Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa
File: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (raw, json)
Hash identifier: TIp9WHuUqK5QCHJsHK2qMd4Di3b+YgT1J52ydC6PYvs=
Subject key identifier: B2:CC:04:48:B7:D6:13:B6:5D:38:E4:62:EA:A2:B7:E8:97:46:3B:84
Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Certificate serial: 03208A60DE6FBF2313F1CE90F8034A8C342A9D17
Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa
Signing time: Thu 12 Dec 2024 09:01:28 +0000
ROA not before: Thu 12 Dec 2024 08:56:28 +0000
ROA not after: Thu 11 Dec 2025 09:01:28 +0000
asID: 139952
IP address blocks: 103.149.120.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:20:8a:60:de:6f:bf:23:13:f1:ce:90:f8:03:4a:8c:34:2a:9d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661
Validity
Not Before: Dec 12 08:56:28 2024 GMT
Not After : Dec 11 09:01:28 2025 GMT
Subject: CN=B2CC0448B7D613B65D38E462EAA2B7E897463B84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a9:c7:d4:cd:8d:06:29:a2:e3:81:43:40:22:
2e:77:d9:d0:ee:a4:2c:6f:06:a0:33:c2:31:d6:29:
ff:47:d5:b0:bb:65:1d:0d:77:77:60:84:c6:62:d9:
e7:7a:77:90:07:6d:8e:bd:f8:3f:41:da:1c:33:50:
b5:35:f3:30:f8:99:7c:71:09:c5:ac:25:b7:94:3b:
25:d8:5e:98:cd:82:53:ad:92:cd:a5:24:ed:fe:98:
66:7c:21:a5:ec:f2:19:8c:21:56:ff:ed:6f:fa:12:
11:65:96:0b:6c:e2:59:db:a6:e4:eb:12:a3:c5:ab:
11:b4:e9:ce:ac:19:25:d0:b6:94:a3:b7:ad:53:3e:
41:e2:16:9a:5d:25:c8:03:15:64:1b:42:90:b0:5d:
07:c2:e9:f9:07:ac:ae:1c:96:d3:30:1a:27:c4:25:
f0:19:25:72:52:83:db:cb:84:c9:aa:80:59:79:de:
53:3b:f0:5d:87:81:73:57:e8:bb:e6:76:38:53:5d:
71:7c:11:1e:a0:75:a3:bd:ec:38:b1:2b:db:a9:2d:
f0:1f:ea:a2:46:d9:b9:b3:d0:2a:e7:e6:93:40:88:
1d:44:97:7b:2d:8b:d4:55:f7:8d:36:53:1b:a8:3f:
ec:4d:66:79:cc:74:ae:d5:f7:28:8e:8b:f6:06:7d:
8b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CC:04:48:B7:D6:13:B6:5D:38:E4:62:EA:A2:B7:E8:97:46:3B:84
X509v3 Authority Key Identifier:
keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.149.120.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:a8:8a:06:54:0a:cc:a2:a3:da:b4:fe:b4:59:66:38:51:71:
82:b0:b2:bf:88:12:a3:aa:71:37:3c:ab:ec:ee:db:1e:63:77:
4f:60:5d:a0:56:c1:2f:50:c9:53:9d:ad:b8:69:c2:5b:6d:e4:
04:c9:8c:75:13:d0:ec:f7:1e:aa:38:20:a4:ef:f0:ba:54:04:
18:ae:75:2d:0c:94:1f:b3:c3:10:3c:f4:1e:90:a5:a7:6d:ea:
15:b8:e4:de:2b:2e:75:66:62:a3:5d:10:8e:8e:d5:9c:8f:0e:
84:04:9e:59:7f:5d:40:25:73:85:ab:a8:e5:5d:99:11:ab:39:
80:40:14:6a:c8:da:dd:1a:b9:cc:82:69:34:57:a1:86:4e:2b:
d5:98:68:ce:29:d4:8b:17:5a:60:ef:30:00:82:11:0a:30:cd:
5c:f1:56:04:6d:03:33:ce:68:ee:60:5a:70:9d:13:82:71:b4:
0c:9b:f7:1b:17:98:0a:5d:09:38:c6:4a:0a:e6:a5:be:e9:fb:
30:3d:52:8f:d9:3f:8a:5a:f6:61:52:c4:53:64:01:6a:ca:f6:
b3:72:91:2c:53:ff:aa:f6:bf:85:ba:d0:e1:f6:b5:fe:65:87:
6f:8e:2a:b6:c7:be:2c:9a:47:c7:a1:c3:0d:08:59:f4:68:83:
04:00:42:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:32 2025 by rpki-client