Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa
File: 3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa (raw, json)
Hash identifier: zzH64W01k51UtMKo9K1XtqIEAU0v0y4EltQRbWU1t7M=
Subject key identifier: 72:2E:82:BC:2D:C1:AE:FF:FE:3A:75:59:BD:0D:B1:90:E7:AF:8E:80
Certificate issuer: /CN=BB64FDB64281947C3567104C08735A011C6210F4
Certificate serial: 4E314B42D1FF50E7477957A2AD5775DCC42A7D65
Authority key identifier: BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa
Signing time: Thu 02 May 2024 11:02:04 +0000
ROA not before: Thu 02 May 2024 10:57:04 +0000
ROA not after: Thu 01 May 2025 11:02:04 +0000
asID: 142348
IP address blocks: 103.169.192.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:31:4b:42:d1:ff:50:e7:47:79:57:a2:ad:57:75:dc:c4:2a:7d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB64FDB64281947C3567104C08735A011C6210F4
Validity
Not Before: May 2 10:57:04 2024 GMT
Not After : May 1 11:02:04 2025 GMT
Subject: CN=722E82BC2DC1AEFFFE3A7559BD0DB190E7AF8E80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a7:21:d9:c1:c7:d5:85:44:14:22:65:43:07:
91:c2:98:41:19:4a:96:47:59:3a:be:f9:d8:fb:74:
23:5d:e5:3c:ea:ac:6b:4e:76:61:68:f0:6a:c1:02:
e8:1f:83:d4:da:71:73:5c:3f:df:03:ad:a1:af:f7:
e8:9a:56:a9:a5:40:df:0f:37:57:05:bc:b5:36:ab:
35:a5:e5:58:be:da:b1:11:e9:7c:13:0b:9f:7a:6a:
f8:ba:bc:e1:d1:50:de:c9:b0:db:c4:42:d9:da:1d:
88:35:f1:b3:a6:44:dd:b3:a2:1d:98:7c:5e:a7:24:
82:b6:1e:19:77:4b:48:68:81:31:66:41:0d:86:01:
91:ca:b2:b3:fa:6d:38:97:dd:71:be:ec:b6:37:b5:
bc:6f:83:56:48:ae:1b:ba:5c:ce:42:4b:31:3b:2f:
95:03:4a:85:ff:f2:84:75:11:08:4b:6a:ce:90:fb:
9e:96:a8:12:c5:7e:8a:0a:0f:8c:98:11:e0:42:52:
ac:24:cf:52:6b:d9:d9:ba:c7:69:10:12:30:c1:a7:
2b:28:a0:91:04:15:2f:c6:1c:a9:36:0b:65:a2:d9:
0c:1f:5a:26:40:78:9a:be:50:e6:23:72:7a:63:cb:
3e:f7:37:6e:e0:35:d6:27:75:26:18:bb:e1:af:75:
5f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2E:82:BC:2D:C1:AE:FF:FE:3A:75:59:BD:0D:B1:90:E7:AF:8E:80
X509v3 Authority Key Identifier:
keyid:BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.169.192.0/23
Signature Algorithm: sha256WithRSAEncryption
17:36:b8:12:11:06:65:67:c7:36:3f:d1:f0:5a:c4:f6:6a:d1:
60:b3:99:a3:f9:9a:cd:2a:e6:9d:a0:fd:e4:83:9b:f4:30:cd:
46:fb:bd:28:e1:82:8a:d8:c6:44:ad:e1:80:18:d0:50:34:54:
fe:c7:64:26:3a:35:dc:1d:3b:54:e1:80:b9:5f:a6:3f:5a:1a:
fe:0f:39:5f:e6:f2:9b:23:65:3d:35:59:cf:8d:d1:9e:a4:ec:
e9:22:58:6f:7e:3b:99:3f:dc:32:78:36:60:73:cd:e1:3a:ca:
d9:42:49:8c:3c:b5:11:04:22:87:7c:d2:be:bc:b1:3a:9a:c2:
7b:b0:cc:91:f1:d3:42:20:f8:7b:90:03:95:d7:4a:78:d7:81:
e9:27:1c:7f:6f:76:54:b7:11:dc:f7:35:39:a6:8f:58:85:16:
14:46:b7:f2:52:c5:85:ec:bb:b7:07:23:cf:af:b8:a2:57:6b:
3b:79:d8:b1:e1:6b:42:8d:a2:9b:05:e0:b0:2e:3d:3d:da:9e:
41:72:bf:17:59:4a:d5:73:d4:6c:4b:c3:fb:e0:a3:e2:60:80:
39:29:f4:a9:6d:55:93:b5:1a:c6:2c:e2:da:35:e8:47:a8:19:
00:7e:ca:c1:a7:e5:76:20:a3:7d:73:aa:a3:09:8c:d2:10:8a:
f0:2f:43:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:49:19 2025 by rpki-client