Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32332d3233203d3e20313337333334.roa
File: 3130332e3131322e3134342e302f32332d3233203d3e20313337333334.roa (raw, json)
Hash identifier: efQGExmEhnoXJray3dn6zshoqzcOBC7xZAkaxJJj1q0=
Subject key identifier: 87:35:FF:C2:38:79:6B:A0:84:36:30:B2:0F:2A:02:8C:AB:47:D5:EF
Certificate issuer: /CN=094D556CA0B55AF4A636873A1B1E7032B2C9813C
Certificate serial: 10327D18363CB646EFCAC8DBDA1C71D4CA6E6987
Authority key identifier: 09:4D:55:6C:A0:B5:5A:F4:A6:36:87:3A:1B:1E:70:32:B2:C9:81:3C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32332d3233203d3e20313337333334.roa
Signing time: Wed 26 Jun 2024 06:10:23 +0000
ROA not before: Wed 26 Jun 2024 06:05:23 +0000
ROA not after: Wed 25 Jun 2025 06:10:23 +0000
asID: 137334
IP address blocks: 103.112.144.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:32:7d:18:36:3c:b6:46:ef:ca:c8:db:da:1c:71:d4:ca:6e:69:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=094D556CA0B55AF4A636873A1B1E7032B2C9813C
Validity
Not Before: Jun 26 06:05:23 2024 GMT
Not After : Jun 25 06:10:23 2025 GMT
Subject: CN=8735FFC238796BA0843630B20F2A028CAB47D5EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3c:2f:6b:02:7f:28:4b:57:5f:f3:28:1a:98:
c6:06:a9:1c:fc:45:f2:83:bf:3c:7a:1a:0d:4f:bd:
50:4e:78:68:11:9c:1e:88:b6:a7:0e:23:80:1b:72:
97:ec:17:73:ec:30:22:88:e9:70:b3:fc:e9:e9:97:
4e:4a:cb:6a:c3:81:72:8c:3c:f8:46:ca:77:a6:9c:
6f:b6:5c:b8:02:1b:70:bf:71:8a:18:3c:3d:cd:33:
fa:0f:26:ff:8b:b5:08:9b:9e:cc:e1:91:16:8a:bc:
9c:a0:51:fb:a1:77:30:09:f5:a7:a4:05:db:1f:cc:
f7:63:f7:f2:7f:81:b5:4d:63:8a:86:c2:ac:0d:26:
bb:48:51:b4:df:e2:24:38:0f:3b:70:ed:22:cc:3c:
d5:b6:ba:eb:ff:c9:52:a8:8e:1f:a0:a0:b0:78:e0:
b8:4b:06:f9:c1:30:fb:c2:59:3f:b3:38:bb:ea:ea:
28:a8:46:3e:13:50:12:41:a9:87:7b:1d:09:3c:f5:
fa:25:4a:38:d0:c6:1d:c3:d8:23:36:85:30:9f:7f:
3e:74:d7:ad:2b:d7:46:94:e2:07:86:a8:c5:58:7a:
ff:18:15:29:fc:3d:bc:51:15:86:d3:94:b5:19:6a:
ed:24:42:bd:8d:3a:13:2e:ae:f9:61:47:e6:5f:eb:
3d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:35:FF:C2:38:79:6B:A0:84:36:30:B2:0F:2A:02:8C:AB:47:D5:EF
X509v3 Authority Key Identifier:
keyid:09:4D:55:6C:A0:B5:5A:F4:A6:36:87:3A:1B:1E:70:32:B2:C9:81:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/094D556CA0B55AF4A636873A1B1E7032B2C9813C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/094D556CA0B55AF4A636873A1B1E7032B2C9813C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd08eb3-937d-4304-9167-463d7c58d5e4/0/3130332e3131322e3134342e302f32332d3233203d3e20313337333334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.112.144.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:25:11:ba:c2:db:b3:08:f3:e5:c5:3d:95:81:e7:6a:f8:9b:
8e:33:ba:4b:44:d6:00:6f:06:d8:09:86:1d:55:a1:06:fc:dc:
bc:73:b8:fc:21:13:1b:db:87:a0:b1:3b:15:8b:5a:52:e4:75:
49:20:ec:f2:e1:96:ef:7e:13:81:ee:6a:80:b5:ba:80:a5:71:
27:03:22:17:c0:e8:38:a3:8c:54:57:f0:36:30:b5:56:17:b8:
66:e8:f2:27:2c:28:e7:4f:96:38:88:2c:22:8b:51:53:21:97:
d0:8d:51:fa:19:19:cd:c5:58:e4:50:dc:de:b4:e1:2b:15:74:
78:df:45:3e:01:e9:21:3a:0c:59:d5:51:76:bd:a6:24:02:3a:
a3:b3:92:46:17:2c:34:09:5c:e7:23:b0:e9:35:12:8e:10:99:
2e:02:e4:05:57:7d:86:d2:26:42:b2:bf:d0:87:2a:65:81:ea:
32:27:0b:3c:c9:2e:a6:e0:7c:ba:cf:25:c6:62:26:40:a2:f0:
9f:62:83:14:d2:60:3d:f2:a9:0f:3c:67:aa:a1:63:d9:2b:2c:
ce:2a:7b:9d:83:5e:ae:de:4e:dc:56:4c:83:9e:2a:2d:f3:ce:
89:41:e9:70:e8:7c:5a:ec:f6:81:06:7a:09:3c:8c:fd:08:3c:
4d:8c:73:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 22:22:12 2025 by rpki-client