Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa
File: 3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa (raw, json)
Hash identifier: Jx6gu7CM37SUOvL42UESgBTOXc6oDUc/aIFJ06b8y3o=
Subject key identifier: BA:6E:A6:A9:E0:14:B4:12:D4:CA:1A:22:BF:B0:D0:60:6D:FC:03:90
Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2
Certificate serial: 6B8FB77EDC777F7E890F45DA53E31EE68B233847
Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa
Signing time: Mon 01 Jul 2024 01:02:36 +0000
ROA not before: Mon 01 Jul 2024 00:57:36 +0000
ROA not after: Mon 30 Jun 2025 01:02:36 +0000
asID: 38506
IP address blocks: 117.103.168.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:8f:b7:7e:dc:77:7f:7e:89:0f:45:da:53:e3:1e:e6:8b:23:38:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2
Validity
Not Before: Jul 1 00:57:36 2024 GMT
Not After : Jun 30 01:02:36 2025 GMT
Subject: CN=BA6EA6A9E014B412D4CA1A22BFB0D0606DFC0390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:0a:7d:29:4b:d6:0f:0d:5e:39:48:dd:63:cf:
07:cd:54:54:20:da:d4:a9:c8:0f:93:0d:a2:e5:f1:
e7:9c:78:c9:c3:f0:0d:9f:6f:e6:4f:fe:f4:df:12:
06:55:f0:f5:8b:a6:a8:86:1a:c1:22:60:d7:6d:45:
18:18:20:6a:62:4b:ba:77:71:33:31:9b:60:b3:8b:
fe:d5:02:1c:97:1a:4f:4b:da:be:b3:0a:60:58:e8:
76:a0:64:aa:dc:58:19:60:52:5b:9b:d6:c9:b2:27:
d6:59:7c:f9:84:ea:11:fa:c9:8a:d5:c3:b8:6f:ee:
79:d5:98:29:2e:58:46:79:9c:1a:5d:26:43:e9:19:
35:f5:49:15:18:a2:70:3d:62:a0:39:8e:e4:e6:9f:
c8:3b:d1:8c:c3:7d:90:e9:e6:ef:67:9a:e0:23:a2:
a5:1b:e0:d2:9f:42:f7:41:cc:56:09:08:06:87:ce:
e6:5f:df:d0:7e:f6:62:c2:82:ef:2c:4b:4a:c5:e9:
b6:4e:98:3a:cf:0a:9b:e6:46:90:37:e9:5c:4b:b6:
a7:56:9b:3b:d5:f9:ed:d8:ea:22:b0:ee:4f:fa:1c:
71:3a:1b:4a:be:7a:0c:1b:af:d5:1d:f2:0e:d5:9c:
2d:05:8c:4d:fc:5f:bf:fb:36:33:c7:a1:67:99:26:
1c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6E:A6:A9:E0:14:B4:12:D4:CA:1A:22:BF:B0:D0:60:6D:FC:03:90
X509v3 Authority Key Identifier:
keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/3131372e3130332e3136382e302f32312d3234203d3e203338353036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.103.168.0/21
Signature Algorithm: sha256WithRSAEncryption
25:9d:37:0c:e0:b1:7d:0e:84:b0:d9:ee:71:70:47:d5:09:78:
51:b7:40:54:28:00:73:48:f2:c1:c2:f0:0b:10:c6:a4:36:ed:
1b:50:16:44:8e:da:fe:db:78:c3:50:19:e2:8c:8f:1d:69:0a:
77:d0:e2:70:57:6b:04:d7:52:de:9a:6d:01:69:d2:83:eb:df:
4d:37:99:9f:40:31:36:1e:bd:82:0c:bd:62:7c:a5:7e:5d:0d:
ea:b8:c2:8d:9e:7b:88:10:2a:ba:5f:65:87:e8:22:dc:cd:b4:
99:d1:70:53:ba:21:fb:ab:9d:3f:63:55:f3:62:f1:13:55:ff:
b1:cf:1f:d3:dd:7f:17:eb:ea:b2:3f:c5:1a:78:ad:ce:f3:62:
55:c5:69:c1:b4:0d:f2:78:c3:dd:f6:e5:e8:e5:03:0a:0e:05:
a9:87:83:b7:a5:99:66:9e:2d:ac:67:58:da:aa:8c:36:67:84:
db:5e:22:68:28:67:e5:47:3f:62:02:42:da:24:a8:0a:a4:55:
36:55:56:d6:e0:d5:35:3a:4d:ee:0c:37:e7:3e:2f:a3:24:bf:
97:a7:ed:04:0f:14:7a:7d:55:8d:06:4b:98:a9:31:f6:ed:b1:
1b:28:45:bc:d1:2c:a4:44:fb:3f:ff:4b:49:18:72:20:a5:57:
b4:6b:63:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:17:48 2025 by rpki-client