Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32332d3233203d3e20313432333631.roa
File: 3130332e3137302e33322e302f32332d3233203d3e20313432333631.roa (raw, json)
Hash identifier: +HCzbZCAcsPZy0Z34W5jXpEW72ajJSY8WOyVSk6xOL8=
Subject key identifier: C4:8F:F2:12:D3:57:22:5D:AF:A3:67:9F:8C:3D:8D:4E:AF:8C:D1:7A
Certificate issuer: /CN=B90B0AED87ECD7C87066450AB56ADE2996647CD5
Certificate serial: 1DCEA3C15A864A10197E8C669D2E93D58AE37724
Authority key identifier: B9:0B:0A:ED:87:EC:D7:C8:70:66:45:0A:B5:6A:DE:29:96:64:7C:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32332d3233203d3e20313432333631.roa
Signing time: Wed 19 Feb 2025 06:00:00 +0000
ROA not before: Wed 19 Feb 2025 05:55:00 +0000
ROA not after: Wed 18 Feb 2026 06:00:00 +0000
asID: 142361
IP address blocks: 103.170.32.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:ce:a3:c1:5a:86:4a:10:19:7e:8c:66:9d:2e:93:d5:8a:e3:77:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B90B0AED87ECD7C87066450AB56ADE2996647CD5
Validity
Not Before: Feb 19 05:55:00 2025 GMT
Not After : Feb 18 06:00:00 2026 GMT
Subject: CN=C48FF212D357225DAFA3679F8C3D8D4EAF8CD17A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a9:76:95:3f:b4:74:9c:44:55:d5:59:16:1c:
60:02:a1:b5:9c:fb:50:e3:00:5e:cf:bb:85:37:53:
57:3a:6a:59:e1:53:b5:92:0b:57:a3:0b:9e:79:f4:
8d:3f:83:96:59:07:8b:41:ee:a3:55:d4:b6:40:eb:
32:11:a8:f0:1d:8d:dc:52:b7:d2:00:05:d5:a2:c4:
5b:ea:83:5f:71:0b:a2:1b:4b:68:7f:ef:4d:32:7e:
a8:b3:03:c0:75:8a:1e:5d:f1:55:1f:23:21:8c:1b:
22:8e:25:a2:86:77:b0:56:09:00:56:21:41:fe:e0:
58:34:20:9e:58:7b:a3:24:91:22:0a:00:30:7d:0a:
d8:99:5b:43:8b:c6:3d:e4:f4:3c:74:61:bb:8a:eb:
7b:5a:e8:8d:bf:40:7f:cf:9c:02:5c:32:dc:4e:0c:
6d:d9:c3:17:27:26:b8:b7:fe:26:48:21:e3:b8:f7:
3f:28:5b:ac:e9:ab:ec:25:67:d3:83:4c:e9:08:53:
2e:ff:ef:36:09:21:68:a9:64:47:79:d3:98:a4:33:
52:e0:7b:e7:a8:9d:35:53:1e:4a:88:ec:0c:4d:3d:
d2:1b:2f:45:9c:52:fa:c1:6f:9e:94:52:cf:07:05:
ec:38:0f:d6:e2:60:af:45:12:3e:38:5b:5e:fd:68:
d1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:8F:F2:12:D3:57:22:5D:AF:A3:67:9F:8C:3D:8D:4E:AF:8C:D1:7A
X509v3 Authority Key Identifier:
keyid:B9:0B:0A:ED:87:EC:D7:C8:70:66:45:0A:B5:6A:DE:29:96:64:7C:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32332d3233203d3e20313432333631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.170.32.0/23
Signature Algorithm: sha256WithRSAEncryption
95:82:15:2c:e6:95:2d:92:7f:ff:0e:14:66:42:26:87:f0:d6:
1d:20:51:ed:5f:76:2f:f3:a8:05:a3:f6:7a:08:b2:1a:87:8b:
bd:90:70:c8:b1:97:cb:01:87:be:6a:e4:14:74:2e:58:41:1f:
a1:8f:f1:e4:a6:9c:1c:42:70:41:e3:81:5f:37:a9:6f:fe:a7:
57:53:10:78:38:3a:24:1e:ee:68:03:7e:6b:82:3e:91:e0:f0:
ab:af:0c:16:ff:45:de:04:79:b7:fc:be:b5:66:5a:13:07:45:
b8:5d:f6:35:07:72:ce:ec:4a:c2:a8:a6:fa:2a:1b:8c:a7:41:
6f:96:9a:f3:dd:8e:a4:86:97:31:3b:62:5a:05:7a:53:3d:12:
14:92:a1:ad:5e:81:76:fa:3e:d5:ec:67:b9:25:15:e5:ee:c1:
ff:81:2d:74:c2:5c:4d:86:f3:cc:ff:6b:f2:d3:f6:a8:3e:ec:
2d:d7:6a:88:6e:a1:c2:9e:f2:0c:31:d1:3e:dc:86:c1:f6:f4:
b2:b3:1b:03:20:06:44:cb:6b:4f:b1:5a:5d:a6:13:ad:60:92:
32:7b:13:c1:a5:fe:9b:2e:6b:5d:28:4b:3b:c8:48:d8:f1:e5:
23:0d:9a:08:61:99:e8:3a:31:9e:b9:e6:80:5c:11:c5:ca:39:
0a:6c:a0:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:53:01 2025 by rpki-client