Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa
File: 3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa (raw, json)
Hash identifier: NCFMTB+6CHYXkcepHvjhz7TzV8Mxuk6TBlwx3WylIcU=
Subject key identifier: 7F:D4:DB:F3:74:70:FB:33:05:ED:98:B3:53:2A:9B:92:70:79:F8:13
Certificate issuer: /CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169
Certificate serial: 3C5BF5474B4FB7417B97EBAF3BAAC7862B05F85A
Authority key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa
Signing time: Mon 19 Aug 2024 04:02:52 +0000
ROA not before: Mon 19 Aug 2024 03:57:52 +0000
ROA not after: Mon 18 Aug 2025 04:02:52 +0000
asID: 131706
IP address blocks: 103.102.150.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:5b:f5:47:4b:4f:b7:41:7b:97:eb:af:3b:aa:c7:86:2b:05:f8:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169
Validity
Not Before: Aug 19 03:57:52 2024 GMT
Not After : Aug 18 04:02:52 2025 GMT
Subject: CN=7FD4DBF37470FB3305ED98B3532A9B927079F813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:09:4b:5c:f2:e3:7a:a2:db:ce:25:cc:79:b1:
47:92:1e:fe:f8:a7:c1:be:8f:a1:70:3d:bd:6d:25:
09:60:ef:15:d1:fe:07:19:37:7e:93:ac:40:3d:63:
36:38:e4:ba:6b:88:f5:c5:6e:2f:02:93:c6:4a:0e:
f6:e7:9d:f2:13:b1:a1:6b:e2:9a:3b:bc:61:2f:32:
68:2d:a9:f9:f0:7f:ed:b0:06:28:22:a9:f5:54:86:
00:a5:bd:87:3b:2f:25:1b:a2:af:62:e7:ec:6c:c0:
70:3c:77:93:8b:c0:c4:33:58:75:29:80:0e:ad:66:
6d:9d:16:20:c2:d8:9b:4b:a4:83:1f:0e:5b:d2:ee:
72:e2:dc:17:93:e4:f3:5f:ef:a6:71:d1:84:a6:90:
a9:e3:b8:21:5a:c2:96:ab:cf:79:02:ab:69:7e:86:
0d:3d:bf:5d:8e:89:58:d6:90:f8:a9:94:8e:10:cf:
71:bd:68:6c:e8:ff:13:71:78:68:7d:7c:54:b5:86:
12:7e:12:55:50:7e:09:83:98:7c:5e:b8:71:0a:e9:
96:a5:1c:a2:ff:bc:9d:5d:31:97:7a:cb:01:d6:60:
d2:24:9d:1f:3a:39:2c:bf:0e:a5:1a:83:a8:37:e4:
b7:0d:25:00:ec:81:ef:f1:0f:25:f0:fe:3d:44:df:
96:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D4:DB:F3:74:70:FB:33:05:ED:98:B3:53:2A:9B:92:70:79:F8:13
X509v3 Authority Key Identifier:
keyid:18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/3130332e3130322e3135302e302f32332d3234203d3e20313331373036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.102.150.0/23
Signature Algorithm: sha256WithRSAEncryption
af:ae:ac:6a:8e:b5:bf:d4:27:cf:a6:a8:51:34:54:8b:cc:73:
91:e3:f4:d5:ea:03:6f:cc:c4:f3:10:bd:03:b7:95:be:94:1f:
fe:e4:b9:3e:28:97:de:87:5f:f9:3e:c4:5e:92:3c:53:09:3b:
47:46:bf:72:f2:f1:10:3d:73:81:dd:79:0a:f6:33:9c:ed:2e:
05:1e:5d:7a:b8:fc:7c:af:90:4a:c5:01:c3:d3:1b:d8:27:36:
c4:a3:f9:46:7e:7c:6c:34:2d:fa:43:00:c7:86:17:cf:84:45:
74:b5:29:3a:1e:3c:21:99:f3:0e:fd:92:e2:a9:a0:1b:6e:e3:
1a:90:41:0b:48:b3:4b:d0:69:ed:7b:42:f0:be:77:ab:b5:fb:
d7:11:b5:b9:66:90:09:8c:68:98:5b:b2:a5:e1:e1:5d:71:de:
7d:7a:ff:1c:54:c1:b1:42:d9:27:84:ea:e4:0a:bd:e2:ba:75:
78:97:4f:b6:20:89:aa:ee:8d:69:cc:b5:da:f3:a2:bf:92:10:
10:27:28:7d:da:36:b4:14:4e:07:d6:94:1f:cd:17:17:c1:0c:
23:54:0b:56:bb:01:e4:21:b9:6f:fb:9b:0f:ac:d7:5d:62:47:
76:d4:e9:0b:98:d5:2e:b4:21:dc:4b:26:90:43:6d:f5:bc:22:
3e:ad:e3:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 22:19:49 2025 by rpki-client