Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa
File: 3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa (raw, json)
Hash identifier: PDdq8e3i59EuZ/OY6T2ikv6WPALtg9Yb+GzE/u464Cg=
Subject key identifier: 51:99:77:D9:AE:57:0C:FE:DC:14:14:6E:5A:B0:2A:D4:06:9D:6D:C1
Certificate issuer: /CN=DE871A367510652B50812EF1D04572635502AD6E
Certificate serial: 7DB6968905AD3316A113B6C78903AEA11AA2CCF3
Authority key identifier: DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa
Signing time: Tue 05 Nov 2024 16:02:27 +0000
ROA not before: Tue 05 Nov 2024 15:57:27 +0000
ROA not after: Tue 04 Nov 2025 16:02:27 +0000
asID: 147095
IP address blocks: 103.174.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:b6:96:89:05:ad:33:16:a1:13:b6:c7:89:03:ae:a1:1a:a2:cc:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DE871A367510652B50812EF1D04572635502AD6E
Validity
Not Before: Nov 5 15:57:27 2024 GMT
Not After : Nov 4 16:02:27 2025 GMT
Subject: CN=519977D9AE570CFEDC14146E5AB02AD4069D6DC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a2:ae:11:83:c0:4c:9d:6a:3f:5d:17:f3:b0:
b7:26:f5:db:78:62:98:46:d6:da:6c:42:8c:b9:c5:
d2:ac:89:7e:0b:95:97:58:b1:9e:68:52:47:6d:60:
d3:bc:34:53:27:26:4d:ce:32:77:35:ca:5e:71:ca:
dd:0a:72:31:18:62:5c:d1:4a:e1:24:04:cc:89:0c:
ff:d9:fe:82:11:ca:2e:da:b4:25:55:cd:69:0c:22:
6f:e0:76:3a:ef:a9:3a:f0:e1:77:11:3f:90:f6:93:
1a:32:2e:8a:ef:63:c6:49:54:f2:66:47:ef:c3:16:
51:b7:fe:22:4b:dc:b3:3b:c8:9c:d5:42:67:da:88:
c7:22:2a:80:3e:d2:2f:18:2c:60:6d:4e:d4:a9:6a:
fd:7c:04:a4:65:40:3d:03:8f:2e:ed:cc:72:4e:93:
7c:75:39:3e:18:07:52:1a:24:7e:2c:d9:f7:37:7c:
d4:e2:8e:95:80:ab:aa:65:31:d0:5c:3c:5d:4a:20:
4f:34:0b:8f:7f:de:2c:de:f9:a6:27:c1:8c:86:cd:
dc:75:da:44:7d:31:7e:cd:12:8c:f1:8d:b8:0a:98:
d1:c8:63:08:48:f1:37:c5:d6:86:2b:43:c0:ce:f2:
c7:14:c2:46:ca:7a:49:16:e5:18:05:40:bf:57:af:
28:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:99:77:D9:AE:57:0C:FE:DC:14:14:6E:5A:B0:2A:D4:06:9D:6D:C1
X509v3 Authority Key Identifier:
keyid:DE:87:1A:36:75:10:65:2B:50:81:2E:F1:D0:45:72:63:55:02:AD:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/DE871A367510652B50812EF1D04572635502AD6E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE871A367510652B50812EF1D04572635502AD6E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/813645d4-543b-444b-a3a5-fdcd41811c21/0/3130332e3137342e36322e302f32342d3234203d3e20313437303935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.174.62.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f0:3f:36:cf:88:d0:fe:76:64:4f:c1:bc:7d:c9:37:91:85:
72:f5:81:a4:98:36:aa:cd:58:03:1c:1c:91:c2:4e:32:1b:d1:
24:47:25:d3:19:48:f5:fb:9d:04:75:fa:75:d0:24:c1:8b:31:
9f:d6:51:d1:1c:e1:33:97:7d:a0:27:d2:57:fc:c4:68:90:94:
42:92:89:a5:a5:ee:d9:73:cd:9b:6a:68:11:ac:c4:52:e6:2d:
f9:cb:97:97:98:3c:ac:c3:79:b3:b8:bf:5e:aa:0c:ca:3b:13:
e3:35:6b:d5:f9:39:b9:da:98:51:e6:ab:d7:34:a9:f0:f0:50:
c1:f7:04:99:02:70:30:81:5e:a1:41:38:8a:61:47:c8:a9:9a:
46:6c:26:28:6a:fe:2b:d7:ef:e1:7b:bd:0b:90:ee:93:79:6b:
82:a2:07:a6:96:d3:15:af:51:9a:e2:62:6c:cf:e0:a6:2f:fd:
be:b4:29:ce:f8:16:4a:7b:2d:e0:cf:88:e2:e1:93:42:2f:44:
f6:b9:d4:91:c4:b1:d1:42:f0:59:96:6a:43:70:1c:5b:78:9e:
51:8c:ba:d7:2a:1b:61:9f:81:bb:c5:be:8d:a1:37:39:d6:22:
f4:8c:59:63:50:03:0e:59:68:f6:9c:b5:5a:82:b4:9a:6b:05:
9b:cd:e6:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:11:12 2025 by rpki-client