Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa
File: 3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa (raw, json)
Hash identifier: qsN6cCaNvPRadYvOCvh81rbUqW03/U/6OgyS9kMLbwY=
Subject key identifier: 7A:D4:4D:45:0D:FE:98:42:A4:B8:B8:EE:76:1D:E6:65:30:63:BE:01
Certificate issuer: /CN=B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42
Certificate serial: 7389016C586B15B73A516EA020EB549161B3FD7E
Authority key identifier: B3:B3:A1:DE:E0:9E:40:7B:C6:CE:08:EF:C7:CD:2B:AF:41:C7:BA:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa
Signing time: Mon 30 Sep 2024 11:00:00 +0000
ROA not before: Mon 30 Sep 2024 10:55:00 +0000
ROA not after: Mon 29 Sep 2025 11:00:00 +0000
asID: 17769
IP address blocks: 103.147.164.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:89:01:6c:58:6b:15:b7:3a:51:6e:a0:20:eb:54:91:61:b3:fd:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42
Validity
Not Before: Sep 30 10:55:00 2024 GMT
Not After : Sep 29 11:00:00 2025 GMT
Subject: CN=7AD44D450DFE9842A4B8B8EE761DE6653063BE01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0f:aa:6a:98:6c:29:92:75:82:d0:26:ff:25:
58:47:35:50:81:1f:b9:28:ce:04:1f:46:e0:2c:e3:
70:14:2a:bf:44:a7:9f:93:60:ef:6b:88:b2:c7:a7:
01:dd:04:7a:81:5f:92:8c:e0:07:f2:44:bb:57:a3:
a2:6c:47:54:b7:18:8a:04:12:4a:d4:73:c9:34:d1:
53:ba:81:33:94:86:d8:70:d2:a8:ff:f9:3a:ed:3c:
f3:49:71:49:31:77:52:be:54:38:e5:1a:90:4e:66:
57:1b:2f:26:9d:40:f0:96:65:d9:ba:32:14:3a:77:
37:47:8d:05:8b:52:53:57:de:3a:c2:de:41:5c:81:
37:57:1f:ae:18:9e:4d:61:d7:8c:6a:2a:7b:af:95:
4c:b8:04:c2:4d:cb:5a:2a:66:b5:a6:b3:33:0a:90:
39:a3:32:e2:f4:50:cb:75:4e:66:80:9c:9a:85:05:
20:4c:5a:5f:ad:42:c8:a4:05:61:c7:a9:2b:ad:fb:
e3:ad:09:68:03:51:a4:45:fe:50:01:27:e9:06:f0:
3b:5a:04:07:e0:29:f9:76:f0:4a:3d:9d:c1:c0:94:
0c:be:b6:2f:65:c9:81:0b:07:36:a2:df:27:34:09:
40:b5:21:4c:99:84:50:17:7b:f5:14:54:51:84:9a:
7e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D4:4D:45:0D:FE:98:42:A4:B8:B8:EE:76:1D:E6:65:30:63:BE:01
X509v3 Authority Key Identifier:
keyid:B3:B3:A1:DE:E0:9E:40:7B:C6:CE:08:EF:C7:CD:2B:AF:41:C7:BA:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.164.0/23
Signature Algorithm: sha256WithRSAEncryption
41:98:ee:0b:37:fe:33:d0:15:86:8f:e6:87:15:fb:20:4f:ea:
4b:4f:37:bc:9c:8c:e5:f6:fc:4f:61:a7:f1:bc:4b:1a:13:28:
db:25:35:31:8e:8c:ae:b9:1d:5d:0b:59:bf:10:12:66:33:01:
70:29:8c:0c:b4:60:97:96:60:c4:eb:05:ce:13:6c:2c:7a:3c:
96:de:8c:40:2f:c6:e3:31:58:37:06:8b:69:72:9c:a6:fa:3e:
47:69:d3:60:b9:65:35:c4:f8:bc:71:7d:77:cb:77:bf:dd:24:
ec:f5:9a:c0:57:c3:b0:bf:3c:d2:0f:b3:be:92:6a:8e:93:a8:
40:d2:c1:e7:45:bb:c1:46:bd:82:08:2a:49:fd:8e:b3:bc:94:
13:f0:5c:ce:2d:ca:2c:81:80:4a:de:19:5a:d1:e6:de:19:94:
04:46:8c:ce:64:6d:48:fe:3e:6e:50:68:e6:4e:42:8d:cc:9c:
e8:6d:93:82:38:cc:8b:40:2e:b4:89:0a:ff:0a:34:64:80:9b:
4f:a8:2f:53:01:a7:42:1b:03:5a:24:8c:46:b6:ae:e1:a7:e3:
d9:37:58:ac:82:bd:84:a9:ae:e8:2e:f5:e2:c6:55:dd:72:1e:
85:d8:88:aa:83:49:86:be:c1:d6:31:80:f1:ab:cf:6f:e8:8f:
67:57:68:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:21:47 2025 by rpki-client