Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa
File: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (raw, json)
Hash identifier: 0N5j+ZERhxA6Ar8dT9/oyVhTL5hECc6nE7wFownHGuo=
Subject key identifier: 48:4A:4C:F7:AA:26:30:E8:AD:A3:AB:E0:2D:03:18:41:DB:F3:E5:57
Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3
Certificate serial: 3DB1ED7DB84B9F305A40F844123727CE850FB2C0
Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa
Signing time: Tue 01 Oct 2024 04:01:27 +0000
ROA not before: Tue 01 Oct 2024 03:56:27 +0000
ROA not after: Tue 30 Sep 2025 04:01:27 +0000
asID: 139952
IP address blocks: 103.147.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:b1:ed:7d:b8:4b:9f:30:5a:40:f8:44:12:37:27:ce:85:0f:b2:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3
Validity
Not Before: Oct 1 03:56:27 2024 GMT
Not After : Sep 30 04:01:27 2025 GMT
Subject: CN=484A4CF7AA2630E8ADA3ABE02D031841DBF3E557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bd:ed:6a:66:3a:31:70:a4:f6:3e:17:12:45:
ea:cc:2e:d7:3a:a9:73:f8:e3:76:a1:e1:4c:f8:a1:
58:2c:b8:2f:50:1f:fd:89:a9:d2:bc:67:19:36:17:
ce:93:9e:c3:1c:5b:58:9a:08:af:e2:60:86:6e:89:
d7:c8:a9:6d:f9:f9:80:c2:6a:f2:4d:dd:ed:ca:bd:
e3:c8:d9:90:ff:39:56:97:23:83:6c:f7:45:5b:6b:
e3:59:fb:70:ce:62:88:f9:f4:04:be:4b:a9:77:17:
66:4b:c7:75:b5:ca:48:f1:72:c3:70:ce:0f:00:b6:
b0:a8:23:21:ee:54:6c:9f:98:77:bb:4d:c5:77:8a:
7e:e4:17:3e:44:7e:fc:21:7c:1d:d9:a5:5c:9f:53:
a2:97:fb:19:76:1f:d7:dc:22:0f:dc:b8:2c:f3:d1:
75:00:36:49:6e:e8:f3:49:d1:17:7e:10:1c:17:4d:
e4:ff:67:7e:cf:f7:25:b9:26:49:57:f1:4b:27:c1:
d2:5b:e2:9f:27:fc:a2:88:e1:33:47:5e:fe:d6:15:
01:ca:f4:b8:ad:9c:55:b5:a7:12:73:42:d8:e9:8c:
a6:d8:06:06:b8:81:bb:d0:63:87:fa:4c:51:4c:78:
33:9a:eb:88:b4:30:e6:28:0c:8e:58:2c:8e:b7:01:
33:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:4A:4C:F7:AA:26:30:E8:AD:A3:AB:E0:2D:03:18:41:DB:F3:E5:57
X509v3 Authority Key Identifier:
keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.77.0/24
Signature Algorithm: sha256WithRSAEncryption
05:bb:fa:52:da:ce:96:f1:47:33:53:5f:73:3d:aa:14:8b:a5:
5e:4f:27:d2:9a:97:10:54:46:d5:87:44:0f:0b:ed:cd:1f:17:
b8:3f:9c:d1:6e:6b:55:e4:02:b4:99:50:32:e2:bb:4f:1b:df:
16:51:0c:13:c6:64:10:4e:1d:62:a9:c2:02:cc:16:27:a0:8a:
2d:6d:23:57:ea:92:ad:42:57:93:62:b7:4a:5c:25:dd:72:1a:
2c:a7:da:63:b6:55:9b:91:2e:0b:e5:58:8d:7e:32:16:93:51:
a4:22:77:8f:f5:a3:87:60:2d:c6:93:d1:8b:ee:cc:63:07:55:
14:dc:02:e1:64:7f:b8:bc:aa:8d:52:55:4e:87:68:01:38:02:
96:8e:65:80:fd:3c:bb:5e:31:3e:03:d8:31:6d:47:ca:51:78:
75:df:29:e0:af:5d:3a:87:e9:26:c0:73:1e:b1:e9:1a:db:fb:
6c:7a:04:0b:1d:c2:c6:e3:60:84:cc:32:2a:19:85:1d:c0:d4:
b1:4f:82:14:b3:18:3c:1e:19:04:3f:1c:e8:3c:2f:c7:73:38:
0d:96:17:cf:c7:f8:8f:a2:4d:1d:46:d2:79:1b:28:52:d4:b1:
bd:0f:40:4e:f6:0c:c9:a3:9d:ca:5e:95:68:b1:a4:63:dd:c7:
6c:85:3e:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:01:30 2025 by rpki-client