Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133342e302f32332d3234203d3e20313335343738.roa
File: 3130332e3132312e3133342e302f32332d3234203d3e20313335343738.roa (raw, json)
Hash identifier: OByvPBeXjXgICf8nfRM4X/bYHAakXPJvdP6ikk90YbQ=
Subject key identifier: 03:85:5A:4A:2D:02:68:E6:21:C2:83:B8:59:2B:1B:50:84:6A:07:C5
Certificate issuer: /CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF
Certificate serial: 6427A61F5B3FE7E4DCEADD1AC9386CA8D965C3C1
Authority key identifier: FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133342e302f32332d3234203d3e20313335343738.roa
Signing time: Wed 04 Dec 2024 07:01:41 +0000
ROA not before: Wed 04 Dec 2024 06:56:41 +0000
ROA not after: Wed 03 Dec 2025 07:01:41 +0000
asID: 135478
IP address blocks: 103.121.134.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:27:a6:1f:5b:3f:e7:e4:dc:ea:dd:1a:c9:38:6c:a8:d9:65:c3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF
Validity
Not Before: Dec 4 06:56:41 2024 GMT
Not After : Dec 3 07:01:41 2025 GMT
Subject: CN=03855A4A2D0268E621C283B8592B1B50846A07C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9c:94:b6:59:5f:9d:9d:e2:ee:a4:17:50:97:
c9:68:fb:bf:89:98:02:96:02:bf:fd:d8:13:f9:6d:
2d:c3:60:32:95:61:51:a0:14:c5:aa:cf:10:dc:6f:
14:45:29:ce:52:d0:e8:ef:94:f5:2e:0d:b1:c0:97:
f8:5e:15:98:f0:a5:ae:3c:93:3d:c2:74:b5:c8:01:
a3:75:12:bf:15:2e:de:58:d7:d8:40:81:6d:eb:92:
25:74:00:9d:7b:82:4d:c2:ed:8d:ef:a3:1a:cd:4d:
fe:c1:6a:21:fe:8c:8b:79:4f:b7:05:68:c0:bc:45:
5d:0d:a5:13:d1:d4:0a:47:4c:fe:c3:0a:17:07:a7:
2a:53:d6:ab:97:8f:ab:81:7e:db:ff:d8:fe:c4:10:
f7:7c:16:3b:5a:29:c8:c9:c7:12:7d:07:ba:42:f7:
29:d6:18:74:48:b1:1a:53:25:1c:ef:65:c4:18:33:
f0:7c:3e:2e:31:57:5c:b2:bc:b8:31:1b:1d:46:2c:
78:19:d2:61:84:13:0f:23:97:e1:f7:88:ca:01:07:
5e:5a:ae:9d:f1:a1:1c:dd:22:90:61:32:97:7a:7b:
31:b1:d8:cd:63:a3:a4:3e:c0:64:68:d0:48:57:b3:
6e:e8:23:0d:a9:52:eb:d8:a7:21:82:c5:c2:e9:19:
59:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:85:5A:4A:2D:02:68:E6:21:C2:83:B8:59:2B:1B:50:84:6A:07:C5
X509v3 Authority Key Identifier:
keyid:FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133342e302f32332d3234203d3e20313335343738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.121.134.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:29:1f:63:d1:6c:06:94:ae:60:13:a4:48:e4:a0:78:cc:fc:
0f:58:b7:a4:03:e5:f7:ab:19:19:37:6f:5e:ea:84:08:06:ee:
9a:68:a2:e1:ad:89:c7:cf:53:4e:2a:d2:3f:f1:8e:db:be:9c:
21:c2:17:58:e5:dd:df:a4:b9:13:f5:a7:17:5e:62:fe:89:05:
36:e4:71:08:90:39:1d:c1:05:3a:77:91:ff:d7:91:1d:66:db:
48:ad:32:3c:0b:ae:a4:57:d8:76:c0:34:d2:63:31:04:09:e3:
04:8d:0c:49:19:de:af:75:f4:35:ec:ce:dd:20:b4:ea:66:57:
72:43:2b:0e:2e:6c:2f:f3:3d:b8:50:99:8f:29:5f:c4:a9:0b:
76:14:d5:89:ac:92:b7:6d:1e:02:92:01:5d:46:b1:8f:82:d9:
d8:06:77:5c:f1:08:e4:16:7a:ba:58:f0:e5:01:43:10:1e:c1:
77:c1:e6:ac:67:f3:0a:4b:50:27:d4:aa:12:2e:ac:49:8a:21:
0d:19:bb:78:3c:ae:4f:1b:3c:a1:a0:1b:1b:6a:d4:2d:4b:a2:
99:8c:84:77:b1:cf:95:03:72:69:50:ee:d0:18:28:d1:f3:0a:
14:9c:ae:3e:7c:ba:27:c6:ad:eb:94:66:a6:36:ed:cf:c7:74:
f2:d6:0f:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:15:36 2025 by rpki-client