Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/3130332e362e35322e302f32322d3234203d3e203435373331.roa
File: 3130332e362e35322e302f32322d3234203d3e203435373331.roa (raw, json)
Hash identifier: OeEwMIXgCr6BQ1q4Lmkf/NRXA6fJevSvpjqll5bXDGs=
Subject key identifier: 40:E0:45:3F:6A:2D:36:D4:AF:90:95:47:54:D1:A3:CC:42:16:2C:23
Certificate issuer: /CN=8115D30091F8948B76AE0AAC8B4F68550DA321CD
Certificate serial: 33B7FD8CC3CF39F06A4D51C9B532A2BE5E3CA643
Authority key identifier: 81:15:D3:00:91:F8:94:8B:76:AE:0A:AC:8B:4F:68:55:0D:A3:21:CD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/3130332e362e35322e302f32322d3234203d3e203435373331.roa
Signing time: Mon 12 Aug 2024 10:00:02 +0000
ROA not before: Mon 12 Aug 2024 09:55:02 +0000
ROA not after: Mon 11 Aug 2025 10:00:02 +0000
asID: 45731
IP address blocks: 103.6.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:b7:fd:8c:c3:cf:39:f0:6a:4d:51:c9:b5:32:a2:be:5e:3c:a6:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8115D30091F8948B76AE0AAC8B4F68550DA321CD
Validity
Not Before: Aug 12 09:55:02 2024 GMT
Not After : Aug 11 10:00:02 2025 GMT
Subject: CN=40E0453F6A2D36D4AF90954754D1A3CC42162C23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:76:33:3d:39:e1:3b:97:30:be:23:ab:f9:
e0:9f:81:cf:29:d0:7e:61:3e:3d:4b:8e:d3:fc:68:
1b:df:16:d2:cf:72:86:76:37:9d:49:30:69:3e:3d:
16:60:9d:04:66:12:f5:b9:9e:47:dc:95:76:17:b3:
82:b8:fd:30:58:b6:35:80:0a:68:c1:10:f5:a3:8e:
06:1e:11:0b:4d:99:74:2e:2c:e2:d4:ca:b0:84:e2:
93:23:12:e2:fc:93:1c:6d:e7:17:26:88:a1:07:95:
59:e0:16:69:4f:f5:9e:14:cf:d6:b6:4c:67:6b:39:
41:4d:f8:b2:09:10:2e:8b:85:dc:92:da:4f:4f:6d:
7a:46:fe:01:6e:33:d2:27:05:a6:c6:47:e2:84:34:
36:d1:be:80:d7:14:a5:8d:3b:36:66:c6:be:69:be:
18:e2:73:a0:bf:66:95:9b:43:46:44:c7:6f:ee:e1:
1e:8c:5a:b8:9e:df:8a:2a:e3:c4:96:60:9e:65:77:
83:fe:07:3c:e8:45:ca:4f:0d:4e:28:95:63:1e:3a:
17:7d:2e:6a:ea:09:63:7e:8e:1b:e8:bd:d2:19:a8:
b8:e1:c0:c6:53:b5:13:2d:f6:32:7a:46:ac:29:9d:
46:c1:a5:ab:20:f2:5f:6b:10:06:cc:64:f9:70:5f:
b0:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E0:45:3F:6A:2D:36:D4:AF:90:95:47:54:D1:A3:CC:42:16:2C:23
X509v3 Authority Key Identifier:
keyid:81:15:D3:00:91:F8:94:8B:76:AE:0A:AC:8B:4F:68:55:0D:A3:21:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/8115D30091F8948B76AE0AAC8B4F68550DA321CD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8115D30091F8948B76AE0AAC8B4F68550DA321CD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7bdbbc08-4e8e-44ba-a4cf-05e233dda3a5/0/3130332e362e35322e302f32322d3234203d3e203435373331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.6.52.0/22
Signature Algorithm: sha256WithRSAEncryption
34:68:bb:fe:47:0d:e7:ff:29:47:d4:db:25:96:03:6b:0d:27:
0f:5a:0b:7a:91:14:28:3e:30:bd:c6:b5:ad:aa:75:51:d3:89:
23:7a:86:ea:57:9a:90:e9:cc:e4:a1:38:b9:1c:20:d6:69:b3:
8b:b7:4d:d6:ad:ea:9f:28:8c:8c:df:33:ac:46:bc:75:53:e0:
94:28:e2:bd:33:c5:92:a5:22:9e:a4:0c:a7:f5:d9:2c:2f:fd:
a3:e6:fe:21:e9:a3:68:1e:cd:dd:81:d9:45:80:a1:40:bb:5b:
7a:a8:a9:d3:72:1c:7f:d5:70:46:8c:dd:27:18:4a:28:1d:19:
f5:16:58:c2:12:62:93:82:67:37:7a:6a:8d:80:0c:7c:c5:a9:
36:18:14:ad:8c:74:4a:66:04:f1:ab:9b:a3:f3:2d:ab:46:cb:
cd:3b:3f:cd:b2:09:ce:82:bd:ef:1e:3d:41:51:05:7d:69:45:
75:84:0b:37:8c:70:0f:d5:0a:64:c9:15:2d:7d:e1:49:28:51:
8c:e6:a8:d2:6e:8f:6f:1a:6c:72:ea:69:1e:6b:a1:62:de:31:
54:92:2b:5f:f6:e7:5f:a4:34:b9:ad:d0:5e:d8:0f:0a:6a:d2:
c9:e4:89:0c:cb:19:df:55:0d:9e:75:27:02:67:21:5d:33:13:
f9:f1:58:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:00:03 2025 by rpki-client