Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32332d3234203d3e20313437313230.roa
File: 3130332e3137352e3135362e302f32332d3234203d3e20313437313230.roa (raw, json)
Hash identifier: emsQJdjbYtT0renX4ejysE/MpgZNsldWDGyL3wTvHwk=
Subject key identifier: EC:FE:60:AF:CB:19:5F:AC:AC:BB:8F:EC:96:DA:28:2C:A0:48:ED:B0
Certificate issuer: /CN=ED4F41D4EBE684D523406475FAB471CE1B24E360
Certificate serial: 4335C09D3C8C9475B137E2861AB180BE3ED407E9
Authority key identifier: ED:4F:41:D4:EB:E6:84:D5:23:40:64:75:FA:B4:71:CE:1B:24:E3:60
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32332d3234203d3e20313437313230.roa
Signing time: Mon 02 Dec 2024 09:00:00 +0000
ROA not before: Mon 02 Dec 2024 08:55:00 +0000
ROA not after: Mon 01 Dec 2025 09:00:00 +0000
asID: 147120
IP address blocks: 103.175.156.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:35:c0:9d:3c:8c:94:75:b1:37:e2:86:1a:b1:80:be:3e:d4:07:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED4F41D4EBE684D523406475FAB471CE1B24E360
Validity
Not Before: Dec 2 08:55:00 2024 GMT
Not After : Dec 1 09:00:00 2025 GMT
Subject: CN=ECFE60AFCB195FACACBB8FEC96DA282CA048EDB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b6:f1:2b:39:37:63:df:0f:6e:39:db:2b:10:
41:69:c5:a1:72:79:90:00:07:b4:02:9a:26:f8:b1:
c5:22:a2:7a:d8:88:96:d6:21:c0:f8:4b:f8:91:55:
6d:6f:6e:ab:9f:f4:79:62:2f:4d:8d:72:32:f0:46:
7b:46:bc:83:a1:0d:32:cb:5e:26:ac:b2:a1:32:b2:
4c:aa:5f:3f:bc:4f:f6:df:79:8e:72:f3:0e:b4:6d:
29:a4:2c:87:a9:6a:7f:d0:35:8a:97:99:e8:0c:ea:
0a:f2:0b:ba:c3:3b:f2:a6:b4:f9:be:5b:ad:2b:41:
59:4f:19:41:e1:46:dc:be:97:8a:28:fe:4e:e8:f6:
bb:c0:d2:d2:cb:af:ae:1e:fe:ac:0b:45:e3:ec:28:
0d:5a:d4:08:2d:6f:2a:c1:3f:ba:45:08:4d:20:fa:
b6:71:0a:55:fc:70:34:c6:c9:e9:88:e0:85:03:ff:
21:cb:87:a0:cd:ed:54:68:15:2b:8b:c0:e4:d5:95:
9c:26:29:de:ef:d1:87:bc:07:60:6f:d8:24:96:d3:
50:3c:59:57:5a:05:3a:02:8b:3c:86:2b:f6:fd:3b:
e3:22:ac:5e:3c:19:8a:cb:42:3a:af:69:94:a0:5f:
3f:a7:e8:a4:42:38:de:e6:d9:95:f1:cc:85:b5:f4:
de:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FE:60:AF:CB:19:5F:AC:AC:BB:8F:EC:96:DA:28:2C:A0:48:ED:B0
X509v3 Authority Key Identifier:
keyid:ED:4F:41:D4:EB:E6:84:D5:23:40:64:75:FA:B4:71:CE:1B:24:E3:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/ED4F41D4EBE684D523406475FAB471CE1B24E360.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ED4F41D4EBE684D523406475FAB471CE1B24E360.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76ee7a5f-5121-4181-a635-121b6e69ad59/0/3130332e3137352e3135362e302f32332d3234203d3e20313437313230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.175.156.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:b0:9d:7c:d1:7c:9f:bd:b8:a8:53:d9:63:37:8a:88:0c:04:
e2:a2:15:38:f3:47:f0:8a:8c:eb:3d:7a:bb:71:d9:ef:ee:e0:
35:94:4b:a8:60:05:40:47:d4:a0:10:9a:64:f6:ac:ba:61:9c:
5c:fd:27:5d:06:e2:da:4d:08:c8:48:0d:e6:61:ee:3b:d2:bf:
d9:b3:38:f1:4c:32:ae:c6:dc:ee:03:f0:b0:b4:cd:ac:06:ef:
7b:40:94:dc:5f:e9:b8:95:7e:98:f5:e8:3f:a7:f3:a2:3c:59:
8f:96:55:19:38:4f:ab:85:41:9b:fe:d0:fe:11:f8:27:79:c7:
37:98:ee:87:a6:d9:fc:25:73:84:1f:f9:50:fa:96:ee:8d:7a:
f5:1a:4d:97:d3:d9:70:c7:06:00:77:c9:e0:31:4f:c3:96:d8:
de:46:20:82:9a:d3:71:4f:ae:c2:ee:98:cb:37:ae:81:53:be:
c2:64:aa:34:7f:82:ef:c5:b0:b8:fe:51:d4:73:18:24:38:a8:
2b:f7:27:22:68:79:e8:bd:f3:ee:1e:fa:1b:43:72:c1:4c:3e:
8e:4e:ac:da:e4:24:31:4a:51:6f:50:0e:13:c1:05:11:94:aa:
88:d5:e2:c8:2a:9b:68:60:1e:54:9b:b2:d8:b4:8f:41:ca:fa:
13:7f:d1:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:01:13 2025 by rpki-client