Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131362e302f32332d3233203d3e20313530353532.roa
File: 3130332e38362e3131362e302f32332d3233203d3e20313530353532.roa (raw, json)
Hash identifier: BffdL0xKitvxF+n5DIFwc3meIV1XU+P2BJOh3472GOA=
Subject key identifier: A8:92:1B:D2:93:77:6E:3F:63:02:18:23:14:B2:44:80:58:46:1C:0E
Certificate issuer: /CN=1160709118182E564A6D9E250FF5000EFA5166A5
Certificate serial: 0262F884E6C59C161547708AF82BF1133C5049F1
Authority key identifier: 11:60:70:91:18:18:2E:56:4A:6D:9E:25:0F:F5:00:0E:FA:51:66:A5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1160709118182E564A6D9E250FF5000EFA5166A5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131362e302f32332d3233203d3e20313530353532.roa
Signing time: Tue 28 Jan 2025 03:00:02 +0000
ROA not before: Tue 28 Jan 2025 02:55:02 +0000
ROA not after: Tue 27 Jan 2026 03:00:02 +0000
asID: 150552
IP address blocks: 103.86.116.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:62:f8:84:e6:c5:9c:16:15:47:70:8a:f8:2b:f1:13:3c:50:49:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1160709118182E564A6D9E250FF5000EFA5166A5
Validity
Not Before: Jan 28 02:55:02 2025 GMT
Not After : Jan 27 03:00:02 2026 GMT
Subject: CN=A8921BD293776E3F6302182314B2448058461C0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1b:93:fd:64:e7:c7:5b:3c:6c:22:bb:b4:a7:
8b:0f:67:0e:30:47:cf:96:0e:5b:f5:8c:6b:de:1f:
04:81:ee:30:a7:cc:fb:55:05:26:1a:dc:a4:ec:c3:
57:b2:ef:a0:64:5e:97:bd:cd:f1:97:8b:94:2d:24:
36:6c:8c:40:25:54:21:ce:db:2d:58:17:8c:28:9b:
85:48:fd:d5:5d:23:d2:82:39:e1:1e:4f:96:91:dc:
67:00:62:a0:fe:39:7c:2b:28:e1:53:97:e6:86:a7:
d8:ac:07:78:2f:1d:29:ad:ad:ca:21:95:c1:36:a8:
41:25:f2:99:07:bd:c8:f7:a6:87:8a:99:ac:78:c9:
3c:1d:d9:a8:eb:07:a3:91:2a:22:68:2f:42:d7:c0:
d0:57:7b:75:3c:c3:57:78:01:65:b6:ce:44:9d:98:
b3:25:89:f8:a7:67:f5:28:93:6e:5f:80:dc:1d:28:
fc:de:02:8d:34:03:e2:31:af:f4:95:ef:2b:82:d8:
e5:05:1b:2c:e5:aa:6b:b7:80:5c:95:2f:85:13:28:
23:f8:e1:fe:02:28:c9:7b:53:6f:ba:db:9c:cd:25:
56:35:a1:9f:7a:ce:df:6f:84:d4:55:93:c0:c4:4f:
e3:de:85:ee:a6:e8:e7:57:f0:64:6f:ec:b7:6b:62:
fa:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:92:1B:D2:93:77:6E:3F:63:02:18:23:14:B2:44:80:58:46:1C:0E
X509v3 Authority Key Identifier:
keyid:11:60:70:91:18:18:2E:56:4A:6D:9E:25:0F:F5:00:0E:FA:51:66:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/1160709118182E564A6D9E250FF5000EFA5166A5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1160709118182E564A6D9E250FF5000EFA5166A5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89718f6b-b516-43ae-b589-83a25faa30be/0/3130332e38362e3131362e302f32332d3233203d3e20313530353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.86.116.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:7f:ed:be:14:17:33:0c:1e:16:1c:38:b0:e8:e3:3d:44:b7:
dd:24:0b:59:ee:d6:7c:9d:5a:ed:9d:eb:81:d5:43:51:b1:d2:
97:f8:9b:ee:b6:d3:95:68:6c:44:03:64:7a:ca:5f:68:1e:fb:
e7:15:30:ab:de:a5:ea:ac:e4:21:ea:1b:35:98:39:14:3c:8d:
3e:d1:a2:be:39:71:91:5c:bd:25:0c:b9:39:42:21:54:b2:95:
73:f7:97:3c:6f:4c:ea:6b:35:1f:12:82:af:b4:65:b7:45:1c:
15:4a:e6:17:25:a7:20:b4:6f:ee:fb:c2:42:50:ad:b0:a2:45:
61:89:ae:85:f7:82:a0:ef:83:52:00:26:e8:62:2e:8e:c9:82:
5f:e9:c5:87:52:84:f3:0d:ad:5e:33:ab:94:a4:06:e8:c2:86:
42:16:38:a5:ed:64:62:33:f5:74:1b:5f:26:bf:d4:82:af:36:
b5:f6:6a:1e:3e:a0:ea:4c:8a:6f:86:91:20:40:a4:13:13:a0:
d8:72:0f:9b:af:27:0a:7d:d0:8b:1c:25:3f:e8:d0:40:ed:f6:
5e:42:3b:a7:95:02:40:97:f2:64:8b:12:b1:61:b4:e9:8f:8d:
3f:76:7d:a5:d9:a0:0f:5c:14:4e:34:04:5d:eb:3d:88:14:42:
23:62:18:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:20:03 2025 by rpki-client