Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ae92243a-763d-44b8-987d-08bd0da9ee3d/0/3130332e3131362e38332e302f32342d3234203d3e20313530393539.roa
File: 3130332e3131362e38332e302f32342d3234203d3e20313530393539.roa (raw, json)
Hash identifier: F98mLIPqX7xW346RCv6louyBJXE+C84977MPR7enwBM=
Subject key identifier: 1B:21:DF:CF:68:B0:8C:D2:2A:88:03:07:CD:29:F9:84:BA:08:06:8E
Certificate issuer: /CN=C58E232004125E8B46AB63B600900D92EB71A3B1
Certificate serial: 30E0DD832DE352BDA2AF9CA48C3A30D9F292BA88
Authority key identifier: C5:8E:23:20:04:12:5E:8B:46:AB:63:B6:00:90:0D:92:EB:71:A3:B1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C58E232004125E8B46AB63B600900D92EB71A3B1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ae92243a-763d-44b8-987d-08bd0da9ee3d/0/3130332e3131362e38332e302f32342d3234203d3e20313530393539.roa
Signing time: Wed 05 Feb 2025 16:00:02 +0000
ROA not before: Wed 05 Feb 2025 15:55:02 +0000
ROA not after: Wed 04 Feb 2026 16:00:02 +0000
asID: 150959
IP address blocks: 103.116.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:e0:dd:83:2d:e3:52:bd:a2:af:9c:a4:8c:3a:30:d9:f2:92:ba:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C58E232004125E8B46AB63B600900D92EB71A3B1
Validity
Not Before: Feb 5 15:55:02 2025 GMT
Not After : Feb 4 16:00:02 2026 GMT
Subject: CN=1B21DFCF68B08CD22A880307CD29F984BA08068E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:96:83:d7:8f:64:d9:91:2c:9e:e4:b6:4f:1a:
31:0d:3e:17:47:6a:12:df:ec:21:a2:98:6f:f9:1c:
ef:91:36:00:d7:11:5a:7a:44:83:e2:fb:97:49:65:
de:3f:5e:a0:03:bd:12:95:ff:4a:6b:85:71:6c:e0:
f7:7d:93:32:50:c0:49:52:83:f5:58:01:a9:fc:4c:
c4:29:99:0e:2d:2f:9c:0f:7d:a2:82:b2:f0:2c:c7:
ae:86:00:7b:a4:04:7b:47:47:1e:2e:bf:26:93:d7:
5f:15:73:d4:f1:7f:7e:89:79:0c:a7:cb:6b:6c:0b:
43:6d:43:be:77:ba:a1:2d:af:cd:e9:bc:30:51:e1:
7b:64:8d:ce:75:8c:c8:38:ff:8a:96:e3:dd:3c:1b:
36:b3:f8:fc:f0:85:99:4f:4c:7b:af:19:27:8a:e3:
38:a4:cd:63:57:ea:78:df:e2:8b:96:8e:ae:93:d0:
51:75:c9:09:74:d3:62:a6:c2:6b:2f:56:1d:c1:dd:
b0:55:4a:95:54:60:10:48:99:b3:95:13:fc:98:5a:
34:33:56:a6:68:7f:45:24:da:0f:6b:d2:86:9d:9f:
3b:10:89:81:10:bc:d9:cc:32:3f:b6:a5:3e:fa:57:
77:20:88:13:d7:d7:7e:cc:27:b4:a8:39:14:15:cb:
d5:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:21:DF:CF:68:B0:8C:D2:2A:88:03:07:CD:29:F9:84:BA:08:06:8E
X509v3 Authority Key Identifier:
keyid:C5:8E:23:20:04:12:5E:8B:46:AB:63:B6:00:90:0D:92:EB:71:A3:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ae92243a-763d-44b8-987d-08bd0da9ee3d/0/C58E232004125E8B46AB63B600900D92EB71A3B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C58E232004125E8B46AB63B600900D92EB71A3B1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae92243a-763d-44b8-987d-08bd0da9ee3d/0/3130332e3131362e38332e302f32342d3234203d3e20313530393539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.116.83.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:72:b9:9e:7a:20:f4:de:cc:39:4b:0c:f4:20:27:42:5c:5d:
ea:7d:3d:b1:52:7a:f7:4b:40:10:d5:83:70:f3:81:5e:d8:7f:
18:55:1e:93:96:d6:32:26:32:00:15:98:b5:8d:5b:d6:2c:c7:
61:f6:95:c9:23:40:76:ec:a2:8b:40:d6:47:61:48:ae:58:b8:
f0:09:e2:79:e7:ff:71:19:1c:cf:d8:de:60:95:f2:41:1e:0e:
a4:d8:67:f1:9c:86:79:bd:bd:b0:e9:db:7b:84:38:4a:5b:fb:
01:d1:69:37:03:ea:bf:7a:64:b5:c8:b7:51:c8:ce:9d:4a:ce:
ba:ae:3d:7a:ce:f8:32:8f:ff:19:a5:2a:99:54:a4:cf:52:48:
de:70:d9:a5:72:3e:b5:c3:4c:3c:1b:e0:0e:a5:25:89:02:29:
ab:01:40:d6:f2:73:98:c1:24:1a:d8:1e:e2:60:74:e2:57:31:
5b:4e:e5:a8:ad:c3:00:47:f8:fb:71:dc:e0:b8:28:fc:59:2a:
be:8a:98:89:32:36:67:3f:ed:c5:84:f6:77:14:91:66:96:f5:
b9:e8:2e:8e:54:2a:64:f4:8a:21:ed:39:1e:f2:a5:ee:85:7a:
51:05:3c:17:92:c6:e2:85:5e:59:8f:5d:0c:3f:ad:67:94:86:
88:67:cf:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:20:41 2025 by rpki-client