Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/73adecdd-2533-462d-ace2-ba4a7a2ca4c3/0/3130332e3232382e31382e302f32342d3234203d3e20313530393835.roa
File: 3130332e3232382e31382e302f32342d3234203d3e20313530393835.roa (raw, json)
Hash identifier: p+im+cKBAuT9GR2ab6QfUrGVd4Qjl/8bYYy3q5g1OgM=
Subject key identifier: 44:E5:90:0D:4F:E7:44:1D:6F:5F:6B:24:A8:2E:B1:1B:19:A2:E5:C1
Certificate issuer: /CN=74017DA6C3B6935388C1ADE6008FB78FAC671213
Certificate serial: 7022A1CF3B6758C974E1DF8ED6CE9ECD93E42186
Authority key identifier: 74:01:7D:A6:C3:B6:93:53:88:C1:AD:E6:00:8F:B7:8F:AC:67:12:13
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74017DA6C3B6935388C1ADE6008FB78FAC671213.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/73adecdd-2533-462d-ace2-ba4a7a2ca4c3/0/3130332e3232382e31382e302f32342d3234203d3e20313530393835.roa
Signing time: Mon 20 May 2024 07:00:49 +0000
ROA not before: Mon 20 May 2024 06:55:49 +0000
ROA not after: Mon 19 May 2025 07:00:49 +0000
asID: 150985
IP address blocks: 103.228.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:22:a1:cf:3b:67:58:c9:74:e1:df:8e:d6:ce:9e:cd:93:e4:21:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74017DA6C3B6935388C1ADE6008FB78FAC671213
Validity
Not Before: May 20 06:55:49 2024 GMT
Not After : May 19 07:00:49 2025 GMT
Subject: CN=44E5900D4FE7441D6F5F6B24A82EB11B19A2E5C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fc:97:a8:35:58:ec:8e:8d:0d:7f:9e:83:a0:
0f:98:9c:a0:c2:d3:93:de:32:fa:ac:2d:76:77:89:
f9:1b:46:fe:7e:ca:af:9e:71:5d:79:5c:5a:70:87:
bb:bf:39:96:52:25:13:24:5b:e6:99:1f:a2:5c:13:
b4:64:3f:29:b5:c7:ee:46:4b:ab:b6:65:4c:0b:1f:
b8:b7:d2:bf:56:32:5a:68:f1:a3:a4:7e:28:d3:ec:
ac:df:c8:f1:7f:e6:bf:b9:26:5c:e5:29:0e:31:90:
48:8a:8e:ed:76:a8:14:b0:5e:9c:b9:92:9e:e3:fc:
ef:e6:d4:7a:ec:8a:09:3d:18:4d:ba:c9:4e:fc:55:
e1:ac:9d:46:8a:d8:92:c2:dc:00:06:2c:d9:1c:ce:
0c:0c:6d:6e:e1:e0:66:3d:58:a9:3c:7e:98:a4:ea:
ab:66:d8:a0:4d:ce:05:cc:86:41:63:31:62:65:aa:
c3:e1:6d:30:f6:1b:27:1e:e7:7b:ee:d8:d1:96:c7:
48:5d:77:f3:aa:7a:bd:41:d8:e5:1a:40:4b:8a:99:
6c:a9:65:13:93:f5:b8:5f:5f:bc:62:d9:8a:c8:9e:
37:d6:7a:be:55:4a:c1:8e:d7:67:60:f0:b9:fb:e9:
ec:c1:a8:d8:14:e0:c1:91:09:f0:bf:61:df:cd:1e:
1a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:E5:90:0D:4F:E7:44:1D:6F:5F:6B:24:A8:2E:B1:1B:19:A2:E5:C1
X509v3 Authority Key Identifier:
keyid:74:01:7D:A6:C3:B6:93:53:88:C1:AD:E6:00:8F:B7:8F:AC:67:12:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/73adecdd-2533-462d-ace2-ba4a7a2ca4c3/0/74017DA6C3B6935388C1ADE6008FB78FAC671213.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/74017DA6C3B6935388C1ADE6008FB78FAC671213.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73adecdd-2533-462d-ace2-ba4a7a2ca4c3/0/3130332e3232382e31382e302f32342d3234203d3e20313530393835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.228.18.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:c6:c3:9e:81:9b:cf:a6:ca:6f:c8:2e:4e:79:96:ee:f4:3c:
66:ff:3f:e5:9c:e3:18:c6:0f:fb:df:41:ef:e9:14:33:3e:98:
3b:7e:4c:fa:79:60:d8:7d:53:44:ed:65:c0:2f:06:00:6f:7b:
2c:2a:38:ed:02:1d:3a:02:4b:c3:bd:fc:f1:70:a5:22:da:de:
b0:21:1c:c3:7b:c0:be:74:77:1f:73:c6:3f:0f:c8:d8:d9:45:
2f:ce:27:f5:fb:35:5e:71:e9:b5:86:4b:50:9a:ab:6f:af:7e:
f7:33:d8:ae:6d:7b:fa:81:12:3e:0a:c8:b7:e1:3d:c4:23:66:
73:35:09:cc:12:9a:a2:df:17:38:c2:32:c0:e4:72:b5:f2:63:
6e:24:9c:8a:27:b4:b9:65:fa:70:d0:55:84:4d:0e:34:dd:0c:
61:82:67:13:bc:e1:2e:91:cf:41:ac:70:3c:1b:bc:07:a2:4c:
27:4a:4b:39:d3:c2:78:2b:00:7b:5e:da:f4:f9:dd:ff:fe:dd:
ad:f5:a9:22:c8:28:b7:47:5d:1a:7b:a3:21:ad:b8:3b:f0:4e:
d8:27:51:3b:ca:c1:2b:6d:95:2b:85:7d:b7:21:8f:e2:6a:46:
39:d8:f0:5c:19:88:f6:59:24:43:a6:2e:6b:9a:31:ea:46:fb:
ff:69:69:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:17:08 2025 by rpki-client