Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/3130332e36312e31362e302f32332d3234203d3e20313530353039.roa
File: 3130332e36312e31362e302f32332d3234203d3e20313530353039.roa (raw, json)
Hash identifier: jBT/sEEnFd4bwxWDDFYtR+ZgVCHbY7o+0uvLtp8PJec=
Subject key identifier: 52:26:7C:44:81:61:E3:85:FF:4D:CB:45:A2:A9:4C:0E:1A:50:EE:5A
Certificate issuer: /CN=7CA2524C6D82550B5D21C13182BD9CC0214433F4
Certificate serial: 5C3211E0AA930D87F009B9DC3C1B3CDF74F06A40
Authority key identifier: 7C:A2:52:4C:6D:82:55:0B:5D:21:C1:31:82:BD:9C:C0:21:44:33:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CA2524C6D82550B5D21C13182BD9CC0214433F4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/3130332e36312e31362e302f32332d3234203d3e20313530353039.roa
Signing time: Tue 24 Dec 2024 04:00:00 +0000
ROA not before: Tue 24 Dec 2024 03:55:00 +0000
ROA not after: Tue 23 Dec 2025 04:00:00 +0000
asID: 150509
IP address blocks: 103.61.16.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:32:11:e0:aa:93:0d:87:f0:09:b9:dc:3c:1b:3c:df:74:f0:6a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CA2524C6D82550B5D21C13182BD9CC0214433F4
Validity
Not Before: Dec 24 03:55:00 2024 GMT
Not After : Dec 23 04:00:00 2025 GMT
Subject: CN=52267C448161E385FF4DCB45A2A94C0E1A50EE5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7c:48:ec:a1:8a:c0:6e:c4:50:1c:8d:78:40:
84:98:a7:e0:2a:d7:28:e1:a8:3b:3e:ea:59:77:75:
01:06:ae:db:a3:fc:56:5d:dd:3c:35:11:ac:36:0e:
e0:09:e2:01:9e:a8:e8:a7:a4:93:1c:86:9f:28:83:
ee:33:09:a3:3a:0b:a3:04:c6:15:be:50:b9:ad:01:
cb:4d:7b:4c:94:03:aa:2d:0b:c8:9c:ea:0b:42:dd:
f7:07:32:25:4d:9f:c6:87:9d:ba:47:50:ba:2f:1d:
4d:34:ce:c6:d4:2a:14:3d:0f:87:86:ea:52:cf:ca:
f0:91:6c:53:59:56:b4:93:07:ed:7e:96:23:d0:9a:
d9:e6:09:2f:fe:03:94:51:61:6e:67:a9:66:0d:3c:
2c:44:81:d1:b8:1e:c0:4e:eb:d3:90:fe:9f:d6:81:
e4:44:ba:00:3b:0b:ff:e4:4e:17:6a:40:85:91:3a:
0a:9c:dd:2a:d4:62:8e:eb:80:c7:95:21:4e:15:b5:
b6:dd:29:22:c8:1e:cf:f2:a5:eb:8e:71:b9:1a:5e:
fe:43:1c:d3:a2:2d:7d:66:36:b7:7e:7a:9a:0e:f0:
93:6c:db:3b:dd:32:9a:72:0f:65:97:50:b0:ce:09:
18:93:cf:08:05:d9:05:13:fc:5e:36:7d:7e:59:b0:
2b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:26:7C:44:81:61:E3:85:FF:4D:CB:45:A2:A9:4C:0E:1A:50:EE:5A
X509v3 Authority Key Identifier:
keyid:7C:A2:52:4C:6D:82:55:0B:5D:21:C1:31:82:BD:9C:C0:21:44:33:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/7CA2524C6D82550B5D21C13182BD9CC0214433F4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CA2524C6D82550B5D21C13182BD9CC0214433F4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/3130332e36312e31362e302f32332d3234203d3e20313530353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.61.16.0/23
Signature Algorithm: sha256WithRSAEncryption
78:f8:bd:00:7b:98:de:f3:1e:63:55:08:4a:6c:3c:93:c0:8f:
d8:2e:12:51:dc:8b:a1:d3:11:b7:89:c9:8f:24:1c:b7:a5:a9:
3d:36:1f:f9:88:59:62:1d:6b:f8:8f:1d:13:54:4e:f0:90:ec:
33:2c:40:97:22:5f:a2:03:e7:48:d8:cd:42:7b:a6:58:2e:78:
b8:34:78:a8:b3:8d:bb:28:62:16:4c:ae:4f:d8:73:97:34:0b:
07:b5:f2:cf:d1:3e:b8:ce:f0:c6:5c:89:8b:c4:4f:ec:ce:c5:
4d:72:14:c6:61:30:0a:72:3a:d9:1c:4d:69:a1:72:d0:72:b3:
54:a7:6c:63:07:b1:34:e9:38:01:27:1a:2d:73:b9:64:a9:87:
85:81:53:09:0f:8d:6a:29:a8:ce:0e:ef:32:a9:c2:63:7f:3b:
df:40:06:34:90:29:44:d7:42:f2:59:5e:8d:fd:61:97:e4:1d:
d3:3b:47:26:b1:aa:5f:7c:98:c6:d6:ab:ce:04:65:3d:7b:d7:
bf:99:c0:07:1a:ba:67:b2:1b:18:3a:1d:2a:26:b3:a1:e2:cc:
e9:19:04:06:b0:c6:34:d6:1b:33:24:de:8e:ef:ca:1d:72:0d:
13:3f:86:d2:7c:b2:80:06:ba:5e:5b:fe:49:e1:fd:e3:48:e7:
9c:64:f0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:13:09 2025 by rpki-client