Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3134322e32312e302f32342d3234203d3e20313338313331.roa
File: 3130332e3134322e32312e302f32342d3234203d3e20313338313331.roa (raw, json)
Hash identifier: eZG8iudQFcgRUtHuXJAuzY7ooTKLq0KNHMVdg0w4Klc=
Subject key identifier: 5D:DA:7C:EB:B2:17:14:C6:BE:09:CE:46:3D:0B:78:49:F1:4A:8A:C2
Certificate issuer: /CN=28612772543E43335B080C32808B7FDC277E71E4
Certificate serial: 5623C416B38917D6440D7D68B5C28D56256E1F21
Authority key identifier: 28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3134322e32312e302f32342d3234203d3e20313338313331.roa
Signing time: Thu 12 Sep 2024 03:02:56 +0000
ROA not before: Thu 12 Sep 2024 02:57:56 +0000
ROA not after: Thu 11 Sep 2025 03:02:56 +0000
asID: 138131
IP address blocks: 103.142.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:23:c4:16:b3:89:17:d6:44:0d:7d:68:b5:c2:8d:56:25:6e:1f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28612772543E43335B080C32808B7FDC277E71E4
Validity
Not Before: Sep 12 02:57:56 2024 GMT
Not After : Sep 11 03:02:56 2025 GMT
Subject: CN=5DDA7CEBB21714C6BE09CE463D0B7849F14A8AC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:94:91:06:03:c0:e6:57:79:50:70:0b:c3:74:
4e:08:4d:18:55:22:d8:36:a8:de:59:ce:9d:4e:f0:
a7:cf:39:2a:98:c9:e4:ea:3b:fe:bf:d0:51:fa:d8:
29:0b:cb:73:09:9e:ce:ef:ca:5f:8c:ac:df:bc:31:
60:55:6c:44:f5:cf:3a:5a:20:a6:6f:c7:ad:a9:b0:
bc:62:9e:fc:62:a4:58:36:bb:1d:d4:8a:60:3e:9e:
29:30:58:e2:f7:b4:97:0a:e9:8b:f2:13:93:97:7d:
57:15:68:55:6e:4e:bc:ae:4a:5a:4b:19:3c:68:2f:
35:41:1e:5c:34:c7:4b:c6:86:46:9b:4f:87:01:4e:
d6:1b:9c:46:f7:99:86:72:2e:13:74:ae:3b:6e:17:
26:95:3d:07:97:28:38:39:f2:13:16:46:71:52:78:
a9:3d:0f:61:48:01:48:97:53:92:e8:a1:34:78:06:
3d:f0:15:5f:64:1e:f1:eb:f0:fd:6a:51:2b:44:d3:
35:15:98:c5:54:d3:c5:b5:52:3c:45:1d:38:85:c4:
f9:40:2f:5f:d8:5e:a4:16:11:f1:6e:9b:0b:7d:b2:
73:f4:5a:15:30:48:f4:fe:35:bb:e2:61:c4:50:b3:
62:c9:ff:ba:ef:8f:e5:dd:b6:0c:96:c1:b8:44:73:
85:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DA:7C:EB:B2:17:14:C6:BE:09:CE:46:3D:0B:78:49:F1:4A:8A:C2
X509v3 Authority Key Identifier:
keyid:28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/3130332e3134322e32312e302f32342d3234203d3e20313338313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.142.21.0/24
Signature Algorithm: sha256WithRSAEncryption
46:43:80:c1:78:f0:5b:11:bf:d6:89:31:e4:60:c1:65:bf:63:
1d:38:19:ea:92:5a:9f:e0:ff:53:47:f0:08:d8:46:64:e0:ff:
8f:1b:1b:64:52:a1:57:30:e9:03:a1:2e:00:e3:f3:d6:31:73:
b8:2b:63:a5:16:da:e3:10:a5:6e:21:52:08:9f:3c:09:0e:5a:
2f:26:6f:21:12:ae:78:d2:f1:5c:0e:07:a0:65:80:f9:85:fa:
42:d9:03:ce:94:07:dd:eb:89:c9:c3:77:da:cf:46:c0:4f:c0:
e3:9f:33:07:1a:ab:94:84:fb:2e:df:07:a7:b1:b1:24:e4:5c:
6c:61:71:78:a0:da:b1:4b:e6:19:3d:bc:98:9a:0e:94:ba:f2:
f2:d8:24:3c:b1:2c:8a:a7:95:c6:8b:e1:de:c8:82:ad:f4:90:
fe:68:3d:18:39:fa:14:64:08:1e:df:4a:28:10:c0:a3:6c:93:
40:22:12:95:cc:a6:5b:f7:99:85:d8:e1:98:0f:6c:30:57:9e:
d1:0a:31:0e:3c:f6:be:bf:1d:e4:05:28:c3:0d:5a:59:c9:14:
32:50:33:6e:9c:d3:43:96:75:a8:bb:d9:37:ef:0f:bf:8f:52:
32:75:c0:ad:c7:fd:7c:89:50:4b:25:65:6a:a4:a5:a1:d0:ff:
cd:c6:55:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:08:02 2025 by rpki-client