Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa
File: 3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa (raw, json)
Hash identifier: 8pVdONx+0B7HzvlmWjfUUOE8jWcjWCCvoVvW/VBNAgQ=
Subject key identifier: 09:EF:41:8E:E0:65:B3:C6:72:68:AD:04:42:FC:F7:15:F0:D6:7E:6C
Certificate issuer: /CN=D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271
Certificate serial: 06B5AE98A77948EB4B87BE19C9584BAA36B83931
Authority key identifier: D5:67:7E:FA:13:70:87:11:CD:AF:B6:7D:9C:4C:8F:5F:FF:A9:A2:71
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa
Signing time: Sat 05 Oct 2024 04:02:26 +0000
ROA not before: Sat 05 Oct 2024 03:57:26 +0000
ROA not after: Sat 04 Oct 2025 04:02:26 +0000
asID: 139955
IP address blocks: 103.147.84.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:b5:ae:98:a7:79:48:eb:4b:87:be:19:c9:58:4b:aa:36:b8:39:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271
Validity
Not Before: Oct 5 03:57:26 2024 GMT
Not After : Oct 4 04:02:26 2025 GMT
Subject: CN=09EF418EE065B3C67268AD0442FCF715F0D67E6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f3:33:d7:bd:56:ff:48:d7:f2:43:27:69:0c:
4a:ff:45:b4:3c:07:b5:0a:a0:b4:71:75:b2:73:99:
1d:24:88:a4:ba:ad:db:d7:53:b0:88:44:26:53:17:
9b:2e:73:50:64:12:8b:cf:b8:75:e7:fd:fa:85:f4:
c9:8c:7a:4d:ee:f8:dc:5c:61:83:8e:cb:5e:76:49:
b1:35:66:3f:06:0f:2c:5a:c7:a7:2f:ae:7f:aa:e4:
50:c7:22:4a:28:bd:9f:b7:d0:71:d7:3d:f1:f5:18:
89:d5:ed:2b:3d:b8:f3:58:83:56:9d:12:87:e1:b2:
23:01:db:17:11:f9:5d:61:3c:5e:64:f9:c7:41:c8:
2a:9f:57:c6:0d:09:e7:10:10:96:67:6f:54:a8:8e:
cf:8d:91:5e:da:4f:37:11:19:7b:13:0f:e8:5c:82:
0a:2a:a4:a0:6f:60:11:79:c2:07:b5:f1:a8:75:e5:
c7:99:12:cf:6e:f0:7b:f8:5a:f1:d0:55:e0:8b:af:
0c:08:43:8f:90:30:25:d9:c2:9f:97:40:6d:eb:fa:
eb:f4:35:50:14:9b:7c:cf:13:38:6f:28:c6:b7:ed:
93:9c:fb:c6:a9:96:df:c1:f5:1e:51:ee:84:6a:17:
2c:05:e8:e0:7d:e4:76:1f:c8:01:f5:30:84:81:7c:
66:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EF:41:8E:E0:65:B3:C6:72:68:AD:04:42:FC:F7:15:F0:D6:7E:6C
X509v3 Authority Key Identifier:
keyid:D5:67:7E:FA:13:70:87:11:CD:AF:B6:7D:9C:4C:8F:5F:FF:A9:A2:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5677EFA13708711CDAFB67D9C4C8F5FFFA9A271.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c79659a9-5505-494b-a03c-6ebacfadf931/0/3130332e3134372e38342e302f32332d3234203d3e20313339393535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.147.84.0/23
Signature Algorithm: sha256WithRSAEncryption
31:7c:3a:02:0b:0b:fa:4a:99:41:d1:47:4f:87:7c:e2:a5:b7:
81:9d:c9:17:3f:6b:d6:02:7f:dd:97:ea:c4:7b:b8:15:c5:fc:
03:e6:0c:b9:11:c6:d4:86:fd:fe:b3:22:1a:9b:ea:00:08:72:
0e:5f:f2:ee:33:22:77:3d:af:ce:e2:fe:6b:e4:34:9d:21:7b:
8f:25:6d:9c:0e:cf:18:86:fb:db:f4:e0:76:e8:4d:40:32:99:
8f:85:6e:91:52:e4:a3:ea:97:ca:2f:c0:82:f5:b7:60:8f:1e:
d8:ae:b1:ad:e6:f4:02:9f:3b:03:b7:2b:c6:8c:2d:1e:97:7f:
78:a8:7f:b3:19:71:8f:fe:8c:69:a5:c9:39:35:ce:c3:bd:b7:
f6:3c:cc:fe:05:a8:98:5c:fa:b6:74:b5:a5:d4:58:62:5f:cb:
56:0e:09:ec:38:f4:89:5e:89:b2:eb:4c:3e:73:cc:14:41:8b:
45:ff:f3:ed:f6:2a:67:a6:4e:fe:a0:30:6f:f5:ab:e1:ca:da:
78:37:9c:55:ce:ad:d1:69:1d:9d:26:72:99:cc:92:21:ac:47:
50:00:4b:8c:be:c5:4d:55:ea:97:b1:91:7b:87:5c:08:2b:21:
0a:f6:5f:68:76:75:d3:94:05:2f:42:d8:10:80:7b:52:2b:4f:
14:07:ff:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:25:24 2025 by rpki-client