Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa
File: 3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa (raw, json)
Hash identifier: KjMxjvExxv5WM0e+RcleaNj9WGu1qc5KM8bCCHJf5mE=
Subject key identifier: 60:9B:03:F5:4E:D1:1F:AA:BA:A0:A0:FF:91:A2:80:50:13:EB:0F:19
Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853
Certificate serial: 43C225ECE8FA78BED54EE0EAA7F2F8647B1AA896
Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa
Signing time: Sat 04 May 2024 16:13:07 +0000
ROA not before: Sat 04 May 2024 16:08:07 +0000
ROA not after: Sat 03 May 2025 16:13:07 +0000
asID: 133799
IP address blocks: 103.42.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:c2:25:ec:e8:fa:78:be:d5:4e:e0:ea:a7:f2:f8:64:7b:1a:a8:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853
Validity
Not Before: May 4 16:08:07 2024 GMT
Not After : May 3 16:13:07 2025 GMT
Subject: CN=609B03F54ED11FAABAA0A0FF91A2805013EB0F19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:50:fe:f6:c3:eb:34:c7:6d:a0:42:94:de:d5:
53:42:39:c1:f5:7c:06:74:20:b5:5d:c9:3b:f9:db:
36:52:2b:3f:dc:0a:9b:ad:96:63:b8:75:15:30:1d:
f5:3b:6e:a4:be:f3:39:2e:00:29:1a:92:d8:d2:8f:
4c:a3:b9:32:f2:ac:50:84:27:c1:e4:cd:c8:f7:f2:
01:3d:07:a2:13:93:48:e2:f6:e5:83:00:ef:32:f4:
af:f6:48:bf:cc:91:c2:af:8d:d7:f5:5d:3f:f2:1f:
d8:95:ba:ae:b3:45:d3:17:3c:78:47:1e:ee:21:47:
61:7a:ae:d4:79:53:be:d7:cd:dd:e3:71:33:ca:08:
bb:4b:66:24:a9:6e:c8:4b:29:1b:3a:25:c8:71:90:
af:b6:eb:26:5d:38:b3:e2:ae:8e:21:1b:80:b3:9f:
bc:6a:b2:b4:5a:c7:b2:d9:b5:f6:e3:7e:6e:1e:b9:
0e:3f:7a:0d:b5:0b:3c:ab:95:85:3e:f8:27:cb:4e:
80:b2:45:3f:60:9c:95:e9:87:e4:e7:8d:ad:4d:41:
96:e0:12:fb:8c:39:d8:0e:74:2d:6c:be:7a:d2:d5:
c6:0a:97:74:da:61:0b:97:ce:cf:ba:80:f2:6c:6e:
b2:04:c2:d0:0c:e0:9c:3f:ee:8f:e2:72:2a:88:03:
bd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:9B:03:F5:4E:D1:1F:AA:BA:A0:A0:FF:91:A2:80:50:13:EB:0F:19
X509v3 Authority Key Identifier:
keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.42.254.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:4b:e6:ce:a2:75:3c:87:3f:02:76:22:99:6c:25:f4:00:76:
e7:49:76:a7:f0:f1:f3:b4:4f:ae:02:2c:0a:84:a0:78:b7:38:
0d:1b:70:16:d4:4c:98:55:25:8a:d3:d1:0d:93:16:f8:93:e1:
27:d2:b0:cd:89:f9:7f:75:67:13:63:92:59:6b:5b:75:1d:75:
08:77:23:17:19:3c:05:9b:af:90:0a:5c:88:6b:7b:f1:0d:ef:
d3:67:5f:c8:49:63:c5:75:2d:88:85:b6:50:7d:bb:6e:98:d7:
39:ba:78:4e:53:1b:c4:54:e8:17:84:ef:a4:fc:1d:75:a1:47:
37:6a:01:5c:dd:d7:39:fd:20:1b:b6:70:26:b6:21:3f:57:7b:
cb:f5:b0:c4:9f:9d:10:25:68:40:19:e5:9d:e6:ab:6e:e1:81:
8f:8e:34:b6:7d:72:0d:fc:ae:c3:1f:35:bc:ae:44:5b:1a:41:
03:da:a1:54:9d:d6:a9:d7:b5:09:57:5d:91:a4:23:4b:66:95:
e3:a9:0a:53:7e:ec:95:cc:14:32:8a:af:36:01:ca:48:6d:82:
31:fc:cd:00:8d:9f:7c:ed:1e:bf:79:2b:59:bc:d2:c1:ce:81:
65:63:d0:24:13:bc:77:01:50:d3:26:f0:07:e7:e6:59:6c:8d:
6d:9d:19:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:49:13 2025 by rpki-client