Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39302e302f32332d3234203d3e20313338383736.roa
File: 3130332e3134302e39302e302f32332d3234203d3e20313338383736.roa (raw, json)
Hash identifier: UiT4seYGc2LRhlDHPZFCHvfBBtdW1FREPb29P5n03i8=
Subject key identifier: 02:6A:3D:2A:74:36:98:15:D0:0A:E5:FC:4D:21:0A:A9:2C:71:A4:5C
Certificate issuer: /CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD
Certificate serial: 3014E7A8503DFA2A657B7141F1709A897E968D9C
Authority key identifier: 45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39302e302f32332d3234203d3e20313338383736.roa
Signing time: Thu 12 Dec 2024 08:02:36 +0000
ROA not before: Thu 12 Dec 2024 07:57:36 +0000
ROA not after: Thu 11 Dec 2025 08:02:36 +0000
asID: 138876
IP address blocks: 103.140.90.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:14:e7:a8:50:3d:fa:2a:65:7b:71:41:f1:70:9a:89:7e:96:8d:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD
Validity
Not Before: Dec 12 07:57:36 2024 GMT
Not After : Dec 11 08:02:36 2025 GMT
Subject: CN=026A3D2A74369815D00AE5FC4D210AA92C71A45C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d7:a0:a7:30:ad:b3:a6:d1:70:ed:fe:ee:99:
c9:2e:12:49:7a:22:ff:e9:51:4f:6b:7e:f4:60:21:
46:94:08:aa:d1:6b:87:0f:bc:c4:2c:c3:11:49:c5:
f9:94:e5:ae:f4:4f:cc:ff:12:42:8a:1e:d2:22:be:
d7:3d:56:a8:31:41:cc:10:e8:0a:31:32:1b:e0:be:
ce:e9:04:3e:32:b7:6c:3a:f7:8f:a9:a0:eb:80:1c:
2a:67:62:6a:1b:11:0e:80:d6:90:45:d7:0f:67:a9:
72:f9:3a:d7:ca:fc:fd:be:d3:cf:a4:fe:d4:21:ae:
c6:32:b3:01:ad:34:ae:4f:c1:95:6f:92:5f:ce:aa:
ac:9a:fd:45:e7:97:0a:5a:c5:b8:98:9a:b8:18:cc:
ea:84:9e:74:ec:90:1e:c3:9f:8f:77:40:c6:c4:a1:
01:d8:b3:c0:ed:f3:fd:d5:59:be:d1:40:f2:98:0e:
13:62:79:03:bb:73:63:ad:67:ec:63:9e:27:74:93:
ee:24:9d:fe:89:bd:1f:2a:8f:e6:2f:fa:90:2a:55:
53:4e:c9:7c:45:d6:4d:be:96:fa:dc:bb:5f:77:dc:
76:40:59:17:fb:3b:83:f5:99:78:14:8b:1e:b6:36:
ce:70:cb:47:ed:19:1a:82:21:1a:d3:21:b3:b0:ad:
0a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6A:3D:2A:74:36:98:15:D0:0A:E5:FC:4D:21:0A:A9:2C:71:A4:5C
X509v3 Authority Key Identifier:
keyid:45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/3130332e3134302e39302e302f32332d3234203d3e20313338383736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.140.90.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:8c:c2:5c:7c:df:dd:c0:55:8d:d0:87:1e:0f:20:24:38:5e:
31:04:1f:11:6c:b4:5e:bb:c9:6e:2b:d9:cf:c8:cc:62:29:74:
44:78:8d:4f:1c:8f:b9:71:fd:4d:ab:d0:10:a8:33:d8:1e:57:
70:5e:99:81:05:d2:e8:65:50:15:87:67:61:00:42:cb:0c:b0:
23:e8:b9:6a:6a:95:1b:92:46:7b:7d:b6:0a:53:0c:df:da:a9:
14:2f:a4:e0:b1:cf:5e:c4:ab:a8:a8:1c:59:a1:d4:0c:6d:93:
ea:51:35:b5:d9:60:1a:57:47:f1:c4:4d:ce:6f:19:6e:1b:60:
f9:3b:2e:26:77:9a:67:d4:ac:78:8b:50:a2:01:2a:9c:13:72:
37:f3:e7:3a:92:dd:70:27:20:f4:c1:5a:f2:f9:ec:81:39:c3:
bf:d2:dd:6d:f1:81:f9:11:76:67:ca:03:b7:8b:75:f8:08:0f:
00:42:8b:1b:aa:8f:a0:e0:9a:41:ed:af:4e:60:b7:96:82:b4:
0a:0b:62:3f:78:d0:26:4b:99:7e:8d:5e:90:f7:d1:03:fb:9a:
fc:e3:5f:19:cc:90:23:73:f3:1d:28:27:5c:aa:89:9b:ad:b4:
82:40:82:8a:9c:3e:4f:c6:f5:8d:6a:9d:f0:fd:c2:8f:14:8e:
d9:74:fa:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:50:00 2025 by rpki-client