Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa
File: 3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa (raw, json)
Hash identifier: bN9NbqyRu4lQ+Okmxo+MD9ITEKt3VwrIkrq6ODkSbg0=
Subject key identifier: 39:70:2E:76:48:B2:51:16:14:CA:FD:90:6B:F7:08:A4:B2:B8:A2:B1
Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43
Certificate serial: 23A913F512F626368B5CDB68DA8FBC32807CCC21
Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa
Signing time: Thu 19 Sep 2024 02:34:18 +0000
ROA not before: Thu 19 Sep 2024 02:29:18 +0000
ROA not after: Thu 18 Sep 2025 02:34:18 +0000
asID: 149736
IP address blocks: 103.188.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:a9:13:f5:12:f6:26:36:8b:5c:db:68:da:8f:bc:32:80:7c:cc:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43
Validity
Not Before: Sep 19 02:29:18 2024 GMT
Not After : Sep 18 02:34:18 2025 GMT
Subject: CN=39702E7648B2511614CAFD906BF708A4B2B8A2B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a1:03:3a:88:5b:a1:bc:b5:bc:1f:99:0b:f6:
dc:9c:c4:14:37:ef:c1:9e:32:12:34:31:67:b5:54:
de:6d:46:eb:b6:b1:fa:20:77:70:08:43:53:ea:37:
cd:04:c8:c7:a4:f9:b9:ef:45:09:66:5f:cd:e3:47:
e7:38:94:ef:60:8d:49:61:e7:b3:5e:81:58:fe:dc:
71:81:b9:92:29:fb:70:40:cd:99:d8:d4:ac:41:8b:
f3:8d:6a:cd:22:69:80:4e:f4:f0:1f:92:5a:87:a1:
62:eb:a1:07:4f:b1:f5:7f:ab:d8:2f:27:09:3b:8d:
14:72:cc:6f:53:d1:94:3f:37:fb:31:7f:93:22:29:
a4:4d:fd:d0:12:ef:3f:c2:57:a2:90:02:10:84:20:
3c:d0:39:2d:b6:16:ab:88:00:73:3e:bb:1e:88:3c:
36:7c:8e:42:0f:bd:f6:da:28:be:82:50:dc:1c:6a:
22:c8:54:59:cc:ed:9e:fa:26:51:aa:52:00:40:d9:
20:76:ab:5b:b2:cd:4b:c5:2f:50:61:ac:94:e5:a3:
10:09:64:27:8f:f3:1f:b1:cc:aa:44:c8:30:13:15:
94:06:98:58:d6:c7:51:b8:e0:a9:7e:34:94:86:0c:
56:3e:7f:af:cd:18:d0:07:57:b3:46:73:a9:45:3b:
1f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:70:2E:76:48:B2:51:16:14:CA:FD:90:6B:F7:08:A4:B2:B8:A2:B1
X509v3 Authority Key Identifier:
keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137322e302f32342d3234203d3e20313439373336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.188.172.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:14:01:7b:90:6a:f3:9a:66:15:76:f2:60:0c:6d:83:e9:20:
00:3a:d7:53:ef:8a:94:f0:96:f0:4e:87:23:2c:4b:8f:55:27:
0a:45:0a:ae:08:90:e0:3a:3e:78:c3:4d:e3:0d:40:3e:47:1e:
6c:52:5d:85:50:ea:f3:f7:9d:73:fa:a7:db:26:75:e8:2b:01:
2f:ff:c1:ad:8f:2e:9b:28:64:1c:ee:1d:a2:99:15:46:53:dd:
bd:85:cd:36:a3:f2:17:db:67:eb:63:35:5a:e8:23:61:b9:44:
c8:51:7d:54:a5:3e:e9:a6:56:3b:a7:d6:5f:0d:6b:17:d2:aa:
af:00:06:51:e9:56:30:e3:3a:90:48:b8:bc:f2:25:18:15:bd:
64:d2:c5:da:d1:3a:df:e3:9b:f1:34:6c:9b:58:ae:f7:48:25:
9c:a1:a4:49:12:31:94:a6:e6:27:98:09:c6:a7:b3:dd:ae:21:
4c:9f:35:b5:21:1a:d2:06:22:3e:b5:13:1c:90:98:5f:42:88:
38:7f:60:49:32:59:3c:6f:52:0a:3d:05:67:82:03:40:95:64:
79:ad:04:d9:40:ac:5d:9d:a1:9e:22:b7:21:91:1a:d0:62:e9:
2d:b2:b3:16:62:6e:d1:f1:c9:07:9c:27:8f:ce:2c:b8:03:c1:
54:7c:1e:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:00:19 2025 by rpki-client