Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/3130332e35362e39332e302f32342d3234203d3e203538343737.roa
File: 3130332e35362e39332e302f32342d3234203d3e203538343737.roa (raw, json)
Hash identifier: qYmhKPO9rFhqz04TGUFRQv1e9eYXk46mY1Xm3G2a+Uk=
Subject key identifier: E2:C6:68:B5:4B:91:AC:18:DA:27:2F:6D:BE:80:A9:83:5B:CC:41:9E
Certificate issuer: /CN=17502B1B8651CDBBCD43315B12E26B9625112CEB
Certificate serial: 508DC333FA3DDA6D3D487A17CD9642348F0FC7F1
Authority key identifier: 17:50:2B:1B:86:51:CD:BB:CD:43:31:5B:12:E2:6B:96:25:11:2C:EB
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17502B1B8651CDBBCD43315B12E26B9625112CEB.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/3130332e35362e39332e302f32342d3234203d3e203538343737.roa
Signing time: Wed 20 Nov 2024 10:03:09 +0000
ROA not before: Wed 20 Nov 2024 09:58:09 +0000
ROA not after: Wed 19 Nov 2025 10:03:09 +0000
asID: 58477
IP address blocks: 103.56.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:8d:c3:33:fa:3d:da:6d:3d:48:7a:17:cd:96:42:34:8f:0f:c7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17502B1B8651CDBBCD43315B12E26B9625112CEB
Validity
Not Before: Nov 20 09:58:09 2024 GMT
Not After : Nov 19 10:03:09 2025 GMT
Subject: CN=E2C668B54B91AC18DA272F6DBE80A9835BCC419E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ed:c0:8c:93:ec:e8:a2:b2:a3:2c:b1:6d:73:
e2:ee:88:5d:7d:4a:7c:d1:49:ce:7b:b8:aa:02:55:
dd:e5:53:61:33:67:dc:1d:12:b7:f6:76:8d:1c:82:
6f:1f:85:71:fa:27:ea:72:4b:57:24:e5:5b:55:af:
3b:9f:03:dc:5e:d6:4f:4c:00:91:7a:14:5e:99:2a:
2b:54:b8:36:44:16:1d:b8:b7:ce:6f:92:22:62:e5:
b3:d1:48:92:b1:e9:2d:90:14:91:2c:d3:99:5d:80:
eb:cc:d6:b1:34:6d:a0:f8:6e:8d:bf:0d:90:c8:cf:
fd:68:91:3a:ea:14:26:d8:25:d8:9b:e6:ea:7f:2f:
1b:db:b7:60:fa:13:af:46:51:c9:12:fb:31:6d:79:
cc:2e:88:06:88:29:b7:19:66:65:f5:be:52:ab:55:
29:c0:ac:05:e0:f2:15:2a:64:42:5a:c2:ce:e0:24:
ac:6e:c0:ab:22:7a:39:36:80:59:e7:0e:b2:be:92:
f5:33:ad:4c:9c:7a:e3:0f:a5:08:e7:a7:92:9e:ea:
82:4f:93:6b:dc:10:1a:a7:2a:6b:59:d8:b6:aa:4a:
1c:f8:ed:e4:0b:8b:3c:f6:81:1e:9a:74:b3:2a:eb:
6a:17:68:05:2f:5b:f2:20:8b:32:19:8c:b5:68:d4:
e3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C6:68:B5:4B:91:AC:18:DA:27:2F:6D:BE:80:A9:83:5B:CC:41:9E
X509v3 Authority Key Identifier:
keyid:17:50:2B:1B:86:51:CD:BB:CD:43:31:5B:12:E2:6B:96:25:11:2C:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/17502B1B8651CDBBCD43315B12E26B9625112CEB.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17502B1B8651CDBBCD43315B12E26B9625112CEB.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/3130332e35362e39332e302f32342d3234203d3e203538343737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.56.93.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:e5:b3:03:0c:67:e7:0c:f3:5f:36:97:0f:fb:67:7c:0b:44:
82:28:f5:c9:09:ef:37:dd:51:80:6e:09:fa:24:9d:de:ce:ef:
db:fa:d7:04:03:2f:19:df:7d:cd:0b:d6:ae:17:ff:30:2e:84:
7e:bd:ab:eb:3d:a7:33:1a:e7:40:82:fc:75:42:49:2e:fe:86:
a2:03:86:15:2b:ff:dc:b5:9f:14:40:de:ff:23:cd:44:1b:04:
76:4e:79:0f:c7:39:b9:94:55:76:69:c6:cf:b9:26:90:6f:4c:
d7:e5:a6:67:8e:7d:e6:9c:4d:59:4f:a7:ac:5c:c6:2e:86:4c:
9e:f5:85:70:ce:fe:aa:57:14:fe:17:3b:9e:ee:66:70:eb:3c:
13:3e:6a:68:7b:87:61:25:c7:0e:2c:db:10:86:e9:b8:f7:f2:
98:fb:6b:65:d1:b2:8b:9c:a2:c2:7d:17:f2:5a:d9:ea:c2:43:
7b:8b:e4:2e:8c:99:2c:47:07:04:30:e1:9c:ac:2c:de:26:11:
54:46:9f:15:92:a2:09:29:dd:1f:94:7e:2e:f5:c6:1e:98:c0:
ed:2b:78:83:1f:8d:54:5e:e3:68:fc:d9:15:0b:bf:ab:e3:fa:
8a:46:c9:73:64:7a:1c:cb:19:de:e9:bf:9c:d8:26:d3:b9:8e:
11:2c:b3:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:12:23 2025 by rpki-client