Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32332d3233203d3e20313431363232.roa
File: 3130332e3136312e3139342e302f32332d3233203d3e20313431363232.roa (raw, json)
Hash identifier: k+Q27w9xfCxO1EMF5fzSsOxm07E3Yh4qVr2KkATK54s=
Subject key identifier: 35:FA:4D:C7:8F:C9:49:94:11:31:21:EE:CA:3F:E4:3E:5B:DF:9A:B5
Certificate issuer: /CN=052EE59C1D4149A77DF1555311C056DCDBC5FF4C
Certificate serial: 2F3A27F0C6CF16DE5B1E0746A791065B43F7012A
Authority key identifier: 05:2E:E5:9C:1D:41:49:A7:7D:F1:55:53:11:C0:56:DC:DB:C5:FF:4C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32332d3233203d3e20313431363232.roa
Signing time: Fri 12 Jul 2024 15:00:00 +0000
ROA not before: Fri 12 Jul 2024 14:55:00 +0000
ROA not after: Fri 11 Jul 2025 15:00:00 +0000
asID: 141622
IP address blocks: 103.161.194.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:3a:27:f0:c6:cf:16:de:5b:1e:07:46:a7:91:06:5b:43:f7:01:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052EE59C1D4149A77DF1555311C056DCDBC5FF4C
Validity
Not Before: Jul 12 14:55:00 2024 GMT
Not After : Jul 11 15:00:00 2025 GMT
Subject: CN=35FA4DC78FC94994113121EECA3FE43E5BDF9AB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0d:34:96:77:76:8c:1e:d3:2c:70:5b:b6:65:
78:9a:ed:52:28:03:e7:aa:b0:9f:a0:b0:f5:08:cc:
f4:29:c2:29:99:c1:68:69:d5:e7:e1:f5:55:54:a8:
8d:b2:82:e5:05:9b:22:36:d0:53:c6:5c:32:50:d9:
91:7b:ae:06:1b:2c:b4:c7:ca:1f:8a:57:18:fc:18:
55:fb:52:1d:cd:9e:98:69:9e:80:88:31:e1:9c:29:
26:94:6a:af:f2:91:3f:12:39:fd:45:25:d0:8c:1b:
42:38:9d:db:28:44:30:14:97:83:ea:17:ff:a2:80:
3f:64:04:d0:0f:63:eb:82:2c:33:79:83:ee:f8:b7:
71:22:a9:9b:f2:23:bc:30:b7:f6:c7:62:d0:84:a5:
60:2d:29:1c:03:85:fb:4d:06:42:08:13:43:a9:87:
d2:eb:9a:19:89:3e:40:7d:db:9e:93:b5:d2:63:57:
92:34:f7:98:c8:c5:6e:37:ef:41:f8:44:70:83:13:
18:96:79:34:53:7b:b4:9b:9e:97:9c:b1:dd:be:f0:
76:b3:47:4d:04:d7:3a:81:e7:e1:3a:c9:e3:ce:bf:
3e:b7:7a:9f:5e:34:84:38:16:3a:a9:1c:48:e6:20:
ce:44:f5:0d:4f:69:76:74:b1:b9:20:41:9a:af:02:
ad:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FA:4D:C7:8F:C9:49:94:11:31:21:EE:CA:3F:E4:3E:5B:DF:9A:B5
X509v3 Authority Key Identifier:
keyid:05:2E:E5:9C:1D:41:49:A7:7D:F1:55:53:11:C0:56:DC:DB:C5:FF:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/052EE59C1D4149A77DF1555311C056DCDBC5FF4C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccbfb228-fd05-4afd-87bd-ed580b55036f/0/3130332e3136312e3139342e302f32332d3233203d3e20313431363232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.161.194.0/23
Signature Algorithm: sha256WithRSAEncryption
