Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33362e302f32342d3234203d3e203338353030.roa
File: 3130332e3234342e33362e302f32342d3234203d3e203338353030.roa (raw, json)
Hash identifier: l5czVuVopqzNHFatDNFlv4PSjmFiS+T99enXAHNMN58=
Subject key identifier: 95:EA:22:8E:01:12:DF:11:36:36:EA:D8:91:0C:35:DF:33:1A:21:B5
Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Certificate serial: 33A2E924E9142BA00290FACB19D0A67086435C5E
Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33362e302f32342d3234203d3e203338353030.roa
Signing time: Mon 01 Jul 2024 01:04:43 +0000
ROA not before: Mon 01 Jul 2024 00:59:43 +0000
ROA not after: Mon 30 Jun 2025 01:04:43 +0000
asID: 38500
IP address blocks: 103.244.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:a2:e9:24:e9:14:2b:a0:02:90:fa:cb:19:d0:a6:70:86:43:5c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0
Validity
Not Before: Jul 1 00:59:43 2024 GMT
Not After : Jun 30 01:04:43 2025 GMT
Subject: CN=95EA228E0112DF113636EAD8910C35DF331A21B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:98:b8:e6:06:e6:4e:80:e6:9d:7d:78:ee:09:
df:23:29:f5:cb:b0:3e:2b:ac:ba:c6:25:0f:2e:ca:
52:aa:ec:ca:da:20:60:bc:29:83:09:5d:c1:53:6a:
79:4a:ab:ac:ee:fd:c8:83:6e:95:c9:18:fd:7f:07:
b0:af:f0:1b:ba:38:91:a8:85:4d:c6:6c:3c:e9:99:
ef:4f:23:9f:b3:8c:a3:76:eb:6a:6a:51:fd:5b:93:
5c:43:cb:f7:56:dd:8e:c6:93:ba:b2:10:fb:0c:f0:
32:11:00:8b:78:52:27:d9:12:61:2c:16:b5:dc:4e:
fc:dc:89:f1:81:69:a3:c9:5a:29:5c:8b:79:83:ef:
a3:94:ab:5c:ba:8c:56:c4:e4:d5:52:ea:39:77:d7:
7f:f6:97:60:70:c8:cb:72:99:81:f3:8b:75:ce:cf:
a4:b6:b0:d9:54:dc:5a:a4:25:1e:b6:c8:cf:10:5d:
de:1b:79:db:58:66:75:f3:64:27:30:dc:e4:8f:80:
26:4f:ba:8b:7c:56:fd:8b:24:47:86:93:8c:74:43:
3a:33:d2:42:6e:4f:ee:ec:20:f0:e0:a3:b0:09:f2:
83:09:a6:1c:0c:74:3a:c3:8e:91:cb:e2:18:af:45:
d0:c9:be:a0:4b:0a:12:2e:09:80:83:00:08:21:83:
37:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EA:22:8E:01:12:DF:11:36:36:EA:D8:91:0C:35:DF:33:1A:21:B5
X509v3 Authority Key Identifier:
keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33362e302f32342d3234203d3e203338353030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.244.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:b1:72:75:77:28:a3:a8:4c:5c:32:6e:24:9f:af:79:0c:19:
f5:b2:e1:31:ad:e1:08:86:13:cb:2d:f4:a9:b3:18:23:98:f6:
6c:fe:17:c9:e7:31:12:f3:9b:74:d8:1d:39:4c:fe:c4:7f:0f:
a4:85:d3:5c:a9:bd:80:1e:75:92:24:5b:ab:0f:cb:34:c6:c1:
d2:e0:fc:13:b1:f7:78:a4:43:ae:7f:7b:1d:7c:18:c1:b6:c8:
8d:01:34:92:9e:ba:ef:ff:a3:55:74:f9:d2:65:f1:8f:d4:b5:
22:2b:e3:c4:9f:81:88:6f:5c:5a:4c:c7:19:55:2c:08:be:11:
55:3a:5e:ef:20:c9:80:f6:76:a0:09:bf:b0:59:9b:77:37:37:
d6:e8:b8:3f:db:77:30:df:56:08:4f:0e:3e:38:27:b1:2a:92:
44:6f:d4:61:3f:d4:4e:b0:fc:be:2c:70:19:76:5f:ad:8d:4c:
d9:de:fb:3b:ce:1b:73:2b:e2:5b:9a:08:cf:c2:15:e6:b4:b1:
0b:a4:5a:b0:45:3a:97:ad:b7:8c:89:34:9a:6c:10:ab:66:57:
ea:cc:45:80:a9:40:fb:c0:8c:c7:cb:f4:f4:fc:bf:8b:20:5f:
b6:25:95:24:a1:12:5a:4b:36:e7:95:ee:83:9b:b8:58:64:81:
fc:8e:3e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:21:40 2025 by rpki-client