Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235342e302f32342d3234203d3e203539323739.roa
File: 3130332e3232372e3235342e302f32342d3234203d3e203539323739.roa (raw, json)
Hash identifier: 5QbcPGy/M7njxIhRGnhFNOXKsrYeYIRjfqDpCIGPyAA=
Subject key identifier: FB:1A:12:34:99:05:A4:31:82:40:34:F3:F9:28:0E:C7:6E:A9:BA:A1
Certificate issuer: /CN=A9EBCF8158EABB1C16EFE1B82B4E79170AE87683
Certificate serial: 46504FA87551144F360BD955D9123B2452171BED
Authority key identifier: A9:EB:CF:81:58:EA:BB:1C:16:EF:E1:B8:2B:4E:79:17:0A:E8:76:83
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235342e302f32342d3234203d3e203539323739.roa
Signing time: Wed 14 Aug 2024 11:00:00 +0000
ROA not before: Wed 14 Aug 2024 10:55:00 +0000
ROA not after: Wed 13 Aug 2025 11:00:00 +0000
asID: 59279
IP address blocks: 103.227.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:50:4f:a8:75:51:14:4f:36:0b:d9:55:d9:12:3b:24:52:17:1b:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9EBCF8158EABB1C16EFE1B82B4E79170AE87683
Validity
Not Before: Aug 14 10:55:00 2024 GMT
Not After : Aug 13 11:00:00 2025 GMT
Subject: CN=FB1A12349905A431824034F3F9280EC76EA9BAA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8b:f5:40:a6:aa:6d:c9:bb:f0:a3:b2:54:f2:
5d:a0:de:61:6b:1d:ad:a9:c6:0d:80:6d:d7:10:43:
95:fe:95:65:c6:ea:e8:35:ce:8b:ba:db:51:f9:57:
e0:6f:0f:09:c2:fa:c7:6c:97:c3:0f:64:15:5d:66:
0e:86:f0:af:68:55:95:4b:29:4b:a5:43:fb:d3:77:
12:32:eb:6e:a3:ab:65:a7:27:8c:98:c9:eb:ad:3a:
8e:39:e6:09:e2:54:01:16:6c:8c:e5:ac:52:35:42:
a2:ee:a1:ad:4d:b1:8b:69:b3:e2:96:de:27:aa:b9:
e9:55:f4:2f:80:9b:ee:a9:82:cb:15:7d:13:1e:6e:
13:2a:16:30:e6:a4:aa:5c:11:5b:33:b9:c2:76:83:
b6:22:eb:1f:04:aa:c3:80:3e:a4:d0:50:5e:b7:5d:
1c:4b:94:e1:84:f2:8d:dc:29:1a:10:bb:17:85:3a:
ef:81:62:00:a9:97:79:9f:40:e1:76:a0:3f:b9:6e:
8c:99:c3:e6:fa:43:0f:0a:d4:e8:41:a9:fd:a9:84:
04:f8:f8:6d:b4:ca:0e:97:bf:f3:25:67:94:a6:9f:
d4:05:01:64:65:a8:e8:2b:40:f4:2f:74:5d:21:66:
ff:17:e5:21:e8:51:5c:2e:55:fd:7e:37:b5:f3:a8:
5b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:1A:12:34:99:05:A4:31:82:40:34:F3:F9:28:0E:C7:6E:A9:BA:A1
X509v3 Authority Key Identifier:
keyid:A9:EB:CF:81:58:EA:BB:1C:16:EF:E1:B8:2B:4E:79:17:0A:E8:76:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9EBCF8158EABB1C16EFE1B82B4E79170AE87683.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6efffc2d-cca7-48e6-9cd6-565c11c45440/0/3130332e3232372e3235342e302f32342d3234203d3e203539323739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.227.254.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:78:db:dd:2e:12:48:3c:4e:09:79:29:9a:a3:42:fa:1a:15:
99:65:56:ce:d9:b2:a3:4a:ae:cb:5c:44:bf:c9:c3:e1:17:c2:
79:a0:a8:d6:16:17:01:8d:e2:2d:16:c6:3c:0a:74:fd:50:ae:
0a:75:39:6e:54:81:18:e8:b3:20:f3:7d:9d:44:48:aa:c2:cf:
f4:df:ec:a2:f9:3f:71:1f:e0:75:bb:69:fc:34:8b:b3:71:cd:
c0:d2:dd:cd:95:83:08:5f:26:ef:17:27:92:d6:cc:f6:7f:1b:
d9:05:a4:e2:3a:43:b2:5b:99:58:a6:b3:f7:c2:7f:0c:ad:c1:
f8:39:76:98:80:49:16:11:ac:af:78:d2:49:7e:c5:1d:a3:bb:
8d:d9:2b:d9:81:0b:44:a1:1e:10:9e:6f:54:62:76:8c:a2:09:
4b:58:9f:b4:35:a1:d4:93:82:d8:b3:07:52:33:37:de:2a:18:
03:f9:70:17:78:2c:5f:67:88:f7:0a:f4:f9:a9:9c:de:0b:c8:
72:39:d4:33:f9:f9:62:76:54:33:80:c2:86:f5:0b:ff:41:39:
eb:34:da:8c:5b:0f:02:d5:0e:15:9c:f2:21:20:ce:8b:5e:70:
bf:82:a5:b0:d6:7c:fe:b3:4a:f3:ae:f9:d9:c9:45:6e:31:18:
fc:36:fc:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:43 2025 by rpki-client