Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3131312e38362e302f32342d3234203d3e20313331373639.roa
File: 3130332e3131312e38362e302f32342d3234203d3e20313331373639.roa (raw, json)
Hash identifier: C+bYdmCez5iIZyu+2ps5yYRoe335MlICnDmH6/GP+kw=
Subject key identifier: 12:78:6A:26:DC:D3:1D:D5:6A:D4:E3:9D:38:CA:FA:A5:40:50:C0:2A
Certificate issuer: /CN=35369AC685201508541197F86A8FDAC2375BE30A
Certificate serial: 034FB53026AB51864819210D278F5ADB69567418
Authority key identifier: 35:36:9A:C6:85:20:15:08:54:11:97:F8:6A:8F:DA:C2:37:5B:E3:0A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3131312e38362e302f32342d3234203d3e20313331373639.roa
Signing time: Thu 16 Jan 2025 09:00:02 +0000
ROA not before: Thu 16 Jan 2025 08:55:02 +0000
ROA not after: Thu 15 Jan 2026 09:00:02 +0000
asID: 131769
IP address blocks: 103.111.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:4f:b5:30:26:ab:51:86:48:19:21:0d:27:8f:5a:db:69:56:74:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35369AC685201508541197F86A8FDAC2375BE30A
Validity
Not Before: Jan 16 08:55:02 2025 GMT
Not After : Jan 15 09:00:02 2026 GMT
Subject: CN=12786A26DCD31DD56AD4E39D38CAFAA54050C02A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b9:0c:37:22:7b:4f:64:b5:8c:07:bf:f4:c9:
4c:03:62:80:fa:37:73:ba:f7:9d:7d:72:d0:c8:1b:
1e:e4:c9:3f:b9:46:f8:4d:1e:54:a8:39:cb:bf:c3:
8d:0e:6a:67:72:69:1d:f6:06:2d:93:50:7f:30:3d:
16:8c:86:70:63:2a:82:c7:d9:be:44:5e:44:fd:9e:
b1:1c:81:50:5f:3a:db:4e:aa:72:50:26:9e:f1:3e:
db:11:51:d0:b5:1b:f5:fd:ed:ca:ca:e7:19:c1:3b:
1f:48:25:2f:54:ee:86:31:20:c9:2a:9e:0f:64:16:
8e:60:53:8a:9d:76:5b:69:f0:71:78:75:90:03:5c:
98:79:4a:b9:55:51:d4:25:2d:e7:4f:5a:07:4c:7c:
2e:cd:9d:58:3c:f6:f9:cf:d7:8d:ca:6b:80:7d:68:
52:58:c0:f4:3b:6c:d6:c3:dc:e4:c4:f6:f5:47:93:
1e:ee:de:b2:ef:03:de:7d:6d:9a:4c:2a:aa:69:49:
ce:58:a9:14:2a:45:e7:af:b2:91:ad:49:92:33:46:
c1:4b:02:cd:dd:f0:51:54:08:8b:be:d8:e6:73:22:
b4:4f:b6:c3:20:39:5f:3f:79:c1:8f:c1:51:88:3e:
f9:5e:e3:25:48:0c:46:67:6e:ef:e5:30:e5:2a:1a:
62:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:78:6A:26:DC:D3:1D:D5:6A:D4:E3:9D:38:CA:FA:A5:40:50:C0:2A
X509v3 Authority Key Identifier:
keyid:35:36:9A:C6:85:20:15:08:54:11:97:F8:6A:8F:DA:C2:37:5B:E3:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/3130332e3131312e38362e302f32342d3234203d3e20313331373639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.111.86.0/24
Signature Algorithm: sha256WithRSAEncryption
84:ec:4e:dd:57:ff:bc:86:d1:1f:d8:a0:fe:0f:78:65:8d:f9:
62:d0:4f:33:4b:cc:58:ba:20:44:7d:93:d9:e4:b1:07:af:b1:
75:39:12:4a:db:b0:7e:dc:1f:65:a0:e8:ba:54:f6:69:ca:71:
54:d6:07:23:71:dd:2a:a6:b3:eb:eb:2b:71:01:89:e8:22:26:
3a:11:3c:8c:be:16:7c:35:e4:83:a8:9b:78:9a:79:4e:92:17:
f4:ad:52:ed:ff:25:11:49:36:c1:31:d9:6a:9a:90:aa:3e:23:
6a:3b:8d:88:3c:97:08:c3:91:ef:58:a2:a5:e3:00:18:cf:ec:
94:3e:bc:10:a7:5c:35:7a:76:f3:80:64:b2:a7:86:7c:fd:88:
fa:89:3f:e3:6b:98:5c:cb:bb:5c:f0:8f:5b:ca:d4:39:50:a2:
00:b4:8b:e3:53:32:e4:b3:87:f2:f9:84:0a:a3:5d:a9:1a:6b:
aa:5b:f5:36:59:91:44:13:d4:7e:9a:1c:66:68:82:b1:e6:9c:
52:0f:29:99:cf:79:0c:41:ec:ea:0b:e8:26:b0:fe:fe:83:3e:
d9:b6:51:04:ea:dc:a5:98:35:5e:5e:98:81:03:46:8d:72:2e:
56:71:8e:20:e0:1a:57:1b:1d:b3:04:fa:f3:d8:99:d9:25:5b:
bc:4e:7a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:37:57 2025 by rpki-client