Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32332d3233203d3e203536323630.roa
File: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (raw, json)
Hash identifier: 8Rg4KVnY/32fl4fG4uMRblRtiju0uviBp14XLoqECcw=
Subject key identifier: 85:12:6B:FA:7B:3B:7A:2E:65:DE:07:4C:0C:9B:54:C9:08:42:A0:47
Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE
Certificate serial: 22D28898F0FA6CF226CCA63F949FF7B70EEB39E0
Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32332d3233203d3e203536323630.roa
Signing time: Tue 26 Nov 2024 10:02:34 +0000
ROA not before: Tue 26 Nov 2024 09:57:34 +0000
ROA not after: Tue 25 Nov 2025 10:02:34 +0000
asID: 56260
IP address blocks: 103.29.184.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:d2:88:98:f0:fa:6c:f2:26:cc:a6:3f:94:9f:f7:b7:0e:eb:39:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE
Validity
Not Before: Nov 26 09:57:34 2024 GMT
Not After : Nov 25 10:02:34 2025 GMT
Subject: CN=85126BFA7B3B7A2E65DE074C0C9B54C90842A047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:05:94:07:06:57:8c:a5:0e:d7:f5:5e:de:4b:
ba:d1:e5:b0:e3:41:8a:7e:5b:f7:83:b0:72:2c:26:
a0:6f:bd:28:b1:76:da:41:56:5e:4e:bd:7a:a6:ec:
42:64:f7:1d:98:7c:61:dc:80:a8:aa:89:94:59:df:
80:53:9c:42:e9:17:6a:22:10:2c:3e:df:0d:ef:9c:
32:cb:f0:7d:61:7a:09:40:1a:27:0b:0c:fb:2e:08:
08:f3:79:8b:d7:74:8f:0a:2f:86:e6:b1:1b:cf:97:
44:88:5b:4c:1e:f7:e9:50:f3:89:61:e8:03:8b:06:
fd:5d:cd:40:5d:f5:65:d5:80:c6:c1:86:20:3b:7b:
6d:f4:22:ff:c9:b6:55:da:e5:0c:00:ec:55:a0:7f:
70:4d:04:a1:2b:84:e4:45:98:20:f9:f4:50:56:df:
f2:3b:86:1e:62:30:4f:b6:20:cc:cf:1b:0f:cd:3e:
9c:bf:5e:15:b7:0b:49:bb:88:dc:a5:87:cd:1f:67:
93:b3:21:f3:31:da:3c:64:e2:95:a4:7c:e3:3d:72:
ac:31:07:d7:1c:db:15:4b:d4:82:05:7d:26:02:7f:
f6:e3:47:00:42:e6:01:e4:a9:1d:d0:ec:dd:b7:c0:
20:d5:33:e0:c5:50:ab:b2:d0:2e:5a:50:02:66:67:
b7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:12:6B:FA:7B:3B:7A:2E:65:DE:07:4C:0C:9B:54:C9:08:42:A0:47
X509v3 Authority Key Identifier:
keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/3130332e32392e3138342e302f32332d3233203d3e203536323630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.29.184.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:cc:9c:b7:a5:09:8b:9a:b9:7d:5f:65:ec:62:36:64:0a:1a:
06:19:47:25:82:b6:b6:ec:80:4d:62:61:89:1c:c2:7c:26:d8:
7b:f1:e0:81:f3:1c:1b:e8:3e:79:93:98:aa:f6:0c:63:b4:f9:
26:c3:e6:16:57:6a:09:72:c1:34:bd:48:00:87:38:40:79:fb:
f9:f4:a2:3e:1e:a8:64:e9:e5:b7:6f:69:2b:f7:d2:c2:c4:e4:
cc:7a:c4:88:56:27:44:a7:81:ad:ee:78:ae:be:ba:fb:df:a1:
c2:6b:79:72:bd:a3:0b:f9:56:51:66:46:62:31:73:13:71:ed:
6b:57:6b:6b:48:5a:6e:1d:1c:5b:c1:f8:45:6a:d1:2e:b4:01:
15:ca:d1:c4:15:b0:a8:d5:32:09:5b:31:0c:59:1c:fd:81:6d:
db:87:32:9c:21:fd:cc:62:ce:fa:ab:fe:a7:12:7d:f2:bc:aa:
81:6b:e9:c7:25:21:54:d7:b7:5d:07:c5:12:7b:ef:41:ff:e7:
43:50:23:47:fa:60:2f:c7:6b:ac:1b:8d:4d:a3:ac:90:1e:22:
f5:9c:4c:cc:7b:7c:39:b0:9a:86:0f:9c:a1:f5:06:b5:45:69:
be:49:f9:ad:69:b3:0e:d0:f1:92:ef:89:3c:22:05:9a:fa:d1:
a4:95:89:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:49:30 2025 by rpki-client