Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa
File: 3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa (raw, json)
Hash identifier: KlVfWP1Il3RN3ASw6Ya5TPYfRFfepbYfILbLkUXBAks=
Subject key identifier: B5:D3:59:0F:17:36:D4:68:81:62:1D:0F:D9:95:57:39:E2:BD:01:6C
Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A
Certificate serial: 351C2218F35A4DFF68C7C10D7A59294C8F4498FF
Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa
Signing time: Mon 19 Aug 2024 07:34:58 +0000
ROA not before: Mon 19 Aug 2024 07:29:58 +0000
ROA not after: Mon 18 Aug 2025 07:34:58 +0000
asID: 139978
IP address blocks: 103.148.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:1c:22:18:f3:5a:4d:ff:68:c7:c1:0d:7a:59:29:4c:8f:44:98:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A
Validity
Not Before: Aug 19 07:29:58 2024 GMT
Not After : Aug 18 07:34:58 2025 GMT
Subject: CN=B5D3590F1736D46881621D0FD9955739E2BD016C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:ca:c7:df:9d:66:84:a6:2f:5d:00:c0:88:
68:e5:d6:27:61:95:c3:c2:09:3e:d2:45:b1:c4:fe:
41:ff:17:86:9a:c6:af:7f:c0:2f:3b:eb:0f:db:b2:
8f:be:1b:a9:f7:85:d4:48:d6:f2:17:74:6f:5c:9f:
71:f4:22:38:92:0c:2a:ef:c1:ec:8f:fb:4c:32:a6:
56:36:f5:5a:d8:e4:e1:e0:9b:03:5f:2a:ef:9b:b8:
2c:05:6b:57:0c:bd:45:ab:19:c4:5b:b6:21:f2:a5:
91:ac:af:c9:4a:ee:ae:1a:09:1e:2f:d5:08:08:91:
19:5c:1f:f3:3d:e6:25:0b:20:c3:6a:b6:62:19:fd:
84:79:8e:e7:f6:39:07:fc:d4:9d:58:5f:ef:1b:91:
55:c1:3c:62:67:ce:c1:ea:d3:62:29:87:8f:32:90:
56:ad:1a:66:13:78:aa:de:8b:6f:9b:ce:ec:9e:a2:
da:8b:95:53:f6:c7:30:64:b7:34:50:14:64:f4:73:
c3:b4:17:fc:60:2b:7d:13:86:8b:78:02:cb:43:d7:
5b:49:db:61:9b:c4:9c:fb:d2:4d:01:4a:38:50:5f:
51:7e:66:ef:69:da:e5:92:9f:ea:6a:2c:2b:46:52:
8b:3b:11:df:73:c0:5e:52:d0:16:fc:2c:61:d1:95:
f0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D3:59:0F:17:36:D4:68:81:62:1D:0F:D9:95:57:39:E2:BD:01:6C
X509v3 Authority Key Identifier:
keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31382e302f32342d3234203d3e20313339393738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.18.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:4d:94:dd:93:0c:4a:dc:df:cd:5d:f6:a9:55:7b:04:79:4b:
bd:ee:e1:ff:18:b7:a9:e8:1a:75:1e:b4:62:da:d1:32:16:00:
e6:50:f2:05:f7:2a:2f:0a:79:36:43:69:02:d6:28:f0:00:40:
18:85:5a:9f:ee:ae:38:bc:70:d8:c8:37:f0:b8:ef:fd:65:a0:
22:91:6f:34:0c:b9:78:6a:17:7f:10:8b:a5:6d:6b:bc:35:79:
95:b2:65:ed:0a:b2:0a:1c:c9:cc:9b:a6:2f:e4:ef:33:45:78:
d8:52:79:73:81:c2:72:f7:f8:5e:eb:1d:44:95:e3:00:87:49:
94:ce:40:0b:55:c4:28:52:fb:35:cc:74:3c:e5:72:ab:13:66:
19:fb:a4:c9:44:51:fa:04:96:db:79:6e:ba:ab:b5:58:5b:27:
50:bd:6f:ff:ea:dd:89:88:68:b6:99:2c:87:92:9d:8b:c6:8a:
49:38:e1:39:e1:49:3a:93:15:99:f6:05:b8:92:f0:86:2d:40:
36:79:c6:f0:44:82:d1:a7:45:41:93:af:dd:28:48:e4:00:f3:
d5:50:4c:10:f1:aa:c3:fe:23:33:e0:c4:f1:00:4b:27:d7:d7:
84:69:f1:cf:69:8b:9f:de:9b:3c:5a:d5:9e:8d:2f:f0:ea:a2:
15:3b:fe:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:35:29 2025 by rpki-client