Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/3130332e3134342e32322e302f32342d3234203d3e20313333383339.roa
File: 3130332e3134342e32322e302f32342d3234203d3e20313333383339.roa (raw, json)
Hash identifier: 7po23jFZXGMTM6TkE0fMAC2Pwph0N8myryssJf+gpHY=
Subject key identifier: A0:9A:8B:AD:64:DF:B3:10:90:AB:19:F0:30:B9:DF:91:12:22:AC:00
Certificate issuer: /CN=C7D4D30314160FDACB9582CF972E90EC10AE206F
Certificate serial: 4546197B192B65F0D71972A3FBACCE0B5706F772
Authority key identifier: C7:D4:D3:03:14:16:0F:DA:CB:95:82:CF:97:2E:90:EC:10:AE:20:6F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7D4D30314160FDACB9582CF972E90EC10AE206F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/3130332e3134342e32322e302f32342d3234203d3e20313333383339.roa
Signing time: Mon 01 Jul 2024 01:04:53 +0000
ROA not before: Mon 01 Jul 2024 00:59:53 +0000
ROA not after: Mon 30 Jun 2025 01:04:53 +0000
asID: 133839
IP address blocks: 103.144.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:46:19:7b:19:2b:65:f0:d7:19:72:a3:fb:ac:ce:0b:57:06:f7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C7D4D30314160FDACB9582CF972E90EC10AE206F
Validity
Not Before: Jul 1 00:59:53 2024 GMT
Not After : Jun 30 01:04:53 2025 GMT
Subject: CN=A09A8BAD64DFB31090AB19F030B9DF911222AC00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:aa:59:e3:ec:28:4a:7d:16:ba:53:c8:4e:7c:
77:54:d3:0c:89:5b:e9:7b:97:d5:df:66:cf:0d:ed:
cd:16:3a:b8:56:f2:6b:97:6d:55:97:9b:c0:7d:fb:
8f:a4:8e:95:94:4d:30:5c:20:6d:93:29:aa:ec:c0:
71:ff:7a:78:eb:91:92:da:25:7a:c6:2a:f3:6e:2c:
8c:e7:b7:7b:d5:6b:6a:3e:d2:5c:93:21:8a:8f:01:
de:06:69:24:eb:76:88:46:c7:62:c9:55:8d:3b:b7:
c4:86:64:b8:cc:9c:52:11:99:96:2f:5c:f1:ce:db:
7b:2e:78:a6:b7:28:bf:4d:67:0f:a2:8f:06:60:bc:
12:97:7e:8e:aa:5e:b4:bb:84:4b:f4:bc:f8:0f:c7:
c0:e5:a5:f0:ea:a8:d9:69:0a:dc:c3:e9:d2:45:56:
16:53:ad:0c:55:6b:98:65:88:7d:72:5d:e3:32:d8:
ac:f0:8a:3d:73:39:db:68:51:e1:a6:c9:c6:ff:0f:
14:dd:a3:f5:e8:59:9a:2b:7a:d2:4c:a2:60:d0:bd:
26:ff:e3:c6:14:ce:74:b8:ac:df:13:b5:f5:31:6e:
f7:f8:1a:d3:db:57:83:31:b2:b7:d0:35:e6:d2:76:
29:16:85:aa:66:32:fa:fe:1e:93:19:8e:01:59:f8:
58:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9A:8B:AD:64:DF:B3:10:90:AB:19:F0:30:B9:DF:91:12:22:AC:00
X509v3 Authority Key Identifier:
keyid:C7:D4:D3:03:14:16:0F:DA:CB:95:82:CF:97:2E:90:EC:10:AE:20:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/C7D4D30314160FDACB9582CF972E90EC10AE206F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7D4D30314160FDACB9582CF972E90EC10AE206F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/3130332e3134342e32322e302f32342d3234203d3e20313333383339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.144.22.0/24
Signature Algorithm: sha256WithRSAEncryption
20:53:89:55:90:40:d0:ec:70:2b:84:29:2b:12:91:9a:87:1c:
6d:fd:0f:12:69:e1:cd:c5:60:c0:5c:a5:4f:2f:49:57:c9:b4:
b4:6e:1c:b5:e0:ee:e8:8e:a6:17:97:bc:35:cb:97:7b:dc:e6:
52:74:e6:83:c2:31:83:48:ff:fb:e6:1a:27:1f:1a:f6:7e:d5:
1b:04:fc:a6:db:97:13:b1:b6:cd:a1:cc:89:ba:d2:37:23:9c:
e5:e6:60:22:e0:bc:08:2f:75:e1:b7:bc:5f:6b:82:c5:e8:d8:
09:bc:b0:ef:6b:d0:66:8b:a0:b3:2d:70:5c:3e:d3:8c:57:b0:
1d:e6:49:5b:17:61:c5:d4:a0:59:cb:92:25:ef:10:99:80:bb:
fc:6c:34:8f:07:3b:1b:77:8c:07:8b:49:a3:e5:da:a8:c7:e3:
52:7a:94:40:cd:29:5a:d8:47:c9:bb:b6:50:3a:dd:67:42:f5:
dd:17:66:07:2b:a2:ee:dc:85:4c:35:a1:5a:00:14:44:78:0e:
de:7b:06:f5:be:2d:77:4b:8a:b6:53:74:4e:21:15:e1:a1:1a:
05:2a:45:1d:5b:d0:0d:cb:72:c1:2d:6c:2a:9a:99:1c:b3:15:
67:a6:28:56:66:38:1f:b2:bd:1f:b2:f3:16:61:20:44:b6:5e:
24:55:59:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:13:12 2025 by rpki-client