Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa
File: 3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa (raw, json)
Hash identifier: V5/+oe0yc47TDeQuvZAPNLqrTj16mL6buLmaKxjOGog=
Subject key identifier: 59:92:18:6D:3E:9C:57:AE:CF:B5:23:B5:E0:B6:A8:55:22:6F:7F:27
Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953
Certificate serial: 43E88639A7028CBF9B1D7127A1FA312AB8A1F238
Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa
Signing time: Sat 21 Dec 2024 18:00:46 +0000
ROA not before: Sat 21 Dec 2024 17:55:46 +0000
ROA not after: Sat 20 Dec 2025 18:00:46 +0000
asID: 149746
IP address blocks: 103.17.246.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:e8:86:39:a7:02:8c:bf:9b:1d:71:27:a1:fa:31:2a:b8:a1:f2:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C00163880F235714759920507217F2A7D557C953
Validity
Not Before: Dec 21 17:55:46 2024 GMT
Not After : Dec 20 18:00:46 2025 GMT
Subject: CN=5992186D3E9C57AECFB523B5E0B6A855226F7F27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e7:43:44:11:5e:f5:a7:61:37:0f:2f:76:8c:
3c:6a:49:60:27:e9:3d:d4:e9:87:11:82:c3:9e:6e:
d1:f7:21:bf:a8:35:bd:e7:c5:a2:4a:ad:81:ec:57:
4b:3b:b7:a8:e7:b4:f4:3f:1d:39:fd:6c:9e:58:80:
d7:13:b3:27:91:43:6b:fd:b5:ee:96:aa:c7:fb:9c:
eb:3d:ba:b7:b7:48:fb:78:44:74:7e:e0:ce:65:8d:
0b:4b:a9:6f:e7:37:40:94:70:76:0c:7a:4b:3c:71:
98:e9:7c:05:59:4c:b8:de:fc:ce:73:d5:46:66:c0:
b1:49:13:ba:10:f5:a9:f5:48:e8:fc:1a:0b:33:58:
1c:24:f9:32:85:f4:00:b3:6d:9b:19:05:02:d6:7e:
82:5a:8e:d1:55:7c:5a:51:ec:00:a3:cd:79:1e:be:
76:32:ec:3a:a7:26:dc:20:24:d3:f1:de:c0:ae:cc:
a7:91:e5:f6:17:78:44:1c:22:06:73:d3:96:d4:6b:
d1:b4:71:b2:c7:68:0f:4f:7a:95:12:bd:ac:f9:d0:
79:0a:b2:8d:44:f3:ca:52:39:34:8d:74:31:d2:a8:
e8:cf:dc:63:d1:f6:57:26:e5:f1:53:4d:be:de:d7:
9a:0f:91:94:54:1f:fe:02:c5:65:b7:5c:ed:3f:92:
47:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:92:18:6D:3E:9C:57:AE:CF:B5:23:B5:E0:B6:A8:55:22:6F:7F:27
X509v3 Authority Key Identifier:
keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.246.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:b7:68:29:73:7b:12:ad:8a:8e:31:c2:ed:8f:d1:5b:bd:26:
ab:58:3e:28:fc:c2:2a:fa:9a:12:22:07:c5:4e:bd:6b:3b:d4:
5a:f1:c0:1a:ae:c6:d8:e5:2d:10:9c:e3:77:4c:da:ea:37:73:
c0:99:77:4f:29:b4:b7:62:44:15:2f:93:50:ad:47:da:ab:65:
e5:8f:45:80:01:97:fe:ce:fe:c5:0a:2b:7c:d4:8c:c0:1f:27:
de:a6:cd:7f:ff:96:f3:15:d9:f0:d4:32:e7:ca:30:dd:bd:fc:
8d:d6:29:ea:40:f0:75:62:15:17:6c:e3:b3:98:e6:c9:aa:58:
f4:d1:ff:65:2f:27:4a:1c:5f:75:cd:5b:ea:ae:77:eb:19:f0:
8f:15:a1:75:0a:66:ac:db:1a:83:7a:a9:d6:b2:d2:7c:e1:77:
d9:15:70:17:b7:92:af:df:d6:d4:c1:b3:7b:9d:da:9f:1e:4a:
7a:7d:49:5d:94:04:b8:7c:65:f0:d4:c6:a8:95:f2:98:59:45:
a0:fc:6a:67:20:32:21:22:bd:40:c3:86:73:7c:7a:12:16:78:
d0:34:83:34:b0:c4:35:88:1b:78:49:22:92:cb:8a:26:65:70:
e3:1c:d8:c6:92:a8:91:73:19:1a:b1:b2:c9:3f:02:cf:fa:9c:
c4:9e:b5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:59:32 2025 by rpki-client