Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/3130332e3133342e31362e302f32342d3234203d3e20313338313432.roa
File: 3130332e3133342e31362e302f32342d3234203d3e20313338313432.roa (raw, json)
Hash identifier: 8FJnKt5CgklUKcuR3KEOgR9pFXHp2pdnQAzYXqQX2Ag=
Subject key identifier: AF:40:FC:9B:ED:A1:92:42:2A:A1:B8:A8:97:DC:26:49:FA:75:CC:67
Certificate issuer: /CN=FC4F8762524C3EBF98126E5F579CCB30C37EEF63
Certificate serial: 471EFC18B9F0D3A1241DD644DA6D892821A4B607
Authority key identifier: FC:4F:87:62:52:4C:3E:BF:98:12:6E:5F:57:9C:CB:30:C3:7E:EF:63
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/3130332e3133342e31362e302f32342d3234203d3e20313338313432.roa
Signing time: Thu 19 Dec 2024 13:00:59 +0000
ROA not before: Thu 19 Dec 2024 12:55:59 +0000
ROA not after: Thu 18 Dec 2025 13:00:59 +0000
asID: 138142
IP address blocks: 103.134.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:1e:fc:18:b9:f0:d3:a1:24:1d:d6:44:da:6d:89:28:21:a4:b6:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC4F8762524C3EBF98126E5F579CCB30C37EEF63
Validity
Not Before: Dec 19 12:55:59 2024 GMT
Not After : Dec 18 13:00:59 2025 GMT
Subject: CN=AF40FC9BEDA192422AA1B8A897DC2649FA75CC67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b4:c0:c1:4e:a8:7d:bd:99:2b:a8:cf:29:dc:
38:1c:ac:93:59:dc:44:f1:b0:2f:1f:d5:c5:00:cd:
a0:0b:f1:92:f9:09:8c:0a:04:bd:65:5d:90:b6:42:
53:b9:2f:a1:c3:a4:21:15:be:a8:d6:68:43:03:c0:
2c:fa:4f:a4:ec:34:26:e2:9b:57:ca:45:6f:4c:af:
f4:24:92:91:e9:98:91:4e:7e:8d:1d:60:84:11:bd:
ef:05:17:02:9d:94:43:00:c6:3a:f8:5b:7e:32:e0:
db:c8:39:56:54:5c:18:7d:47:de:16:2b:9d:73:16:
50:96:fb:5c:05:a2:16:a1:0f:b8:cc:82:a3:ff:b1:
d5:4d:33:50:dc:3e:08:f6:db:db:6d:4b:50:38:f8:
be:8d:34:4b:77:a8:3e:4f:96:1e:d8:c6:50:d3:47:
dc:72:b0:c2:ba:01:c8:33:1d:67:85:3c:66:d2:9f:
27:30:82:59:0f:64:9a:02:37:3b:7b:d2:82:26:f7:
75:b9:51:c4:42:5f:54:81:34:60:6a:b4:f2:c8:97:
79:70:cd:ed:50:30:0b:24:79:dd:22:5a:74:39:27:
4e:07:5d:e1:e4:ed:b5:18:78:2e:db:67:22:23:b8:
85:5b:66:dc:87:1e:8b:4a:e2:22:a0:fb:aa:cb:c8:
a0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:40:FC:9B:ED:A1:92:42:2A:A1:B8:A8:97:DC:26:49:FA:75:CC:67
X509v3 Authority Key Identifier:
keyid:FC:4F:87:62:52:4C:3E:BF:98:12:6E:5F:57:9C:CB:30:C3:7E:EF:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/3130332e3133342e31362e302f32342d3234203d3e20313338313432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.134.16.0/24
Signature Algorithm: sha256WithRSAEncryption
af:12:85:b1:8a:43:d2:b4:22:a7:db:80:08:f4:5a:d4:b0:f4:
0a:80:f5:01:1e:f7:9f:ef:96:d3:27:71:d4:df:c5:20:ae:f0:
d2:e2:85:80:3d:d2:6d:65:bc:6f:c5:5c:89:01:c2:7a:fd:44:
e8:5a:8b:dc:56:e9:15:0e:12:7d:f0:54:72:33:ef:ad:57:52:
d7:95:2e:c7:fa:b8:72:ad:21:e5:e8:1a:9d:82:37:1b:2f:a5:
9f:bf:9b:b4:b7:75:6b:18:1d:d8:70:d0:9f:c6:21:5c:80:8b:
9a:1c:58:fe:9d:bb:cb:e4:40:92:f4:56:0a:31:91:50:b2:15:
ff:ce:0c:6f:38:ea:0b:0f:e5:93:b6:46:84:f2:fc:c1:28:a9:
c0:cc:f6:18:56:eb:7c:3e:54:b9:bd:14:84:4f:d7:1c:db:d3:
56:6b:62:1b:95:d2:9d:86:d2:b7:0f:d1:98:d3:2d:e3:1f:47:
53:ea:50:2d:83:03:b6:3e:e9:89:ff:db:66:7a:96:23:10:cc:
d0:7d:c6:60:0b:ea:fe:99:67:af:8a:65:b9:6c:c7:cd:37:87:
69:7f:09:3a:c2:58:81:17:44:45:6c:70:a1:a4:d4:d0:23:41:
52:07:31:15:06:dc:92:6d:3d:34:0b:a0:bb:4f:e8:a6:38:04:
5d:af:07:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:08:08 2025 by rpki-client