Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/3130332e37312e34342e302f32332d3233203d3e203436303232.roa
File: 3130332e37312e34342e302f32332d3233203d3e203436303232.roa (raw, json)
Hash identifier: OTd8RtkXs2m+VF5BpzyjcTZytiPZTBuAWTpwxqI9xFY=
Subject key identifier: CF:E6:D3:16:6B:6E:34:4D:39:E1:24:D7:43:7F:35:EC:DD:85:CA:D5
Certificate issuer: /CN=4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F
Certificate serial: 2E3A7B0DEA3332C87E5B6053840971C4D8DB8F71
Authority key identifier: 4C:34:08:B6:E0:82:54:22:DC:2D:07:1E:49:0B:D7:CB:1F:BD:2A:3F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/3130332e37312e34342e302f32332d3233203d3e203436303232.roa
Signing time: Fri 04 Oct 2024 05:00:01 +0000
ROA not before: Fri 04 Oct 2024 04:55:01 +0000
ROA not after: Fri 03 Oct 2025 05:00:01 +0000
asID: 46022
IP address blocks: 103.71.44.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:3a:7b:0d:ea:33:32:c8:7e:5b:60:53:84:09:71:c4:d8:db:8f:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F
Validity
Not Before: Oct 4 04:55:01 2024 GMT
Not After : Oct 3 05:00:01 2025 GMT
Subject: CN=CFE6D3166B6E344D39E124D7437F35ECDD85CAD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e0:b9:d8:45:38:3d:bd:ba:17:67:60:98:bc:
c1:b2:f8:8c:06:4f:b8:b4:d6:66:e8:a4:45:1e:9b:
79:de:e6:ba:bd:66:89:bf:cf:a5:f3:ba:2d:6a:b4:
f3:30:ca:59:e7:8f:de:c7:02:ed:21:3d:66:64:9e:
41:9a:ae:07:0c:71:c3:c8:bc:21:f8:35:70:6e:42:
ad:85:5c:34:08:8d:46:21:1a:da:81:4b:38:2e:a1:
87:11:83:27:7e:6e:bb:0f:25:61:d2:5b:68:24:bc:
4a:e9:ff:03:c4:33:9b:c7:66:77:3b:d6:1b:f5:7d:
79:f4:cb:6b:8b:aa:35:fb:bc:ce:ad:37:4c:01:44:
58:1e:aa:f9:3e:94:22:3a:c9:d3:aa:f8:f1:d2:89:
b7:38:2f:4a:10:28:c5:49:a0:02:a2:0c:ef:aa:e9:
91:e2:c2:69:78:75:40:6a:15:4b:9f:30:93:64:31:
51:73:e2:f9:75:cf:f7:be:61:d1:44:0b:95:a2:0c:
24:42:ed:21:fa:9d:4c:2c:91:01:71:6b:9e:23:09:
51:7a:08:c2:82:e7:cf:b9:c1:96:0d:5a:53:b3:e4:
e9:39:a4:91:5e:1f:50:cf:73:3b:d7:1a:9a:2b:6a:
43:89:7e:9d:fe:6a:a3:05:4e:68:a8:a5:92:d9:a8:
0d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E6:D3:16:6B:6E:34:4D:39:E1:24:D7:43:7F:35:EC:DD:85:CA:D5
X509v3 Authority Key Identifier:
keyid:4C:34:08:B6:E0:82:54:22:DC:2D:07:1E:49:0B:D7:CB:1F:BD:2A:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C3408B6E0825422DC2D071E490BD7CB1FBD2A3F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/81c9ce5a-6690-4901-9e0a-c27b319316be/0/3130332e37312e34342e302f32332d3233203d3e203436303232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.71.44.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:8e:aa:b7:86:6f:a4:36:71:46:a2:9d:81:19:70:eb:b2:56:
cd:69:62:91:82:f7:95:f9:c9:b8:12:fb:98:c0:4a:0c:f8:9f:
5c:b3:d9:e7:a6:13:ed:c0:9b:74:e9:f0:dd:2e:e0:ba:b0:7a:
21:05:b1:4e:a0:e5:1b:0f:b7:ef:b6:e1:f0:2b:7c:26:e4:f1:
c3:77:34:17:15:a4:93:9e:0d:d7:ad:a9:33:dd:57:6f:aa:1d:
50:70:ac:eb:38:8f:5e:92:25:6d:09:6f:1d:24:15:06:d9:ba:
d5:0e:10:42:6c:fb:85:ed:47:15:f4:51:5a:8a:00:4d:47:78:
82:d2:44:f1:8a:4c:1c:06:77:88:08:05:25:58:70:71:7c:50:
89:97:23:42:8e:4f:15:2e:5a:f5:58:d0:10:8f:07:54:52:57:
45:79:da:cc:cc:35:ba:df:4a:fc:87:a0:1c:41:4f:b7:3b:9b:
4a:1e:92:22:a4:f9:e5:a2:25:d3:c2:45:39:88:a5:2f:4b:c3:
9c:2e:45:1f:7e:32:6f:ee:84:db:19:c6:f6:cf:af:f7:06:e2:
bd:ca:4b:44:f1:e9:32:a6:9d:cc:40:50:b7:3c:58:e7:7a:cf:
36:66:94:71:38:8c:51:3e:cc:04:42:df:86:32:f9:f9:20:ed:
e7:eb:24:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:28:08 2025 by rpki-client