Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa
File: 3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa (raw, json)
Hash identifier: fClrGVo7KIbodlsfiTmY+K3veEcIh6A6Yqks/n4Pem0=
Subject key identifier: 28:EB:D0:1F:B3:41:00:39:94:C7:6A:81:34:CD:0A:F3:BB:58:AB:91
Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9
Certificate serial: 38BB0C2A7267493EB55C17EAB2793BE83D92411A
Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa
Signing time: Sun 06 Oct 2024 08:00:00 +0000
ROA not before: Sun 06 Oct 2024 07:55:00 +0000
ROA not after: Sun 05 Oct 2025 08:00:00 +0000
asID: 139972
IP address blocks: 103.147.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:bb:0c:2a:72:67:49:3e:b5:5c:17:ea:b2:79:3b:e8:3d:92:41:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9
Validity
Not Before: Oct 6 07:55:00 2024 GMT
Not After : Oct 5 08:00:00 2025 GMT
Subject: CN=28EBD01FB341003994C76A8134CD0AF3BB58AB91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2c:eb:de:d8:f9:54:db:18:da:37:3a:f2:a1:
35:70:6b:be:90:33:56:60:12:3a:29:8a:21:5d:38:
0a:65:7a:1a:99:28:ab:29:fc:94:dd:b3:d1:98:01:
37:e8:6b:47:e2:35:c4:dc:6d:28:ef:2a:0f:c2:16:
5c:70:6f:13:9c:41:1d:62:0b:2c:46:5f:d7:f1:88:
5a:d1:aa:d4:7c:61:26:56:2d:35:07:d5:d8:e1:4b:
87:e7:cf:ef:7f:92:e5:ea:67:e2:b4:e0:b3:e3:f4:
8a:35:4b:19:67:cb:d2:65:be:fc:fc:2c:b4:1d:e0:
02:88:f3:de:bb:32:2f:02:05:48:48:28:fd:32:34:
c5:fc:16:4c:92:16:09:01:5b:0b:bf:42:10:be:79:
16:fb:7c:e3:72:95:0b:41:a9:89:6e:94:7f:45:5f:
9f:ca:17:8f:06:ba:0a:e2:5d:68:34:a5:37:7b:00:
66:a2:29:52:6c:d7:14:32:bd:10:79:43:09:4d:9b:
3b:48:01:57:b1:9d:4d:4c:08:05:8a:6b:6d:e4:db:
31:47:6a:ab:58:10:b1:5a:0e:39:34:5d:ae:c2:0c:
b9:bf:e9:23:fc:35:d3:ad:15:65:5c:04:71:db:37:
bb:c8:9c:de:5f:1b:c7:cb:93:52:46:7b:e4:e5:35:
96:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:EB:D0:1F:B3:41:00:39:94:C7:6A:81:34:CD:0A:F3:BB:58:AB:91
X509v3 Authority Key Identifier:
keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.246.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:d4:b3:b2:74:04:5f:75:34:e0:08:e5:58:d3:fe:fe:f5:8c:
9c:ca:2b:fa:14:28:1c:e3:e1:71:ca:32:25:24:60:68:fb:ca:
47:8c:f6:e6:b2:75:0a:74:cc:da:94:ff:99:df:f7:73:68:88:
9b:85:fe:64:e7:57:e1:3f:e2:4e:07:0e:fb:74:93:cf:1e:ad:
4c:a7:c4:ec:23:b0:5e:38:f5:f0:93:9f:50:5e:88:dd:eb:51:
77:ee:ba:fb:0b:f1:8d:65:b7:47:2d:0e:a7:8b:a6:b6:c7:a8:
95:a9:3f:cf:5c:83:94:e6:1a:ae:64:a4:11:72:16:06:81:a6:
7b:d3:0c:a6:16:82:c7:94:9e:38:a6:cb:20:50:ad:4c:54:01:
2d:2c:c8:5a:c7:41:c0:62:d6:a4:41:4b:54:22:9c:e8:01:b7:
56:ed:ec:ba:3f:e2:ff:17:56:4e:8e:18:47:70:4a:06:c5:a7:
cd:d9:3c:c9:aa:fe:e2:7f:58:aa:c3:8f:38:f8:ae:a5:c3:0f:
ca:32:8a:af:2c:28:10:0b:84:8e:31:dd:ff:3b:8c:56:70:02:
82:aa:18:ff:db:ee:2f:48:0a:30:df:c7:f6:08:e9:ff:a2:6d:
73:f8:e4:fb:63:6b:2d:e9:dd:05:0e:c2:5d:a1:1b:d4:d2:bc:
85:f6:cb:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:38:55 2025 by rpki-client