:56:8e:e3:61:8c:3e:e0:13:f7:8d:51:fe:
7b:0a:3c:c6:4c:f2:9e:06:fb:78:7b:74:1f:ce:b9:
69:75:e1:7e:2d:e9:ea:7c:30:ce:a5:98:2e:bb:4e:
13:9d:81:9f:3e:e3:df:06:53:b5:63:ab:ad:c4:b1:
4c:6d:97:d9:b8:65:04:c7:68:76:56:66:fa:4e:32:
42:3f:ca:16:a3:17:7d:40:cc:22:7c:c9:53:59:f1:
99:68:d4:b7:71:e0:43:c4:69:b4:9d:73:94:a3:0e:
5f:2f:b6:ee:79:04:95:8f:0e:29:87:62:bb:e3:39:
81:5f:9b:79:96:af:7b:8f:cd:68:24:eb:6f:1e:4d:
52:fa:a3:15:8d:cc:77:11:18:6d:d7:c9:ce:e2:39:
f2:bd:f4:31:2b:ff:ca:8a:bb:6c:a9:4f:d1:07:77:
3a:2e:b4:31:05:b1:89:14:87:a4:f2:60:04:6d:3f:
84:11:f8:5d:69:ea:9d:1a:14:86:68:95:11:75:2b:
46:3c:51:97:b9:b8:2e:3e:d5:c4:63:26:4f:ab:d5:
9c:1b:a1:d8:b7:39:c0:87:4c:9f:af:a9:46:2e:f2:
e1:09:6a:fd:63:53:02:65:c5:b6:2b:5e:95:4c:47:
33:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:61:B7:D2:B5:E2:D2:BE:6F:79:55:8B:C0:81:1A:26:86:3E:F7:01
X509v3 Authority Key Identifier:
keyid:37:DE:96:17:07:CE:C8:F6:38:34:DC:DB:8C:5A:27:83:76:D5:1A:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/37DE961707CEC8F63834DCDB8C5A278376D51AC8.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/37DE961707CEC8F63834DCDB8C5A278376D51AC8.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/622f5152-a295-47b7-addc-fbfef3247e3b/0/3130332e3231372e3231362e302f32342d3234203d3e203234353239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.217.216.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:76:57:96:2c:76:00:5b:fb:03:e6:5f:b0:16:c3:82:ec:73:
58:6f:3f:5a:60:fd:03:25:94:e0:3c:72:1c:1d:3e:6a:be:b2:
13:05:6f:ac:10:c8:11:e9:cc:4f:f3:e3:9f:ee:67:73:de:80:
5c:2a:5e:4a:a3:5c:09:f2:72:80:17:dd:b2:8b:ab:86:0a:3b:
65:76:ff:c8:57:82:70:e0:cd:6b:26:65:80:80:e6:61:12:33:
bc:c3:76:08:1c:f6:75:2b:c9:6d:08:a1:50:e9:16:86:3e:93:
ab:0d:f6:ba:c9:26:b2:12:3a:72:6f:c4:dc:d1:95:8d:0d:88:
be:5c:9a:b8:f3:09:8e:9e:13:a1:ef:81:fd:46:a3:3b:9a:e6:
ee:86:ce:53:7b:c9:06:eb:2e:67:c2:74:4c:25:65:24:db:fb:
3c:8e:b8:03:1d:a0:57:b4:4a:f5:49:ac:f4:6f:c4:56:ef:bc:
2c:42:1d:a8:89:e9:cc:bb:8d:a9:79:93:63:d7:df:a9:f2:c2:
65:4e:bb:fb:89:30:cd:48:46:6c:6b:4a:ac:28:ee:d6:e6:98:
96:60:28:93:95:19:08:20:40:c7:a1:65:bc:18:31:b9:ae:c3:
1f:d4:bd:c6:ae:a0:6e:fe:22:15:0b:74:e7:cf:d1:58:7f:25:
50:e0:6e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:33:04 2025 by rpki-client