Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203438343635.roa
File: 3130332e31322e32382e302f32322d3234203d3e203438343635.roa (raw, json)
Hash identifier: 0OjoY+05zt8Z8400j80eRAcHaPBuMx39KYxLU+S/mlo=
Subject key identifier: 6A:99:C3:0D:20:36:CE:3D:8C:0E:28:1A:05:7D:20:17:17:34:05:9F
Certificate issuer: /CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E
Certificate serial: 0869628C80A446204E213D0849650B4EC75A7BCE
Authority key identifier: 69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203438343635.roa
Signing time: Mon 15 Jul 2024 03:04:45 +0000
ROA not before: Mon 15 Jul 2024 02:59:45 +0000
ROA not after: Mon 14 Jul 2025 03:04:45 +0000
asID: 48465
IP address blocks: 103.12.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:69:62:8c:80:a4:46:20:4e:21:3d:08:49:65:0b:4e:c7:5a:7b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E
Validity
Not Before: Jul 15 02:59:45 2024 GMT
Not After : Jul 14 03:04:45 2025 GMT
Subject: CN=6A99C30D2036CE3D8C0E281A057D20171734059F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:76:9a:27:ae:f3:33:36:91:35:2f:0d:d4:0c:
d4:7a:9b:c1:3f:4a:23:10:cc:4d:cc:c9:10:06:7e:
14:20:6a:09:93:22:55:53:61:32:85:9a:3f:15:c8:
64:17:c6:8e:f1:8f:80:84:fe:4e:f7:4a:15:e7:2f:
ec:1e:9e:c2:f7:26:08:b4:54:0a:18:b2:cf:e6:07:
b8:01:e7:09:5f:10:17:48:14:45:60:cc:58:8a:81:
58:a1:e9:4a:33:80:d3:11:db:59:b0:82:79:a6:88:
5c:12:39:d0:39:35:a3:ac:5b:f8:5d:08:11:55:be:
c7:5d:f3:6b:fe:23:cc:96:ad:70:d0:57:46:00:a0:
76:21:a2:38:12:2a:70:27:fb:c7:ca:c6:df:f5:85:
9e:17:36:71:16:96:98:eb:97:f3:dc:31:14:dd:88:
2e:da:06:e3:d1:37:e4:03:25:5f:05:04:7a:60:2d:
e3:5c:6f:42:35:7f:2a:8b:42:b5:f8:6a:e1:0a:90:
11:e7:66:e0:41:63:a7:bd:61:25:33:b8:81:a7:04:
79:83:ec:32:b5:67:11:bf:05:f3:3f:52:5b:26:00:
33:ff:75:a3:f3:14:2c:07:36:00:3f:27:ee:ad:44:
c1:1e:02:e6:3a:c4:d7:ed:3f:4f:16:7e:1b:5e:45:
f7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:99:C3:0D:20:36:CE:3D:8C:0E:28:1A:05:7D:20:17:17:34:05:9F
X509v3 Authority Key Identifier:
keyid:69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/3130332e31322e32382e302f32322d3234203d3e203438343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.12.28.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:32:e6:84:fc:8e:a5:27:33:0a:24:c2:39:01:99:50:de:ce:
af:e0:23:14:a9:46:d5:13:a9:98:ec:95:13:97:2b:22:a9:4c:
56:81:c0:9b:91:fd:1c:2c:63:1f:ab:d8:60:5b:d4:85:07:b3:
d0:5f:96:9c:54:43:d6:06:95:a0:2f:a3:3c:78:14:9b:33:21:
e0:9b:7c:6f:97:86:2e:81:ec:2b:d6:58:19:82:ac:ce:85:5d:
f1:93:6a:7b:50:3c:e0:df:7c:0c:f2:9c:63:f0:b3:ee:af:a2:
91:1f:08:4a:7d:a1:ee:29:4d:28:21:23:cc:5a:03:97:d0:df:
e8:93:ea:68:b3:a9:25:e2:23:33:be:39:48:96:e9:f0:cf:ca:
76:67:06:88:28:c7:4a:09:45:6e:c6:3a:49:92:34:10:94:ae:
84:6f:a4:8c:1c:fe:1c:93:40:03:72:8a:af:ea:eb:c8:b3:e8:
21:43:0a:f3:aa:00:26:06:66:65:5e:be:5a:23:e2:21:03:2b:
2f:bc:4b:04:53:dd:d1:fb:7c:e6:e0:b9:d0:c2:b1:a7:df:66:
d8:8d:28:9d:95:2f:18:3a:b4:35:c3:ed:b3:e7:2d:b2:fd:cb:
84:f2:0e:c7:1c:7a:af:55:a2:4f:78:79:33:0a:c4:40:5f:31:
a2:7a:d5:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:50:37 2025 by rpki-client