Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32312e302f32342d3234203d3e20313338383837.roa
File: 3130332e3134312e32312e302f32342d3234203d3e20313338383837.roa (raw, json)
Hash identifier: QrtUBgVMkdw+iVjl0dQz5Rcb86fxswgGAcHioRwy1rI=
Subject key identifier: 95:AC:06:03:EC:AD:3F:67:4F:8B:6A:B6:E9:3B:87:31:37:B6:03:4E
Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D
Certificate serial: 44D48798ADD752AF95A265C59099FF4A8C9D7256
Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32312e302f32342d3234203d3e20313338383837.roa
Signing time: Mon 01 Jul 2024 01:03:41 +0000
ROA not before: Mon 01 Jul 2024 00:58:41 +0000
ROA not after: Mon 30 Jun 2025 01:03:41 +0000
asID: 138887
IP address blocks: 103.141.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:d4:87:98:ad:d7:52:af:95:a2:65:c5:90:99:ff:4a:8c:9d:72:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D
Validity
Not Before: Jul 1 00:58:41 2024 GMT
Not After : Jun 30 01:03:41 2025 GMT
Subject: CN=95AC0603ECAD3F674F8B6AB6E93B873137B6034E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:6c:ee:c8:97:b2:5d:fc:a2:61:63:b9:1b:
bd:7a:47:c9:d4:4a:12:15:b6:d1:34:74:5d:5a:7b:
57:f2:0e:29:37:09:be:62:51:39:9b:78:c1:89:dc:
64:94:1e:26:bf:3c:61:69:51:9d:fc:0f:de:d9:33:
28:37:d2:03:8d:bc:20:9c:c6:95:d5:ad:58:f5:38:
e4:4a:9e:03:77:ea:a4:5d:ca:f2:b5:95:1d:07:64:
f4:7d:5c:84:54:b0:ba:19:24:79:d9:92:97:e0:c8:
7b:78:ec:9d:d4:18:16:60:bd:fc:31:06:b6:1b:9b:
0c:f1:43:27:7f:65:d4:76:86:4b:a3:b7:e0:f9:f3:
60:c3:1d:58:e6:d8:55:a2:c1:da:2b:d3:cd:1e:6d:
b7:da:78:b7:81:32:35:78:8f:c4:a7:4e:71:9a:43:
0c:a3:ec:6f:e3:f4:13:f4:a9:09:29:11:40:4d:91:
4a:8d:5f:73:66:cf:6c:96:24:14:e7:5e:34:bf:19:
0c:5c:98:0b:85:65:08:58:1b:27:05:36:43:73:c8:
b4:21:28:5a:50:76:15:cc:84:0f:51:e4:67:e1:2b:
53:a6:60:e9:ed:30:74:bc:d9:9e:8c:e7:d6:a3:e1:
ce:3d:94:91:58:41:8f:ae:06:00:ba:7b:f9:48:69:
2d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AC:06:03:EC:AD:3F:67:4F:8B:6A:B6:E9:3B:87:31:37:B6:03:4E
X509v3 Authority Key Identifier:
keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32312e302f32342d3234203d3e20313338383837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.141.21.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ee:ba:1e:ca:62:59:af:ec:c0:62:7c:c6:82:79:f8:f8:2f:
d4:0a:9b:1b:b1:70:c3:a6:ba:99:a9:cb:cc:39:b8:37:69:3e:
99:e8:19:ec:d0:f4:e2:bb:b9:64:8a:43:18:b0:3f:5d:ba:a9:
e7:d1:04:c6:c4:39:f2:e4:34:9f:bd:d7:e1:bb:0b:f4:c7:4a:
02:a7:9d:9e:8d:99:0c:ef:7e:76:46:36:8f:3f:af:7c:d4:d4:
36:3c:1a:e4:d6:f6:56:d9:de:81:0d:27:52:29:e4:b1:df:63:
cd:7c:26:f6:51:77:26:ea:51:36:ba:1b:c3:8c:52:ef:5c:d9:
06:0a:91:7e:ea:a2:e1:3b:6b:b3:c7:53:17:55:14:27:91:46:
70:b9:b4:a9:b1:2b:0e:08:00:89:7f:6a:e7:69:52:8f:6c:38:
bb:15:85:99:7b:5b:dd:22:c2:73:a8:fa:30:87:2b:3e:c5:ca:
98:9e:9d:3b:70:7b:94:b5:b7:20:a5:11:fe:8d:fa:ff:c9:6c:
4d:ea:86:38:a1:d5:de:e1:60:17:31:e8:21:82:68:8d:24:67:
a0:2a:0f:3e:6d:dc:bb:ac:27:10:13:99:db:45:a5:5e:fe:4f:
b3:24:6d:df:9b:d0:ee:92:a0:58:13:f3:7b:7d:ef:8d:fd:0d:
f2:c3:ea:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:04:19 2025 by rpki-client