Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa
File: 3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa (raw, json)
Hash identifier: 06ISKC2CwbxxyFrx3ByMaV4Lra2B5W5rP3yiIdrne3M=
Subject key identifier: 95:4E:D3:B5:6C:51:D3:9B:06:78:E7:A6:7B:7C:DC:76:2D:9C:E3:96
Certificate issuer: /CN=01A283E5CA4698591C4AA0127AA71B68D6B8C690
Certificate serial: 3EF1C814194186ED87BB2DB43E1E77627E11733C
Authority key identifier: 01:A2:83:E5:CA:46:98:59:1C:4A:A0:12:7A:A7:1B:68:D6:B8:C6:90
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01A283E5CA4698591C4AA0127AA71B68D6B8C690.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa
Signing time: Sat 19 Oct 2024 12:00:56 +0000
ROA not before: Sat 19 Oct 2024 11:55:56 +0000
ROA not after: Sat 18 Oct 2025 12:00:56 +0000
asID: 141636
IP address blocks: 103.162.16.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:f1:c8:14:19:41:86:ed:87:bb:2d:b4:3e:1e:77:62:7e:11:73:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A283E5CA4698591C4AA0127AA71B68D6B8C690
Validity
Not Before: Oct 19 11:55:56 2024 GMT
Not After : Oct 18 12:00:56 2025 GMT
Subject: CN=954ED3B56C51D39B0678E7A67B7CDC762D9CE396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a1:e6:6b:cd:a4:61:86:e1:86:ae:6f:57:88:
f7:63:ed:ff:65:fc:7f:f0:35:39:2d:d6:63:45:f8:
9d:13:bc:ff:95:9e:86:f9:f0:f7:26:37:8b:05:70:
47:90:7e:87:82:68:bb:6b:a2:27:87:b1:fc:d1:10:
a3:f9:29:2b:19:ac:a2:ea:e5:c2:e1:f3:88:cd:a9:
9f:59:02:6a:43:9a:f2:8a:de:54:aa:ce:5f:32:32:
91:f4:37:5c:02:e0:af:c1:5b:52:a0:95:d1:2e:be:
a0:20:bc:5d:b1:6d:b1:b0:0e:77:6a:08:70:39:dc:
74:3f:fc:e2:b1:6f:47:7a:6a:d1:65:8b:ac:ae:97:
5e:fc:54:d2:25:d1:2a:a7:30:85:e3:54:a5:4d:b5:
74:88:9e:6a:93:e5:50:8c:95:16:51:6f:de:a5:02:
95:b4:55:96:5a:e2:60:4c:c3:42:71:63:19:a8:85:
6b:cf:a0:4f:29:b9:9f:f0:4a:89:bd:e0:9e:2f:f4:
6b:bb:f0:7d:2a:5a:80:3b:0a:fe:14:48:a7:88:fe:
fb:08:73:6e:26:25:94:8d:82:19:ef:ef:22:dd:c8:
57:33:19:e3:ce:a1:06:1f:4f:08:ff:8f:8d:d1:bb:
96:58:33:08:18:76:3a:6b:06:8d:33:e2:49:24:d5:
58:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4E:D3:B5:6C:51:D3:9B:06:78:E7:A6:7B:7C:DC:76:2D:9C:E3:96
X509v3 Authority Key Identifier:
keyid:01:A2:83:E5:CA:46:98:59:1C:4A:A0:12:7A:A7:1B:68:D6:B8:C6:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/01A283E5CA4698591C4AA0127AA71B68D6B8C690.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01A283E5CA4698591C4AA0127AA71B68D6B8C690.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.16.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:33:73:63:e8:32:e5:fb:73:7e:91:5d:5d:ce:43:10:93:a4:
fe:87:4f:d7:73:c3:f8:db:f9:8c:cd:0b:e4:6f:17:18:ab:91:
f2:7e:f8:dc:49:4e:e5:cb:19:5b:5a:1f:ad:fa:48:22:37:ec:
5c:e8:d9:a3:26:d3:ec:22:4b:f4:d5:ae:92:6e:c8:77:cd:d5:
1b:bc:f0:98:f5:ee:3f:71:03:d7:1b:fe:bc:ed:20:ac:93:84:
28:d0:d1:fc:6a:75:25:31:af:ad:09:b7:fa:d3:94:5a:7e:e4:
ca:32:a2:98:b3:75:b1:45:bb:b2:04:79:7f:5c:b0:e4:6d:72:
1c:6e:c0:a1:4c:4e:ff:bb:be:d8:8b:a0:7c:2a:80:97:df:0c:
e5:8b:06:d3:ea:a2:0c:27:b4:56:9c:e7:25:0e:65:91:2a:7c:
38:fe:a4:87:d1:78:b4:19:3b:8a:ae:f1:7d:e2:6c:e0:c3:3b:
c6:50:78:f3:a5:d8:ad:41:cf:4c:7c:63:3d:e1:07:42:3f:04:
5a:03:1d:07:6d:d0:0e:38:f5:02:cf:0f:db:bc:6d:a7:66:b3:
f5:e7:37:db:80:e2:a9:2b:5d:f1:e4:7a:ac:f6:2c:5a:d6:5a:
b1:b6:ad:e1:e5:de:ea:90:d9:50:04:5a:22:95:f0:ca:ae:71:
b1:07:0c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:29:44 2025 by rpki-client