Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa
File: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (raw, json)
Hash identifier: K+UHygo4qrap0HRp21an4Bv2wYIc+LITQ2V+cthKQG0=
Subject key identifier: 3B:F2:A9:E6:1D:40:04:1C:76:79:7C:F6:9B:CB:10:4A:6C:B7:6E:8B
Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3
Certificate serial: 206BE251E6131D300522701EE7445E51CF03F68F
Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa
Signing time: Wed 02 Oct 2024 23:00:01 +0000
ROA not before: Wed 02 Oct 2024 22:55:01 +0000
ROA not after: Wed 01 Oct 2025 23:00:01 +0000
asID: 137331
IP address blocks: 103.178.174.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:6b:e2:51:e6:13:1d:30:05:22:70:1e:e7:44:5e:51:cf:03:f6:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3
Validity
Not Before: Oct 2 22:55:01 2024 GMT
Not After : Oct 1 23:00:01 2025 GMT
Subject: CN=3BF2A9E61D40041C76797CF69BCB104A6CB76E8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4c:47:17:4b:55:79:81:a7:8b:e7:c5:77:4b:
67:ba:db:68:86:7f:60:04:90:4d:b6:8e:20:de:d3:
1b:5d:0e:c3:81:88:c0:3e:bb:b3:76:18:76:c3:a4:
05:64:02:d7:fc:3b:7f:33:5a:8c:49:d7:3b:f7:5f:
06:a1:45:8d:6e:c1:0f:a6:c1:9f:57:36:0a:96:f0:
8e:fd:9a:48:5d:15:52:15:43:da:b7:da:2b:09:92:
30:18:1c:04:2c:da:74:21:02:1c:29:d9:1c:dd:e9:
33:f4:2f:53:61:a0:87:fa:60:ac:ba:03:43:7f:2c:
fb:8f:9c:42:41:1f:62:bf:d5:2e:37:81:aa:f9:f8:
44:8d:75:8e:06:02:7a:67:fc:d0:f1:57:65:9a:57:
88:fd:09:17:c2:56:05:2e:14:9e:a7:95:6b:c3:d4:
e5:42:33:84:11:fe:f4:86:f1:e3:83:40:65:5b:ee:
26:6d:1e:91:92:1a:07:96:81:2b:89:5a:06:f3:51:
d1:ec:51:5c:d1:4b:c6:0b:b8:4a:56:99:4c:63:2a:
49:ac:fb:ba:5c:7a:fb:70:77:22:c5:38:0e:b7:b9:
e9:e9:7a:8b:b3:1d:f6:72:8b:ef:53:60:cd:a8:9e:
8a:e0:95:00:32:13:07:27:0f:08:73:c1:40:66:84:
3d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F2:A9:E6:1D:40:04:1C:76:79:7C:F6:9B:CB:10:4A:6C:B7:6E:8B
X509v3 Authority Key Identifier:
keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.178.174.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:3d:82:0c:10:86:b8:44:1f:dc:e8:da:98:f1:10:15:d5:a1:
15:09:83:51:c5:46:19:03:13:00:0b:fe:39:fc:b0:4d:53:cc:
cb:9c:40:96:1c:c5:5d:33:61:97:2b:04:b0:91:35:b5:1d:13:
2b:ff:96:6e:81:20:13:2c:92:37:00:47:92:75:86:c7:73:68:
42:97:ac:45:ff:b0:4b:71:99:10:da:11:44:ab:18:e1:6c:3d:
ee:81:a5:26:75:79:a6:66:3e:7d:68:5e:20:b7:aa:70:ca:66:
7c:86:d1:65:57:54:46:71:c0:2b:2f:91:2a:07:d4:ee:70:e3:
a5:78:1b:23:4c:48:1b:14:17:51:b2:ce:24:cc:ea:ca:71:37:
ba:f0:da:8b:f1:c1:f4:cf:d7:fe:01:7f:e4:36:53:bc:c2:ff:
35:70:4a:da:25:db:b1:0d:cd:3f:f0:05:e1:da:3f:8b:f9:78:
80:62:2a:70:f8:ad:70:fd:57:ad:1f:e0:e4:b8:73:59:f1:a2:
65:f9:70:ef:38:02:1a:61:43:ee:4a:fc:40:9d:dc:48:33:b4:
73:48:27:5b:8a:a0:6d:29:40:88:a3:ee:1e:5e:8d:5c:c9:f0:
ee:53:9a:60:fc:e3:00:f1:fd:33:68:42:e4:94:d4:93:84:07:
95:a4:41:51
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIUIGviUeYTHTAFInAe50ReUc8D9o8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx
RDMzN0FDMzAeFw0yNDEwMDIyMjU1MDFaFw0yNTEwMDEyMzAwMDFaMDMxMTAvBgNV
BAMTKDNCRjJBOUU2MUQ0MDA0MUM3Njc5N0NGNjlCQ0IxMDRBNkNCNzZFOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCTEcXS1V5gaeL58V3S2e622iG
f2AEkE22jiDe0xtdDsOBiMA+u7N2GHbDpAVkAtf8O38zWoxJ1zv3XwahRY1uwQ+m
wZ9XNgqW8I79mkhdFVIVQ9q32isJkjAYHAQs2nQhAhwp2Rzd6TP0L1NhoIf6YKy6
A0N/LPuPnEJBH2K/1S43gar5+ESNdY4GAnpn/NDxV2WaV4j9CRfCVgUuFJ6nlWvD
1OVCM4QR/vSG8eODQGVb7iZtHpGSGgeWgSuJWgbzUdHsUVzRS8YLuEpWmUxjKkms
+7pcevtwdyLFOA63uenpeouzHfZyi+9TYM2onorglQAyEwcnDwhzwUBmhD2bAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUO/Kp5h1ABBx2eXz2m8sQSmy3boswHwYDVR0j
BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3
NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz
N0FDMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkN2Y5ZWY0LWY5OWYtNDRmZi1i
OTY4LTcwZDQ1MjRkNzIwNy8wLzMxMzAzMzJlMzEzNzM4MmUzMTM3MzQyZTMwMmYz
MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzczMzMzMzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnsq4wDQYJ
KoZIhvcNAQELBQADggEBAI09ggwQhrhEH9zo2pjxEBXVoRUJg1HFRhkDEwAL/jn8
sE1TzMucQJYcxV0zYZcrBLCRNbUdEyv/lm6BIBMskjcAR5J1hsdzaEKXrEX/sEtx
mRDaEUSrGOFsPe6BpSZ1eaZmPn1oXiC3qnDKZnyG0WVXVEZxwCsvkSoH1O5w46V4
GyNMSBsUF1GyziTM6spxN7rw2ovxwfTP1/4Bf+Q2U7zC/zVwStol27ENzT/wBeHa
P4v5eIBiKnD4rXD9V60f4OS4c1nxomX5cO84AhphQ+5K/ECd3EgztHNIJ1uKoG0p
QIij7h5ejVzJ8O5TmmD84wDx/TNoQuSU1JOEB5WkQVE=
-----END CERTIFICATE-----
Generated at Tue Apr 8 13:18:24 2025 by rpki-client