Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa
File: 3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa (raw, json)
Hash identifier: CZOT3Qe6u5gK3ZMkwDdMPzpBsT/hchoPycr1jT+sxpE=
Subject key identifier: B2:81:37:05:D4:F4:54:77:24:C0:23:5A:9A:45:7C:13:58:19:30:83
Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A
Certificate serial: 6111707BB13947D092438C6F67107264F9885547
Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa
Signing time: Mon 19 Aug 2024 07:35:13 +0000
ROA not before: Mon 19 Aug 2024 07:30:13 +0000
ROA not after: Mon 18 Aug 2025 07:35:13 +0000
asID: 139978
IP address blocks: 103.148.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:11:70:7b:b1:39:47:d0:92:43:8c:6f:67:10:72:64:f9:88:55:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A
Validity
Not Before: Aug 19 07:30:13 2024 GMT
Not After : Aug 18 07:35:13 2025 GMT
Subject: CN=B2813705D4F4547724C0235A9A457C1358193083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9f:c4:2e:fa:19:35:43:c2:2d:14:ec:f7:d2:
b6:72:15:cd:98:f5:60:7c:d4:4a:3f:ab:c4:5c:89:
46:a0:a9:d0:b3:8a:f3:fa:e6:84:f7:e2:2f:19:4e:
a1:e1:f7:b6:45:f6:be:f4:3c:3e:a6:38:ee:08:e4:
aa:30:33:35:ae:47:6e:2c:e6:2f:65:fc:ed:72:d5:
69:c3:e4:f7:19:13:9c:9a:ae:b6:af:ce:59:55:10:
86:d5:fe:45:cf:03:5e:e4:e7:8e:d3:1a:2e:5b:1b:
25:96:2c:d0:86:a7:ac:a6:a1:30:a5:dc:41:ae:0e:
37:2d:a9:43:b8:e0:46:79:3f:a5:eb:7b:59:d6:7a:
c1:5c:86:68:c8:29:2c:c0:b7:7a:dd:a7:6c:9d:33:
82:69:0f:a2:c2:1b:6f:6a:28:67:ed:fb:2f:6c:ef:
b8:43:25:5a:a4:09:23:83:33:15:5c:c3:2a:6d:d0:
9e:79:a7:6d:ae:c1:5d:34:1e:b3:1e:68:9a:e1:f0:
ab:8a:2a:27:8e:3c:4e:03:5d:f9:28:0f:a9:2d:dd:
0a:08:b2:0c:b4:f6:4d:16:da:07:68:09:5e:67:4b:
10:55:77:09:be:b3:d7:80:15:16:21:76:d8:39:29:
fe:4d:b2:2e:26:2c:3f:1c:81:4b:00:87:6f:ed:08:
ab:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:81:37:05:D4:F4:54:77:24:C0:23:5A:9A:45:7C:13:58:19:30:83
X509v3 Authority Key Identifier:
keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/3130332e3134382e31392e302f32342d3234203d3e20313339393738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.148.19.0/24
Signature Algorithm: sha256WithRSAEncryption
76:69:a0:e0:3c:c8:0a:d8:b8:b3:bb:59:f7:7a:68:0b:7c:25:
9c:9a:56:b5:d9:9f:66:27:df:dc:b6:d8:53:26:81:34:da:00:
dd:8e:3f:21:3e:f0:d5:57:0a:bf:19:d4:18:ff:f1:84:cc:ba:
d9:d6:3d:49:98:cf:70:54:06:e6:43:4b:bc:d3:00:9a:4b:67:
16:98:f3:f6:44:67:77:91:27:ab:48:6b:5c:d4:a6:0a:cc:93:
8c:c2:f1:e2:96:c3:34:7f:10:a4:c3:f5:9a:2b:43:d3:05:66:
7c:8c:3b:30:e0:1e:05:ad:9c:30:d0:b4:18:09:eb:6c:eb:b6:
d8:81:0d:95:40:0f:cc:8c:a9:d6:67:c9:03:a3:eb:9b:99:97:
02:7d:19:17:af:fe:b4:78:2c:26:7c:46:61:e8:16:55:0e:9d:
a1:96:70:7a:84:2d:fd:f9:cf:c7:c0:c6:60:06:e0:db:b2:65:
a1:29:79:af:a0:f9:6c:79:93:a5:47:12:d5:bb:9a:98:ac:36:
b7:6d:a9:3e:0c:fb:e2:b4:fe:97:ce:11:b1:37:fc:b3:d6:cf:
d0:51:ae:49:c7:f0:06:76:6b:ba:2a:c9:5a:aa:1e:25:93:4b:
98:e8:fe:28:e8:e4:9d:25:20:c9:27:38:84:32:a6:08:a3:f6:
c7:c3:08:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:35:24 2025 by rpki-client