Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa
File: 3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa (raw, json)
Hash identifier: A0Wh8osPNi8zZWQ36AcLaUjDaG9uaq4xPw9QuzcvUH4=
Subject key identifier: B8:D4:41:CA:E6:EB:8E:C7:91:B9:2C:B0:F3:47:35:30:33:F2:E3:D5
Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE
Certificate serial: 0FD9CAA657D659991FA4D67235C87B61332F264E
Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa
Signing time: Sun 01 Dec 2024 09:00:01 +0000
ROA not before: Sun 01 Dec 2024 08:55:01 +0000
ROA not after: Sun 30 Nov 2025 09:00:01 +0000
asID: 135439
IP address blocks: 103.214.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:d9:ca:a6:57:d6:59:99:1f:a4:d6:72:35:c8:7b:61:33:2f:26:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE
Validity
Not Before: Dec 1 08:55:01 2024 GMT
Not After : Nov 30 09:00:01 2025 GMT
Subject: CN=B8D441CAE6EB8EC791B92CB0F347353033F2E3D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:87:d8:ac:d3:82:0b:61:47:88:d9:32:67:91:
d5:17:6d:3d:d5:1a:00:f3:07:40:bd:38:12:d0:59:
ad:b2:e7:04:f1:54:ed:b7:c9:e2:26:11:bf:7e:3c:
67:bf:66:d5:b2:09:2e:ff:81:a3:1f:4a:b4:e6:51:
55:e3:98:11:22:67:45:e2:24:71:12:da:9c:a5:a5:
e2:d1:36:44:f8:8a:f6:ac:6c:06:57:9c:ab:96:88:
e3:12:49:50:e2:28:b3:0c:47:52:76:bf:fa:38:be:
72:bb:8d:84:41:a8:7f:36:e6:e2:7e:d9:89:59:a2:
9a:7b:51:77:03:43:84:8d:5a:ea:4a:36:d2:04:7d:
12:84:28:21:4f:3f:3b:67:90:6a:54:14:31:c8:96:
1d:1f:e0:0d:89:13:e5:6b:a3:61:17:41:f2:f9:11:
24:9a:7c:99:04:a0:ff:5f:da:e3:7b:98:4a:c8:a1:
90:5c:03:b7:ab:e1:0a:5c:20:ba:b2:a1:01:d4:a5:
a4:20:2d:65:f9:21:ca:e0:14:39:1d:56:37:e6:1a:
8c:ba:28:b5:77:ae:e9:f4:22:bf:0a:4a:8e:af:a9:
30:76:bb:1a:7d:9c:e4:50:cf:c6:12:b1:fc:7d:3f:
75:8a:0d:22:7f:ff:61:fb:b5:70:64:2f:49:c0:dc:
16:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D4:41:CA:E6:EB:8E:C7:91:B9:2C:B0:F3:47:35:30:33:F2:E3:D5
X509v3 Authority Key Identifier:
keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233372e302f32342d3234203d3e20313335343339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.214.237.0/24
Signature Algorithm: sha256WithRSAEncryption
83:14:db:24:d3:b3:aa:d0:5e:71:1c:79:af:9b:d3:1a:0a:53:
73:aa:4b:3b:ec:75:e0:d9:31:b1:55:c3:a5:b1:78:10:23:62:
b9:b8:72:8b:59:e8:40:fc:07:ef:e3:56:48:3b:fc:49:d2:91:
c5:34:01:88:fc:e3:4a:e8:5e:eb:5d:a0:f6:29:7f:a7:0b:6e:
42:55:14:8d:10:a0:63:53:8f:0d:ed:0e:24:97:ba:1a:e0:7f:
cf:b6:da:46:18:2c:96:9a:7b:3d:d4:95:12:f2:55:c0:c3:88:
c1:d0:28:80:8a:eb:87:be:3d:36:a4:5a:78:4d:31:22:27:36:
26:e0:c3:7e:3b:12:27:15:0c:00:5d:5a:ac:31:16:c7:ff:0c:
45:7d:b7:56:98:c8:1a:82:1e:ef:21:9a:56:bd:85:cd:ff:5d:
92:fa:75:f6:bf:f5:c7:f1:48:07:bb:aa:78:4a:b2:5c:e2:9f:
7d:98:8b:38:54:46:8e:c1:c1:98:eb:e9:c6:1e:1f:d3:19:e6:
90:cc:de:25:a0:ab:61:36:b7:0f:1f:d5:23:9d:7f:9a:50:2d:
33:fb:f1:d9:5f:a0:95:fd:66:19:e6:51:25:64:62:32:bf:d1:
8f:31:51:e4:91:f2:9e:b9:a7:27:5c:1d:f7:41:4b:2d:38:d0:
d9:1f:24:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:57:00 2025 by rpki-client