Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e20313530323236.roa
File: 3130332e31372e3137382e302f32342d3234203d3e20313530323236.roa (raw, json)
Hash identifier: 6sZc5cLjn8BGU3ndbP5aYFbkGJW/EMEDKLHgtlwJygA=
Subject key identifier: 38:7D:8A:40:FB:ED:05:50:DC:D0:8E:39:5C:5F:28:82:5D:5E:9E:BF
Certificate issuer: /CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA
Certificate serial: 6115EE5CB8A1D89502BC37BBB209DF82A82426D2
Authority key identifier: 87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e20313530323236.roa
Signing time: Thu 06 Feb 2025 03:00:02 +0000
ROA not before: Thu 06 Feb 2025 02:55:02 +0000
ROA not after: Thu 05 Feb 2026 03:00:02 +0000
asID: 150226
IP address blocks: 103.17.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:15:ee:5c:b8:a1:d8:95:02:bc:37:bb:b2:09:df:82:a8:24:26:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA
Validity
Not Before: Feb 6 02:55:02 2025 GMT
Not After : Feb 5 03:00:02 2026 GMT
Subject: CN=387D8A40FBED0550DCD08E395C5F28825D5E9EBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:61:d5:43:fa:e5:66:71:56:7d:f6:26:1f:6c:
6e:8f:fb:78:d9:a6:f3:a0:da:e0:69:7c:29:9d:a7:
3a:0c:cf:28:4a:88:bd:d5:ee:57:f2:1b:8e:ad:95:
c0:b4:4a:ac:5c:85:24:da:a6:51:c7:41:94:41:96:
39:41:50:4e:48:78:61:c6:03:37:fe:50:5a:f5:4d:
72:b5:6e:5f:74:ed:5d:c6:61:83:69:1d:21:09:53:
5f:c6:af:73:75:70:09:31:57:56:a7:a0:d4:d8:53:
a6:a2:32:91:31:87:d0:d8:6b:e3:36:9f:50:32:45:
61:1c:6a:e9:f1:e4:09:d3:17:84:1e:c4:6c:b5:8e:
f5:ef:75:47:2b:dd:0a:29:e7:34:c0:9c:59:d5:d1:
e4:e9:3c:d6:8d:ee:cf:52:a3:4b:df:f9:c6:f0:d0:
76:7f:e1:28:16:0c:c2:fa:b0:38:85:1b:57:22:0f:
fe:5c:7d:e2:1c:61:0d:50:27:b1:2a:4b:45:90:51:
cc:f2:08:e7:48:99:0a:40:5f:e9:4e:83:91:eb:7a:
3b:b9:d0:cb:91:a1:23:c3:e0:f4:ee:a1:e1:b3:91:
0a:06:87:59:ba:0b:07:47:67:02:6b:a5:5a:a0:71:
91:19:64:ee:b4:60:b3:6a:b2:1e:93:13:71:78:ef:
79:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7D:8A:40:FB:ED:05:50:DC:D0:8E:39:5C:5F:28:82:5D:5E:9E:BF
X509v3 Authority Key Identifier:
keyid:87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/3130332e31372e3137382e302f32342d3234203d3e20313530323236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.17.178.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d7:c2:51:4d:66:f3:d7:20:f2:64:8e:4d:58:a0:48:01:c8:
77:7b:0f:95:f0:24:70:45:bd:8d:3e:79:aa:6e:95:a1:77:51:
a1:af:22:c5:a1:e1:ea:2d:9d:30:ad:c0:eb:d7:ce:c1:7d:52:
e5:37:46:a8:64:d7:d6:e3:19:38:f2:85:92:8a:46:fd:c7:13:
03:bb:7d:7c:64:66:bd:c3:55:d3:a2:04:c0:7c:17:d3:58:5d:
e6:d0:3a:8d:ab:9d:34:ce:0d:a2:1f:68:fd:2f:2d:d8:89:59:
7c:67:dc:60:7d:84:ef:f7:16:fc:38:03:e6:31:e8:bb:ba:6f:
6f:36:32:17:77:20:f8:27:91:fd:0a:52:b7:eb:7a:38:98:b5:
94:b1:7f:c4:f9:0c:76:41:d6:67:2a:3f:b0:b7:4b:2b:b3:94:
7e:9b:21:fb:aa:03:a7:6b:67:21:98:ea:fe:76:11:6d:fe:07:
73:76:22:eb:d9:c1:3a:34:dd:a6:42:e6:b6:4e:fb:a3:6a:cf:
22:aa:25:5f:88:d6:0f:82:a2:b5:a2:12:d4:3a:9d:e6:29:d5:
bd:fa:86:b7:fd:5d:94:75:5e:53:99:fc:d8:f9:2e:96:03:4d:
94:cd:ca:b0:b0:23:8c:76:b6:7b:0b:64:82:ef:42:4a:58:d2:
2e:6c:d3:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:09:54 2025 by rpki-client