Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132362e302f32342d3234203d3e20313337333136.roa
File: 3130332e3130392e3132362e302f32342d3234203d3e20313337333136.roa (raw, json)
Hash identifier: LMn+a9mnh1HMSoe3viFySk/R6dP/AN6gF68nM8tBltE=
Subject key identifier: C9:E3:CA:48:56:4B:75:93:89:0D:E1:9F:7B:E3:E4:B1:42:D6:83:EA
Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D
Certificate serial: 61FA18FB9EB3FC6C641010C37B7437A13AC0DF44
Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132362e302f32342d3234203d3e20313337333136.roa
Signing time: Fri 16 Aug 2024 14:00:01 +0000
ROA not before: Fri 16 Aug 2024 13:55:01 +0000
ROA not after: Fri 15 Aug 2025 14:00:01 +0000
asID: 137316
IP address blocks: 103.109.126.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:fa:18:fb:9e:b3:fc:6c:64:10:10:c3:7b:74:37:a1:3a:c0:df:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D
Validity
Not Before: Aug 16 13:55:01 2024 GMT
Not After : Aug 15 14:00:01 2025 GMT
Subject: CN=C9E3CA48564B7593890DE19F7BE3E4B142D683EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4c:d9:24:25:04:04:72:d1:db:7d:c1:73:c6:
57:43:9d:9d:65:c6:83:41:91:f0:1b:2a:5a:0a:ab:
fe:24:7a:0c:59:4a:7f:6f:36:de:32:6e:f9:ff:24:
42:ba:bf:a9:31:d8:f9:07:5f:63:ba:98:f2:c1:91:
a5:f5:32:a2:f3:7c:da:d8:70:1e:9c:90:bf:5e:46:
9a:8b:1d:d6:d3:18:5f:ac:21:51:52:38:c9:b0:ec:
e5:94:3e:7c:bb:92:22:ad:d9:be:d3:94:e5:00:49:
c5:c0:dc:d4:e0:c9:0d:c8:5c:6f:02:74:1d:23:0f:
36:14:76:48:36:02:93:60:4f:25:db:4f:15:2a:6a:
65:63:a2:09:b8:44:a6:81:d7:5f:6f:98:9c:d5:4c:
b8:11:4a:bd:b0:c5:c8:ae:dd:1b:65:47:79:86:69:
2c:20:41:9b:ae:58:d9:d5:b6:75:72:b9:cf:9c:aa:
c4:2b:0c:be:75:f6:e8:84:1a:e4:85:ed:67:2e:0b:
17:50:f1:22:4c:ef:b9:7b:70:63:ca:82:5d:5b:7c:
87:be:29:84:4b:26:07:76:31:81:8e:ff:5a:d9:56:
c9:04:a5:d0:a2:2e:4e:fe:83:28:7e:61:42:63:b1:
b7:e9:29:45:30:bc:a3:fe:e5:95:7c:fb:53:af:95:
4c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E3:CA:48:56:4B:75:93:89:0D:E1:9F:7B:E3:E4:B1:42:D6:83:EA
X509v3 Authority Key Identifier:
keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/3130332e3130392e3132362e302f32342d3234203d3e20313337333136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.109.126.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:c4:a5:59:0b:20:8f:76:ef:64:69:eb:85:1b:e3:b5:3e:9f:
e2:3c:c2:c3:b1:ab:ba:3d:20:17:9f:ee:5f:0f:ba:08:50:20:
c1:1f:53:c5:e5:26:82:48:be:fc:af:57:86:ba:1b:27:50:1b:
22:64:f8:5d:51:f8:35:74:47:ba:25:f8:69:c5:9c:de:48:cc:
05:c4:2f:63:9e:3f:b0:ee:f1:62:61:55:37:27:37:a2:02:ab:
9c:89:47:3f:91:d2:b6:4e:f6:e3:c6:ba:fc:90:d9:23:bf:be:
00:f9:6a:42:6c:cd:95:ef:a1:c7:57:a6:8a:4a:53:7b:2e:fe:
04:89:73:9f:5f:af:21:a5:43:0b:c8:02:51:7d:76:d3:85:6c:
73:8e:c4:7e:99:94:18:b8:88:c4:36:61:d7:1d:d3:41:72:9d:
1a:84:8a:1a:a2:e3:b8:e5:a5:fb:a4:90:33:f3:6b:30:b1:dc:
5f:5b:2f:39:6a:41:59:e8:0c:aa:ef:7f:d3:e7:dd:7e:22:84:
1c:2b:15:7d:e7:4f:36:29:8c:1b:23:aa:05:dc:f5:e4:e1:29:
27:26:13:c5:ce:0b:78:c2:71:96:81:d2:71:5f:36:0d:75:f8:
7e:16:e3:95:d4:97:fb:2c:17:2e:12:1a:ff:9d:87:04:9e:ed:
17:bd:45:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:59:56 2025 by rpki-client