Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32342d3234203d3e20313437313435.roa
File: 3130332e3137372e39322e302f32342d3234203d3e20313437313435.roa (raw, json)
Hash identifier: CqE5ZCzeVRm7AAgS0qiGljnG3wqud2DW58oPqVZ6WJg=
Subject key identifier: 70:04:54:85:F5:6B:9A:3E:A9:0A:EB:DD:F4:61:89:4E:B8:5B:D7:6F
Certificate issuer: /CN=0D05EF7BA71D640B784F72C7D8F0F4DCD285029E
Certificate serial: 1073EDEFB67EE93C6A6A24A326DEB7EB85271CAC
Authority key identifier: 0D:05:EF:7B:A7:1D:64:0B:78:4F:72:C7:D8:F0:F4:DC:D2:85:02:9E
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32342d3234203d3e20313437313435.roa
Signing time: Tue 03 Dec 2024 19:00:01 +0000
ROA not before: Tue 03 Dec 2024 18:55:01 +0000
ROA not after: Tue 02 Dec 2025 19:00:01 +0000
asID: 147145
IP address blocks: 103.177.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:73:ed:ef:b6:7e:e9:3c:6a:6a:24:a3:26:de:b7:eb:85:27:1c:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D05EF7BA71D640B784F72C7D8F0F4DCD285029E
Validity
Not Before: Dec 3 18:55:01 2024 GMT
Not After : Dec 2 19:00:01 2025 GMT
Subject: CN=70045485F56B9A3EA90AEBDDF461894EB85BD76F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:73:c7:24:8d:65:6b:bb:c4:d7:4e:06:68:
20:f7:49:c2:3e:4b:9f:a0:28:70:de:ba:65:87:28:
1a:df:df:78:58:a7:3b:2d:0a:b1:7e:93:fc:d1:14:
53:bc:e3:c4:bd:74:f1:9b:b5:38:4b:17:61:be:00:
27:eb:0f:7d:5f:f9:80:d7:c8:7c:c0:0e:a3:ab:6a:
64:86:64:52:85:e6:be:c7:d4:6e:9e:1a:1c:c1:e0:
b8:d7:89:56:de:78:5a:22:4d:75:9e:ca:c1:0c:d6:
a8:db:b9:46:2c:a5:85:7e:b7:66:cb:3e:e5:84:69:
e8:cd:8f:12:d8:43:97:f5:2f:63:f5:c6:32:f8:5f:
8c:ee:db:43:44:51:93:1b:44:14:6d:f5:80:cd:22:
d3:56:e2:88:58:92:b2:5f:03:31:94:5b:5c:2a:34:
e4:6e:20:c5:ee:6f:1d:6a:56:9f:83:73:67:eb:a1:
aa:40:1d:ad:76:9c:cc:22:8f:3d:62:b9:0a:db:0e:
6d:0d:b8:4c:a6:95:be:d8:1a:ae:1b:a6:5e:f1:5c:
34:6b:f7:e5:09:75:ec:96:04:71:03:4c:1b:aa:c4:
64:c9:23:d5:3b:3e:12:e3:1a:4c:ee:5d:2c:8c:17:
e9:bf:74:0a:4c:44:e7:f0:9b:ae:e1:32:5e:4b:06:
b7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:04:54:85:F5:6B:9A:3E:A9:0A:EB:DD:F4:61:89:4E:B8:5B:D7:6F
X509v3 Authority Key Identifier:
keyid:0D:05:EF:7B:A7:1D:64:0B:78:4F:72:C7:D8:F0:F4:DC:D2:85:02:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32342d3234203d3e20313437313435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.177.92.0/24
Signature Algorithm: sha256WithRSAEncryption
72:ff:80:35:91:fa:e7:0e:a1:95:18:39:fe:85:b7:32:40:3e:
b8:89:3d:90:c7:84:2e:cf:45:c4:19:81:ef:b0:9b:f2:aa:91:
62:79:26:36:d4:fd:b3:e5:7e:18:fa:57:89:1a:7f:b1:56:8b:
b9:53:b9:0f:4f:6c:e0:70:69:01:41:af:a8:a8:1d:09:25:12:
db:32:4c:d8:3c:83:f6:1f:5b:2d:05:65:16:fd:5c:89:fc:cb:
5d:25:a6:50:d7:db:65:f1:a0:9d:2c:97:a9:d9:26:bd:25:eb:
77:96:dc:1e:3e:b4:1b:69:4f:b6:9d:e6:31:f3:38:c1:98:9e:
f0:ae:39:eb:03:e7:21:49:dd:91:43:6c:bf:93:03:02:40:4a:
e8:d8:a4:fd:59:42:79:cc:f6:62:d2:b7:16:f6:b6:d3:cc:16:
24:73:fc:01:87:b6:b9:d9:e9:39:ee:12:f8:5d:8f:e0:73:50:
60:88:09:03:2d:c6:0c:fc:b0:55:a1:de:1d:3d:4d:1c:cf:69:
23:6e:50:e6:73:69:66:0c:6f:66:9e:59:83:ca:f1:32:fe:63:
ea:bb:3d:1a:29:3f:34:9a:8a:bd:63:4c:d6:c1:08:00:3d:ad:
0a:be:d5:48:4d:7b:07:df:c9:75:39:43:1d:e9:e8:f8:77:df:
69:70:a0:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:02:01 2025 by rpki-client