Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32332d3233203d3e203536323432.roa
File: 3130332e3134332e32342e302f32332d3233203d3e203536323432.roa (raw, json)
Hash identifier: 6ARHaxkV0HQRmAgHPZ4dlFB+3c6L0ZGJmc/nN2+k+no=
Subject key identifier: 0B:96:76:56:8F:2D:59:97:79:0B:31:63:07:BE:E0:6C:6A:2D:03:18
Certificate issuer: /CN=C380A411E3CE15C60336341BB4B0994B307B920D
Certificate serial: 60C0BBB49BE0A6890A4FF6961EE5E0075BFB52EF
Authority key identifier: C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32332d3233203d3e203536323432.roa
Signing time: Thu 09 Jan 2025 09:02:30 +0000
ROA not before: Thu 09 Jan 2025 08:57:30 +0000
ROA not after: Thu 08 Jan 2026 09:02:30 +0000
asID: 56242
IP address blocks: 103.143.24.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:c0:bb:b4:9b:e0:a6:89:0a:4f:f6:96:1e:e5:e0:07:5b:fb:52:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C380A411E3CE15C60336341BB4B0994B307B920D
Validity
Not Before: Jan 9 08:57:30 2025 GMT
Not After : Jan 8 09:02:30 2026 GMT
Subject: CN=0B9676568F2D5997790B316307BEE06C6A2D0318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:08:3e:fe:27:ea:79:cf:5e:f4:26:63:09:8e:
5e:1b:18:cb:6a:34:b8:eb:63:cf:07:a8:24:62:82:
38:5f:83:09:39:71:37:6c:18:4c:0f:bd:53:e3:05:
48:ec:44:d8:b8:f6:e2:6d:a9:22:0a:1f:d2:36:b7:
84:a1:da:c8:46:41:d8:ea:b5:b7:bf:50:fe:c8:63:
34:c8:68:0e:e2:f6:b1:2a:d9:70:ee:ab:69:00:24:
44:c8:97:6b:f6:38:6f:62:53:14:c6:1b:23:56:a9:
6b:5e:27:04:dc:0b:89:37:59:11:20:f2:5a:02:52:
18:78:52:fa:f7:b5:b5:62:34:18:d3:b6:9d:2a:70:
b6:c8:da:04:6e:5d:75:25:df:ab:0d:32:04:fd:1c:
55:66:3b:da:0f:e8:f4:9d:9b:c4:4b:a1:d5:f9:a9:
e2:5a:40:08:0b:21:50:b1:15:e4:85:f5:0f:b4:fc:
19:83:87:b4:55:cb:c1:87:34:58:07:41:78:ae:66:
2c:a9:b3:29:7d:df:21:ee:e2:08:6c:f3:10:d5:1a:
89:05:7f:6e:c6:d6:9a:b3:d8:e1:c6:11:c6:b0:8f:
3d:a2:f9:60:15:32:9f:13:c0:5c:24:c4:77:a0:af:
ae:1e:bc:d6:a7:92:fe:6d:21:1f:ad:1f:c9:af:8b:
82:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:96:76:56:8F:2D:59:97:79:0B:31:63:07:BE:E0:6C:6A:2D:03:18
X509v3 Authority Key Identifier:
keyid:C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32332d3233203d3e203536323432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.143.24.0/23
Signature Algorithm: sha256WithRSAEncryption
33:7d:c9:80:58:ba:02:09:c0:fc:67:fb:3b:e2:62:dc:ad:82:
49:d9:9d:4d:e3:45:1e:71:67:8b:d4:f7:a6:86:84:67:bb:a7:
0d:0e:0d:57:55:b9:cf:d3:00:3a:82:53:13:94:ff:ba:26:95:
46:64:e6:b3:65:7d:78:08:59:f9:d6:9d:41:07:26:7d:f8:16:
c9:1d:85:e5:af:0b:b8:fa:13:fb:39:6b:c5:c6:c1:73:6d:76:
e2:04:b0:cc:5a:76:7e:cc:61:11:17:5e:c6:68:f7:4a:82:62:
93:2e:80:82:10:83:dc:70:c4:98:13:a6:cc:f5:11:b8:9c:fb:
c5:87:34:cb:74:c9:e4:06:0e:e9:16:07:14:eb:19:4f:99:1e:
2e:ea:69:e0:c9:84:de:88:3c:c4:06:50:af:17:40:f9:bd:42:
e3:31:92:77:20:a8:dc:ff:93:eb:62:74:72:5d:88:45:58:a9:
e3:63:4d:e8:ca:4d:c9:8e:93:21:40:90:04:f8:3c:5e:42:60:
a6:1e:0d:81:f3:ed:a3:83:88:16:5c:f0:99:14:0a:f6:48:a2:
9e:af:3e:fd:d0:0b:3a:76:43:95:ea:a9:5b:d9:6c:1b:1a:30:
aa:17:06:71:5b:3f:00:4f:bc:6a:e3:91:60:b8:b8:60:39:5d:
73:a9:06:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:49:16 2025 by rpki-client