14:e8:39:1b:44:14:88:37:bb:8b:99:9b:de:33:f0:99:de:cb:
0a:f6:c7:f1:0c:5c:09:fb:7c:4f:06:86:a4:fb:50:1c:ec:d9:
c5:66:74:3e:88:a8:53:bb:28:b8:40:52:9a:c0:8c:ac:3c:df:
48:4e:28:98:f1:76:02:32:90:29:99:65:6e:96:f4:21:4a:fc:
fb:0b:e8:88:8a:e1:41:d2:2c:af:30:8d:42:35:dc:ed:68:14:
09:59:b3:b0:e5:62:9c:d0:82:0b:6a:6d:2f:aa:80:b3:45:58:
44:e9:b7:36:4d:b2:41:52:37:d4:c7:b7:7e:70:64:f1:c5:d3:
3b:01:66:88:7c:ea:5b:a7:bf:43:ec:d6:e0:19:ab:bc:fb:2e:
10:ba:6c:62:ff:44:20:bf:60:aa:06:7d:86:19:20:3d:14:72:
d0:c1:64:fc:b7:0e:c9:75:15:77:34:57:b8:62:3d:a5:17:3d:
59:2c:fa:1c:dc:de:13:58:bf:fa:f0:4b:15:26:71:39:e0:d8:
1a:27:66:9d:f5:4c:12:e0:08:9f:ee:41:58:03:ef:3a:b5:b8:
16:d7:a9:d5:8a:22:25:dc:fc:b9:99:78:ba:b6:1b:36:74:78:
a1:37:3c:09:52:d3:6a:bc:95:14:a0:22:1b:3d:16:55:64:9c:
f9:9e:41:23
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgIULzon8MbPFt5bHgdGp5EGW0P3ASowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDUyRUU1OUMxRDQxNDlBNzdERjE1NTUzMTFDMDU2RENE
QkM1RkY0QzAeFw0yNDA3MTIxNDU1MDBaFw0yNTA3MTExNTAwMDBaMDMxMTAvBgNV
BAMTKDM1RkE0REM3OEZDOTQ5OTQxMTMxMjFFRUNBM0ZFNDNFNUJERjlBQjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkDTSWd3aMHtMscFu2ZXia7VIo
A+eqsJ+gsPUIzPQpwimZwWhp1efh9VVUqI2yguUFmyI20FPGXDJQ2ZF7rgYbLLTH
yh+KVxj8GFX7Uh3NnphpnoCIMeGcKSaUaq/ykT8SOf1FJdCMG0I4ndsoRDAUl4Pq
F/+igD9kBNAPY+uCLDN5g+74t3EiqZvyI7wwt/bHYtCEpWAtKRwDhftNBkIIE0Op
h9LrmhmJPkB9256TtdJjV5I095jIxW4370H4RHCDExiWeTRTe7Sbnpecsd2+8Haz
R00E1zqB5+E6yePOvz63ep9eNIQ4FjqpHEjmIM5E9Q1PaXZ0sbkgQZqvAq3tAgMB
AAGjggI2MIICMjAdBgNVHQ4EFgQUNfpNx4/JSZQRMSHuyj/kPlvfmrUwHwYDVR0j
BBgwFoAUBS7lnB1BSad98VVTEcBW3NvF/0wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j
Y2JmYjIyOC1mZDA1LTRhZmQtODdiZC1lZDU4MGI1NTAzNmYvMC8wNTJFRTU5QzFE
NDE0OUE3N0RGMTU1NTMxMUMwNTZEQ0RCQzVGRjRDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDUyRUU1OUMxRDQxNDlBNzdERjE1NTUzMTFDMDU2RENEQkM1
RkY0Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjYmZiMjI4LWZkMDUtNGFmZC04
N2JkLWVkNTgwYjU1MDM2Zi8wLzMxMzAzMzJlMzEzNjMxMmUzMTM5MzQyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzNjMyMzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnocIwDQYJ
KoZIhvcNAQELBQADggEBABToORtEFIg3u4uZm94z8Jneywr2x/EMXAn7fE8GhqT7
UBzs2cVmdD6IqFO7KLhAUprAjKw830hOKJjxdgIykCmZZW6W9CFK/PsL6IiK4UHS
LK8wjUI13O1oFAlZs7DlYpzQggtqbS+qgLNFWETptzZNskFSN9THt35wZPHF0zsB
Zoh86lunv0Ps1uAZq7z7LhC6bGL/RCC/YKoGfYYZID0UctDBZPy3Dsl1FXc0V7hi
PaUXPVks+hzc3hNYv/rwSxUmcTng2BonZp31TBLgCJ/uQVgD7zq1uBbXqdWKIiXc
/LmZeLq2GzZ0eKE3PAlS02q8lRSgIhs9FlVknPmeQSM=
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:46:42 2025 by rpki-client