Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/3130332e3138342e3132382e302f32342d3234203d3e20313439363830.roa
File: 3130332e3138342e3132382e302f32342d3234203d3e20313439363830.roa (raw, json)
Hash identifier: dndH7k4QrpdRpSP4/WtipvESFO/tcWljX0yqzIdte+A=
Subject key identifier: 77:7E:70:68:5B:01:22:F5:3E:D9:A4:BD:7B:55:E7:8F:C2:EE:C1:B3
Certificate issuer: /CN=A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794
Certificate serial: 6C1ACEDA6E599890E01B86FB5901716082CD03F9
Authority key identifier: A3:3F:F7:49:65:A9:60:8D:9E:5C:3C:2E:3E:F8:02:EA:1E:5C:D7:94
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/3130332e3138342e3132382e302f32342d3234203d3e20313439363830.roa
Signing time: Mon 13 Jan 2025 18:00:02 +0000
ROA not before: Mon 13 Jan 2025 17:55:02 +0000
ROA not after: Mon 12 Jan 2026 18:00:02 +0000
asID: 149680
IP address blocks: 103.184.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:1a:ce:da:6e:59:98:90:e0:1b:86:fb:59:01:71:60:82:cd:03:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794
Validity
Not Before: Jan 13 17:55:02 2025 GMT
Not After : Jan 12 18:00:02 2026 GMT
Subject: CN=777E70685B0122F53ED9A4BD7B55E78FC2EEC1B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:53:5c:36:08:35:b5:8b:b7:d4:1f:d7:78:24:
59:0f:44:a1:1c:96:46:c3:fc:d3:9d:7c:fa:7b:af:
72:a3:8a:3c:75:b8:0b:b4:f5:92:b5:2c:58:9c:15:
5a:2a:a4:ca:ea:af:1a:c1:cf:2e:63:f7:b1:84:05:
b9:7f:5f:da:e1:75:34:6a:6c:d6:fa:6e:f8:f6:7d:
de:6f:0e:6f:68:21:14:05:69:8c:db:71:94:9f:f5:
3e:b8:b2:69:9e:5b:41:5f:54:96:bb:d7:67:6c:40:
23:35:b6:90:08:d9:7c:5c:72:c8:95:59:8a:97:7d:
9e:f5:6b:1a:4e:6d:ac:82:97:21:15:6b:04:a7:3e:
ac:c5:6f:98:8b:9e:0c:f3:12:b7:9f:b3:5b:93:b2:
da:de:a7:5f:26:d7:c9:59:fc:8c:d0:59:7a:d4:f1:
b1:f9:0a:11:4d:ba:74:67:51:e7:f4:3e:8d:cb:90:
ad:89:0e:f4:7d:7e:0a:98:e9:9d:ec:62:61:35:82:
5c:b1:c5:5d:c8:9c:a5:18:3b:6e:6e:a3:82:91:3d:
ff:82:ac:f1:c0:a2:65:94:7d:45:73:e0:f0:2d:dd:
2b:ee:9f:62:0e:12:25:d4:03:eb:18:22:fb:08:0c:
9a:d5:c2:65:af:f5:76:7b:1a:a7:30:b7:fe:da:23:
55:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7E:70:68:5B:01:22:F5:3E:D9:A4:BD:7B:55:E7:8F:C2:EE:C1:B3
X509v3 Authority Key Identifier:
keyid:A3:3F:F7:49:65:A9:60:8D:9E:5C:3C:2E:3E:F8:02:EA:1E:5C:D7:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A33FF74965A9608D9E5C3C2E3EF802EA1E5CD794.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/993e3d26-4aaf-4e96-ad49-5273f0a4e6ed/0/3130332e3138342e3132382e302f32342d3234203d3e20313439363830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.128.0/24
Signature Algorithm: sha256WithRSAEncryption
14:4e:18:28:35:7b:3d:43:a9:a9:a7:e0:5f:c3:70:6c:5d:8a:
cf:cb:15:a3:89:42:c6:cb:b1:24:d5:66:b8:45:ab:3e:fb:4b:
39:93:e1:48:96:b9:f7:61:33:59:d4:20:42:04:39:8e:2e:40:
1a:e4:18:6c:f2:7a:6f:2e:00:f9:53:78:9b:9e:64:e7:55:df:
90:80:09:2f:da:95:e1:e0:2f:bb:0f:59:06:6c:66:48:80:2f:
9a:0e:d2:5a:e9:d7:77:7f:06:59:c4:f3:f2:f8:c4:8e:76:cf:
73:85:59:7f:f2:a8:56:ba:46:40:87:04:2f:1c:5c:ab:62:eb:
d6:a5:20:5f:62:bd:a3:ed:c7:e8:77:9f:9c:64:ca:a6:03:ed:
fc:b6:1c:45:65:5b:23:b4:da:b7:00:36:94:e9:59:b3:6f:24:
a8:8a:59:c0:76:02:04:66:d1:2f:5c:a4:00:f8:d5:3d:5b:14:
11:7c:ae:df:fc:e8:57:45:6c:b7:f8:78:6b:b4:b4:ce:22:f0:
4d:81:17:6c:85:22:9c:0b:6f:06:c1:a8:e2:4f:58:22:a1:6b:
47:f7:20:10:45:2b:db:36:10:1a:77:99:67:9b:26:5f:b0:bb:
85:7e:b2:89:9b:2d:cd:b0:05:bc:6e:8a:e9:d6:79:68:c4:62:
74:7d:93:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:03:05 2025 by rpki-client