Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135372e302f32342d3234203d3e20313432333630.roa
File: 3130332e3134372e3135372e302f32342d3234203d3e20313432333630.roa (raw, json)
Hash identifier: mlhnbAkpJ5WE/E+MZelidz+6mGgigg2Tl3xpoPq5FUU=
Subject key identifier: BF:26:43:F3:63:79:1F:ED:9C:9A:1C:F4:0C:DF:F3:72:D3:D1:68:D9
Certificate issuer: /CN=0D3926ADFB47314F1E7D5B92769131D429FC13A9
Certificate serial: 4A28C9307053BE85E870670BF1853B0502802094
Authority key identifier: 0D:39:26:AD:FB:47:31:4F:1E:7D:5B:92:76:91:31:D4:29:FC:13:A9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D3926ADFB47314F1E7D5B92769131D429FC13A9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135372e302f32342d3234203d3e20313432333630.roa
Signing time: Wed 28 Aug 2024 02:00:43 +0000
ROA not before: Wed 28 Aug 2024 01:55:43 +0000
ROA not after: Wed 27 Aug 2025 02:00:43 +0000
asID: 142360
IP address blocks: 103.147.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:28:c9:30:70:53:be:85:e8:70:67:0b:f1:85:3b:05:02:80:20:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D3926ADFB47314F1E7D5B92769131D429FC13A9
Validity
Not Before: Aug 28 01:55:43 2024 GMT
Not After : Aug 27 02:00:43 2025 GMT
Subject: CN=BF2643F363791FED9C9A1CF40CDFF372D3D168D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:fe:51:31:6b:7a:d9:9e:e6:f6:ec:ad:5c:bc:
bc:44:3a:89:f2:b1:37:eb:2c:06:58:56:6c:64:02:
36:f5:9c:c4:f4:23:6c:f4:69:3f:07:11:5d:17:57:
de:1d:aa:88:62:c8:b0:6a:3c:9f:08:8f:91:9d:05:
7c:69:59:f4:e9:60:5a:2b:e8:1e:16:e9:0d:32:e7:
fc:f7:78:84:92:71:90:5d:6f:c9:34:3c:b8:a4:7e:
af:23:a0:3d:b7:c2:3b:dc:c8:39:41:e0:e9:09:5e:
ba:c8:76:d6:7e:2e:74:f3:78:30:a5:2c:81:8c:ee:
8e:a7:9c:29:20:9e:ae:1f:ac:86:63:d1:68:8e:1a:
10:f9:e3:5c:18:6c:08:7d:67:18:8c:14:75:af:39:
6e:db:11:8c:68:02:75:fd:78:e5:24:11:a3:53:e0:
fc:02:bf:7c:c5:cf:d3:9d:47:49:a4:ca:b5:90:7e:
38:06:c5:81:b6:00:6a:d3:99:73:91:61:7e:40:0b:
f7:64:25:e5:21:65:0c:f8:76:cb:78:70:0d:7e:ce:
d9:0c:c7:77:18:c5:03:2d:fd:9c:33:2d:0f:ba:a0:
b1:67:39:c6:8f:28:75:39:76:01:3d:72:0f:71:e1:
ce:cb:6f:c7:95:5c:7d:70:97:f2:27:97:d8:26:56:
ad:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:26:43:F3:63:79:1F:ED:9C:9A:1C:F4:0C:DF:F3:72:D3:D1:68:D9
X509v3 Authority Key Identifier:
keyid:0D:39:26:AD:FB:47:31:4F:1E:7D:5B:92:76:91:31:D4:29:FC:13:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/0D3926ADFB47314F1E7D5B92769131D429FC13A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D3926ADFB47314F1E7D5B92769131D429FC13A9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62daa95f-2f59-439a-834f-a721c372a74c/0/3130332e3134372e3135372e302f32342d3234203d3e20313432333630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.157.0/24
Signature Algorithm: sha256WithRSAEncryption
00:ef:62:6f:14:c1:c7:34:60:81:63:3a:98:2e:05:25:bb:d0:
aa:24:26:cb:bb:be:b5:90:7c:56:62:40:52:91:10:a6:23:47:
69:db:86:cd:d2:a1:76:98:89:9c:b1:b2:93:31:89:c8:55:67:
c1:4e:c7:36:f7:71:fe:1c:d4:95:0c:2d:66:41:14:bd:9b:fa:
b3:e5:71:27:b2:77:18:4c:82:6d:d8:0c:6a:bc:d8:86:26:9c:
24:59:d5:10:1a:0a:da:0e:67:9b:a1:62:65:5f:63:cb:5c:e5:
f1:1a:80:1e:ec:78:7c:6c:e6:a1:64:86:e7:77:81:77:0c:62:
91:dc:7a:17:2c:27:86:8a:d1:7b:cb:a6:81:48:95:a9:df:09:
79:98:ee:18:b4:c3:65:ae:74:22:c0:f6:b1:55:46:c5:2d:da:
dc:40:86:aa:36:4e:67:cd:5c:f1:33:61:ab:0d:86:30:84:ff:
ce:fd:e8:59:7c:89:72:48:ea:25:a6:9a:56:d3:70:03:a7:15:
ba:82:02:1b:dd:c6:e1:2b:0c:69:a2:fe:84:2b:7f:14:5e:15:
d5:be:40:56:02:84:25:c2:a3:c2:e6:85:ed:53:82:a4:b4:0c:
11:10:e0:08:e7:29:3a:9f:51:26:9e:ef:32:ad:52:11:41:b6:
33:4d:a6:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:35:14 2025 by rpki-client