Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/91dc71cd-acca-415c-b283-b9372c0d4ce8/0/3130332e3130312e3134322e302f32342d3234203d3e20313530393330.roa
File: 3130332e3130312e3134322e302f32342d3234203d3e20313530393330.roa (raw, json)
Hash identifier: KMcz9HndxaUeKt8rn5FI6Dp+4OSaacNz41TOKfq1iXs=
Subject key identifier: E8:25:AD:23:C8:6A:C4:33:75:38:A7:E7:BB:57:9E:84:28:65:6F:A5
Certificate issuer: /CN=456E5E4F039DBA0492D11A1873B7ECBBAC67A940
Certificate serial: 22C947007C4CA9AAEC7AEEB8BE22D8546FD4A759
Authority key identifier: 45:6E:5E:4F:03:9D:BA:04:92:D1:1A:18:73:B7:EC:BB:AC:67:A9:40
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456E5E4F039DBA0492D11A1873B7ECBBAC67A940.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/91dc71cd-acca-415c-b283-b9372c0d4ce8/0/3130332e3130312e3134322e302f32342d3234203d3e20313530393330.roa
Signing time: Fri 17 Jan 2025 13:00:01 +0000
ROA not before: Fri 17 Jan 2025 12:55:01 +0000
ROA not after: Fri 16 Jan 2026 13:00:01 +0000
asID: 150930
IP address blocks: 103.101.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:c9:47:00:7c:4c:a9:aa:ec:7a:ee:b8:be:22:d8:54:6f:d4:a7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=456E5E4F039DBA0492D11A1873B7ECBBAC67A940
Validity
Not Before: Jan 17 12:55:01 2025 GMT
Not After : Jan 16 13:00:01 2026 GMT
Subject: CN=E825AD23C86AC4337538A7E7BB579E8428656FA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:58:8f:4c:f3:71:7d:39:9c:49:45:64:2b:a3:
14:aa:08:a6:fd:59:de:a2:09:3b:66:55:73:05:03:
af:47:71:2d:f1:ce:c1:b1:d7:aa:c5:8a:32:69:48:
14:4f:62:cf:d8:4d:73:59:1e:b5:03:e5:ad:81:98:
96:57:d2:58:fc:d4:40:d6:84:ea:64:85:08:5b:ef:
67:f9:4b:6e:9f:95:28:74:6e:e3:17:0b:31:cd:cd:
46:3f:03:3b:4f:04:e5:2f:92:d3:ee:0d:2f:4a:fc:
15:4e:6a:96:03:14:a1:30:02:bd:5a:47:6b:0b:20:
18:ee:f8:ca:3c:42:fb:8a:49:c9:d0:2f:21:55:fc:
8b:9d:00:f6:4b:e2:d6:66:99:8c:e2:45:c4:7d:ff:
1e:a9:48:d7:ec:be:e4:b8:50:49:76:25:11:46:ae:
2c:cb:ea:23:d1:ec:5d:d8:0a:86:08:be:8c:aa:ec:
63:fd:10:e4:e8:35:5d:37:24:e1:55:99:79:41:99:
b5:ac:0e:df:4c:06:a0:67:10:49:3a:c7:3c:59:86:
e2:2d:56:46:eb:24:98:fd:41:ab:5f:5e:3c:a3:88:
14:ac:ee:cd:52:83:6e:f5:53:6e:bd:65:d3:e2:3c:
12:82:a1:e6:57:64:63:b4:d8:4e:ba:c4:ca:7b:4e:
be:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:25:AD:23:C8:6A:C4:33:75:38:A7:E7:BB:57:9E:84:28:65:6F:A5
X509v3 Authority Key Identifier:
keyid:45:6E:5E:4F:03:9D:BA:04:92:D1:1A:18:73:B7:EC:BB:AC:67:A9:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/91dc71cd-acca-415c-b283-b9372c0d4ce8/0/456E5E4F039DBA0492D11A1873B7ECBBAC67A940.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456E5E4F039DBA0492D11A1873B7ECBBAC67A940.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/91dc71cd-acca-415c-b283-b9372c0d4ce8/0/3130332e3130312e3134322e302f32342d3234203d3e20313530393330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.101.142.0/24
Signature Algorithm: sha256WithRSAEncryption
79:4e:e5:be:43:39:c3:4c:25:48:56:0c:b0:33:3b:3c:44:db:
ac:cc:3a:a7:26:ef:d3:fb:63:b9:59:d8:e7:db:d3:78:2f:a4:
ed:b1:a2:b7:3b:19:ce:f0:d9:f4:51:7f:a3:44:03:8b:ce:d9:
18:74:34:5e:bb:66:bc:35:da:4c:70:74:37:35:1d:fb:06:c0:
ce:3e:3b:9f:e0:cb:95:49:89:ad:21:ad:e9:a9:1f:56:9c:4e:
2f:50:e7:d5:e1:77:b1:5a:f8:10:f1:8a:6e:e9:29:40:7d:19:
a1:58:37:06:64:0b:3b:ec:9d:ec:55:04:fe:37:8e:e6:27:eb:
c2:82:5e:55:e7:a2:53:1c:04:9c:8d:86:51:e8:f5:b4:e8:0b:
3f:aa:c4:9c:37:51:92:a6:24:40:0c:3f:03:c6:c9:79:1c:90:
1d:9e:5a:39:98:d3:cf:1b:31:52:ff:1e:8a:c6:69:90:f2:f2:
92:94:84:0f:d1:c5:3c:0d:19:45:b0:23:d0:7e:13:b8:6b:c2:
ac:1d:87:30:c2:01:e6:b9:50:96:33:5d:2f:d2:33:75:80:8e:
da:24:e8:53:c7:04:f0:00:30:18:3f:a7:32:c5:c1:55:70:e1:
b8:a4:f0:8b:0f:1d:fe:11:60:fa:5e:da:12:73:d3:bb:f0:b7:
02:68:dd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:51:38 2025 by rpki-client