Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa
File: 3130332e3134332e342e302f32332d3233203d3e20313339343034.roa (raw, json)
Hash identifier: 7Js1TyGNcS10xLqVcx42bTRAyDqI+vbwGTKy3EKX8TA=
Subject key identifier: 7D:B7:CF:5A:38:DB:99:2F:E0:6F:A4:CC:A4:4E:24:EF:40:43:90:1B
Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834
Certificate serial: 6F3470674896303171A548CFC6594C13E4DE4D15
Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa
Signing time: Mon 23 Sep 2024 09:01:40 +0000
ROA not before: Mon 23 Sep 2024 08:56:40 +0000
ROA not after: Mon 22 Sep 2025 09:01:40 +0000
asID: 139404
IP address blocks: 103.143.4.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:34:70:67:48:96:30:31:71:a5:48:cf:c6:59:4c:13:e4:de:4d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834
Validity
Not Before: Sep 23 08:56:40 2024 GMT
Not After : Sep 22 09:01:40 2025 GMT
Subject: CN=7DB7CF5A38DB992FE06FA4CCA44E24EF4043901B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f4:d3:ed:7c:68:c7:d5:a3:f3:fb:47:ca:7e:
8d:32:ee:7f:37:c0:74:3b:c1:7a:7b:5d:5a:4b:f9:
14:66:28:55:ef:3d:78:49:36:2b:9d:b8:7f:05:24:
d3:04:fc:83:92:e8:fc:59:0d:a6:2a:0a:fe:8c:7b:
3c:a6:ff:bb:26:4b:9c:98:44:82:ca:fc:95:6c:1c:
bb:50:bd:4a:39:6e:22:bb:e2:77:63:16:0e:a8:84:
bf:39:30:c6:16:f5:f9:d6:25:90:4b:78:18:2c:7d:
10:e0:bc:c7:c1:a4:8c:ee:49:5b:7f:d2:79:68:32:
b3:06:b0:40:7f:05:bb:0e:8b:7b:fe:01:2c:f0:c9:
a2:24:0f:ed:2f:88:45:5d:34:83:9c:43:3e:77:f2:
d5:aa:eb:34:01:da:4a:e8:a1:8d:cb:16:39:01:49:
12:fd:37:d5:bd:4f:6b:4b:b7:59:e9:46:37:86:12:
5b:c4:9a:95:fc:55:d3:3c:63:ed:cd:18:28:d8:36:
ff:a5:53:e1:3f:fc:fb:ff:93:fe:4e:c3:73:21:66:
22:2d:3f:b0:10:0c:cb:da:18:f2:64:ae:45:f6:da:
fb:07:2a:93:93:8f:4d:51:bf:4e:d2:a7:4e:d7:46:
63:9c:19:ef:33:01:7b:9b:56:5e:50:0d:a5:81:b5:
fa:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B7:CF:5A:38:DB:99:2F:E0:6F:A4:CC:A4:4E:24:EF:40:43:90:1B
X509v3 Authority Key Identifier:
keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32332d3233203d3e20313339343034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.143.4.0/23
Signature Algorithm: sha256WithRSAEncryption
31:df:2f:9e:d3:0e:b3:37:9a:c9:1a:80:9f:67:1b:b4:c7:ec:
82:84:36:38:40:03:6d:24:cd:36:8a:cd:75:7e:bd:f8:0f:49:
72:52:e0:73:9d:40:8f:33:e9:67:7c:9a:f3:82:c1:db:e2:c1:
a9:72:ab:ec:16:56:d7:3a:a7:c5:d5:b6:1e:6e:48:c0:1b:94:
cb:9f:b7:fe:9c:07:df:88:b4:d3:99:ec:c3:02:c5:52:e3:77:
bd:9d:c6:79:0f:b1:88:1d:7b:41:d4:6b:3b:e4:f0:1d:97:4d:
e2:01:d3:49:72:80:8f:60:de:4f:3d:5d:e6:9d:4a:ec:ec:41:
ef:a6:da:5c:22:ca:0b:56:d1:fd:ce:15:52:1f:c7:7c:d8:e0:
8f:bd:6c:72:82:22:ce:e7:48:2c:21:ff:47:25:f4:92:ce:36:
5d:b3:7a:90:d2:37:13:ba:9b:63:c4:06:e9:e4:eb:90:dd:e6:
7d:8a:c0:1b:97:22:45:35:3a:66:ff:de:7a:f7:9d:85:2e:29:
82:5f:76:bf:05:a9:49:28:c4:d4:e1:4b:92:92:ae:14:a3:60:
25:a8:b8:6c:93:96:ea:48:dd:27:a4:26:00:19:45:29:07:28:
ad:0b:f4:c8:28:17:d8:89:16:53:13:c8:88:a1:52:e7:b1:72:
6b:8a:f9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:21:35 2025 by rpki-client