Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa
File: 3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa (raw, json)
Hash identifier: mIROvhV/B52jTv+b7xbtzNIsRy0qMHCKGHbEvF+jS6o=
Subject key identifier: 6D:AF:86:8B:ED:A3:84:71:16:B5:C4:50:F2:84:51:B4:74:47:32:3E
Certificate issuer: /CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE
Certificate serial: 5F6428495EFA4285E024EC45F8F269859575B4B9
Authority key identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa
Signing time: Wed 11 Sep 2024 19:00:00 +0000
ROA not before: Wed 11 Sep 2024 18:55:00 +0000
ROA not after: Wed 10 Sep 2025 19:00:00 +0000
asID: 147133
IP address blocks: 103.176.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:64:28:49:5e:fa:42:85:e0:24:ec:45:f8:f2:69:85:95:75:b4:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE
Validity
Not Before: Sep 11 18:55:00 2024 GMT
Not After : Sep 10 19:00:00 2025 GMT
Subject: CN=6DAF868BEDA3847116B5C450F28451B47447323E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:76:5d:a3:23:75:37:1e:4e:fe:fe:08:45:50:
42:59:12:17:eb:3e:e9:b3:a5:bd:db:6a:c8:6f:3e:
c5:46:39:87:f1:c5:f7:38:2c:72:42:f7:f8:3a:33:
69:c2:f9:8b:6b:bf:78:68:d2:e9:68:49:36:47:92:
f0:9b:fb:73:7e:9f:da:b7:97:a7:51:63:cc:a3:29:
e9:7f:e3:03:5c:4f:ce:61:01:50:63:31:db:f0:70:
ab:52:e6:66:c7:14:83:ee:c1:d8:9b:18:5f:e6:b0:
66:57:0e:55:8f:85:b8:93:59:78:8f:af:ef:2e:f2:
01:d4:75:5b:5f:ce:d7:40:f2:6e:50:ba:db:91:da:
d1:01:26:84:10:ea:18:7f:03:c0:ce:e4:b0:51:88:
8e:f2:a5:c1:d1:b1:f5:f8:5b:b5:56:61:11:bf:8f:
f0:90:b4:e4:a1:b4:b9:3b:c8:06:79:83:02:bd:00:
97:98:d9:51:22:6b:8e:11:c4:07:ab:e2:95:4a:94:
6b:7f:57:a9:82:18:ce:c1:49:80:4e:f7:6d:f0:33:
71:45:0a:d7:ea:38:98:ff:e0:80:67:2b:ed:1d:03:
a1:b6:7f:1a:f3:3d:fd:4a:a3:fc:8f:a2:78:a6:17:
d9:69:7b:32:3c:b8:93:e6:62:13:05:21:c0:60:0e:
e9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AF:86:8B:ED:A3:84:71:16:B5:C4:50:F2:84:51:B4:74:47:32:3E
X509v3 Authority Key Identifier:
keyid:25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/3130332e3137362e3138302e302f32342d3234203d3e20313437313333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.176.180.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:22:7d:60:80:58:bc:84:41:73:ac:cd:13:d9:c6:45:b1:74:
fd:00:15:41:0e:c3:ae:43:a2:6a:1b:a4:47:af:75:1f:d5:50:
15:be:b8:d5:09:9e:72:cd:39:9d:db:b5:cc:9d:ee:54:62:af:
4f:00:8c:2b:ac:9a:ca:b2:9b:9d:fd:2c:89:7b:52:e4:a3:ff:
e2:56:c9:c7:38:90:aa:b7:d0:d0:2b:99:ea:9d:06:b8:43:b0:
3c:f4:90:86:bd:84:23:64:fb:c3:5c:eb:9a:0f:1e:f0:0b:3e:
7e:a0:13:d4:56:ba:99:2e:b3:e8:fd:70:52:6a:b5:51:c8:0d:
f2:fa:51:78:bd:b6:18:36:a8:2f:8a:61:16:3b:fe:df:e8:b6:
74:75:2c:05:06:a4:fa:ee:9d:73:da:a1:24:c7:83:ec:fc:f0:
ce:ab:f2:fb:64:ee:a6:81:7f:ba:0b:89:e5:c1:2d:43:94:67:
6a:18:7c:a6:2c:d7:fb:0d:47:87:59:6d:94:f1:b2:8a:eb:b7:
29:c5:c3:6b:ed:b6:41:5f:f0:37:6e:9b:27:0f:a8:1e:eb:7a:
5d:5f:c8:75:fa:c0:e4:da:53:e5:b5:e4:f9:36:64:7f:ef:78:
e4:f4:96:e3:36:e4:02:d7:36:b9:48:e0:9b:50:2a:20:f8:89:
78:0e:02:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:34:33 2025 by rpki-client