Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c647a6a2-1ad0-46c7-9cad-58bbd71fb5a4/0/3130332e3136302e3136352e302f32342d3234203d3e203538343935.roa
File: 3130332e3136302e3136352e302f32342d3234203d3e203538343935.roa (raw, json)
Hash identifier: oT7jsoB/MSX7oA3hAjR9cy0JPZ1LVJx++z9THEGgY48=
Subject key identifier: A7:53:9D:82:35:9F:24:46:F5:2A:A3:4F:D2:17:B8:E2:D5:67:AE:94
Certificate issuer: /CN=BC18FDA249B3BD56020648E83F0B24DDBF1E66E5
Certificate serial: 28AEE8E4E97DC1E23E0F7275D42F6043214C786C
Authority key identifier: BC:18:FD:A2:49:B3:BD:56:02:06:48:E8:3F:0B:24:DD:BF:1E:66:E5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC18FDA249B3BD56020648E83F0B24DDBF1E66E5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c647a6a2-1ad0-46c7-9cad-58bbd71fb5a4/0/3130332e3136302e3136352e302f32342d3234203d3e203538343935.roa
Signing time: Wed 08 Jan 2025 05:00:44 +0000
ROA not before: Wed 08 Jan 2025 04:55:44 +0000
ROA not after: Wed 07 Jan 2026 05:00:44 +0000
asID: 58495
IP address blocks: 103.160.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:ae:e8:e4:e9:7d:c1:e2:3e:0f:72:75:d4:2f:60:43:21:4c:78:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BC18FDA249B3BD56020648E83F0B24DDBF1E66E5
Validity
Not Before: Jan 8 04:55:44 2025 GMT
Not After : Jan 7 05:00:44 2026 GMT
Subject: CN=A7539D82359F2446F52AA34FD217B8E2D567AE94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:87:47:46:b1:78:3e:41:0c:4b:a8:f5:eb:50:
7d:f3:38:13:c2:3b:04:83:6b:65:9c:24:cd:03:91:
0b:9f:f9:59:19:07:3b:ad:6e:9c:90:51:64:9a:c8:
88:5e:1a:d3:b5:ce:29:d9:13:d6:81:9a:e6:bb:d3:
b4:5b:71:89:0e:f8:02:47:aa:ac:c6:50:2e:b4:61:
23:e3:45:91:9b:7d:a5:0f:c2:ae:91:df:26:0b:ca:
55:08:92:28:37:3d:e8:e5:7e:b4:70:4a:51:dd:b9:
41:cf:e2:23:e9:9f:cd:8b:dd:77:df:fb:fa:1b:59:
7c:33:89:07:dd:45:72:ec:6a:0d:a8:38:45:0c:de:
93:b4:21:e0:23:c1:1b:81:db:15:4d:f5:95:dc:71:
97:09:c8:a1:dd:0b:2b:07:01:d8:93:7c:28:32:93:
b3:0e:be:4f:a3:33:26:6d:bc:ec:cc:e0:cb:53:f8:
a8:32:8a:64:23:8b:9b:3c:b9:a7:16:cb:bd:a2:4c:
4e:0d:87:04:2d:bc:ff:bb:1d:3c:9d:2a:97:57:f4:
00:7e:ab:96:a5:39:f9:3d:e9:71:fd:29:a0:3f:a7:
a6:8c:bc:37:b9:84:fe:22:e1:a5:ba:a6:95:ba:c7:
74:26:bd:4f:ea:54:de:00:07:94:9d:2b:e7:de:30:
4b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:53:9D:82:35:9F:24:46:F5:2A:A3:4F:D2:17:B8:E2:D5:67:AE:94
X509v3 Authority Key Identifier:
keyid:BC:18:FD:A2:49:B3:BD:56:02:06:48:E8:3F:0B:24:DD:BF:1E:66:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c647a6a2-1ad0-46c7-9cad-58bbd71fb5a4/0/BC18FDA249B3BD56020648E83F0B24DDBF1E66E5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC18FDA249B3BD56020648E83F0B24DDBF1E66E5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c647a6a2-1ad0-46c7-9cad-58bbd71fb5a4/0/3130332e3136302e3136352e302f32342d3234203d3e203538343935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.165.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:a1:66:45:01:fa:98:ae:03:06:78:72:eb:05:60:9e:31:b9:
88:2e:fc:90:1e:7e:99:9c:ce:ba:a5:7d:1c:07:09:5d:4f:7b:
6d:2b:15:b4:dc:a6:bd:88:ec:ec:b1:c1:a6:36:10:e6:3b:57:
78:08:83:d9:0e:eb:6b:65:1e:5d:6b:ab:dc:63:20:6d:55:01:
93:81:6e:6c:15:fd:b4:e3:51:ac:e2:ad:3c:c4:42:13:1d:4b:
ad:61:40:fb:88:c0:aa:74:e8:c5:4e:b8:1a:ef:d0:51:80:c7:
74:92:fb:15:72:de:fe:72:df:82:db:5d:fd:e4:13:fc:7a:11:
23:08:08:c9:30:b0:38:26:1b:c4:10:5f:e7:60:bf:30:87:6e:
04:3b:6c:e9:35:36:bd:bd:88:77:66:66:2e:11:9d:18:88:85:
54:0a:b6:ab:75:dd:de:2c:15:18:a7:c8:bf:0e:4c:1e:9e:4a:
34:1a:71:65:d3:4c:a1:bc:e6:8d:c2:bd:c3:2f:e0:fb:db:ad:
c5:6d:c5:2d:82:f1:87:9b:1d:7d:98:f9:69:4f:b4:9e:9d:d3:
9f:b6:43:53:6b:d3:31:1e:31:d3:1f:d2:1c:00:b6:cc:01:f5:
fc:87:f8:d6:8f:a4:cc:66:84:49:5c:b6:3a:2b:4f:f6:ea:0e:
ec:40:80:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:29:33 2025 by rpki-client