Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa
File: 3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa (raw, json)
Hash identifier: rnpAKtCbX8txVuD150fh3r3wLM+En4ZSoI9OjRhxuAQ=
Subject key identifier: 60:A2:6E:AB:9C:0E:49:9B:06:43:86:B1:6C:E9:74:A4:ED:82:40:5A
Certificate issuer: /CN=28612772543E43335B080C32808B7FDC277E71E4
Certificate serial: 2448236DA236D7DB19D5A83983BEA501D0672A8C
Authority key identifier: 28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa
Signing time: Thu 12 Sep 2024 03:02:55 +0000
ROA not before: Thu 12 Sep 2024 02:57:55 +0000
ROA not after: Thu 11 Sep 2025 03:02:55 +0000
asID: 138131
IP address blocks: 103.133.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:48:23:6d:a2:36:d7:db:19:d5:a8:39:83:be:a5:01:d0:67:2a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28612772543E43335B080C32808B7FDC277E71E4
Validity
Not Before: Sep 12 02:57:55 2024 GMT
Not After : Sep 11 03:02:55 2025 GMT
Subject: CN=60A26EAB9C0E499B064386B16CE974A4ED82405A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fa:74:eb:1d:4e:f7:cf:07:86:11:dd:e5:2d:
51:39:a4:68:94:55:06:8c:bf:73:2a:45:da:7d:3f:
bd:96:6e:a3:ca:a0:5b:0a:9d:2f:ef:26:dc:72:40:
ab:6f:22:27:1f:7f:99:89:66:f8:6a:08:7c:66:26:
0a:ff:10:e7:77:cc:5d:1d:2d:8b:3f:d3:99:a1:8e:
27:d0:53:a8:fe:5e:cd:69:08:ae:49:8c:94:97:d7:
b2:3f:dd:9f:93:2d:c1:98:11:ce:08:1b:c8:c3:36:
b8:63:51:31:4a:b3:14:c1:14:1b:06:47:fc:d1:1d:
5d:f6:8e:41:d4:82:96:50:e5:e2:a3:23:e6:b4:5a:
ea:32:5a:82:cb:cd:8b:10:c6:e1:24:15:ca:24:dd:
f2:18:b0:a0:82:eb:ad:45:21:ea:9c:d6:5c:1a:b2:
73:31:42:b8:fc:21:49:0b:31:45:39:97:9d:fe:66:
af:bd:df:3d:bd:1a:05:20:c9:f0:4b:ba:21:82:f5:
e1:a4:4a:ce:a9:4e:ce:6b:88:4b:ac:1c:70:8b:0c:
06:ce:17:be:2e:cc:2a:2c:f3:ff:9c:30:e5:01:3e:
e7:b2:a9:69:32:14:89:04:46:9e:bc:36:d0:ec:48:
2d:b5:8b:23:78:f7:31:f5:4e:30:68:fd:7e:96:eb:
22:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A2:6E:AB:9C:0E:49:9B:06:43:86:B1:6C:E9:74:A4:ED:82:40:5A
X509v3 Authority Key Identifier:
keyid:28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.133.56.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:9c:7b:7b:d8:4d:86:60:67:16:be:45:73:e6:20:2f:0c:18:
2d:0d:5f:54:19:82:23:b9:3b:69:c7:a9:32:b1:07:9f:94:96:
22:15:3d:12:97:cd:31:b1:38:70:98:23:ed:8c:3e:c3:63:7c:
b4:f7:58:94:c3:f5:a4:29:25:5c:cc:85:0d:a1:c6:ca:72:88:
9f:be:3e:25:46:eb:00:0c:82:8a:f2:3d:86:28:46:49:72:10:
e4:e8:50:cd:53:0c:24:ed:87:0f:7f:ea:45:11:ba:3b:ae:d9:
51:18:4d:9d:6f:2e:73:32:88:73:46:03:57:a5:ec:75:43:88:
1f:3d:7b:c8:84:99:4d:77:22:31:aa:3c:8d:24:e0:43:22:5e:
b0:d2:60:f7:3e:51:32:42:34:66:10:c2:5f:19:01:9c:9a:e0:
67:ef:5c:3c:80:de:5d:bb:58:46:c9:8f:ca:07:d8:24:64:4b:
c2:7f:74:b3:fe:c0:e6:4e:d5:dc:d1:e9:73:64:97:f1:14:60:
eb:7d:a1:02:e0:41:c7:ea:a8:d1:df:bb:09:f5:3d:0c:a7:49:
9b:10:af:17:c1:bb:ce:44:01:5d:78:90:f5:52:78:22:bb:b2:
d7:40:12:a1:db:3b:d6:bf:c0:77:6a:e9:11:74:51:aa:87:bf:
36:12:2f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:10:39 2025 by rpki-client