Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131372e302f32342d3234203d3e203435333035.roa
File: 3130332e3133302e3131372e302f32342d3234203d3e203435333035.roa (raw, json)
Hash identifier: 64hkXaMmv8q9lQyKvexZaickn9WEOo3hlnxK+RI4sN8=
Subject key identifier: 74:96:8E:40:D4:2C:06:81:F7:59:B3:86:4A:76:45:75:11:3B:28:DB
Certificate issuer: /CN=D947E8BEAE01A6710E324CD416D3282ADDFBBFE9
Certificate serial: 3D9DB20532598D1F31418401998D4A085052D900
Authority key identifier: D9:47:E8:BE:AE:01:A6:71:0E:32:4C:D4:16:D3:28:2A:DD:FB:BF:E9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131372e302f32342d3234203d3e203435333035.roa
Signing time: Mon 17 Feb 2025 09:00:02 +0000
ROA not before: Mon 17 Feb 2025 08:55:02 +0000
ROA not after: Mon 16 Feb 2026 09:00:02 +0000
asID: 45305
IP address blocks: 103.130.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:9d:b2:05:32:59:8d:1f:31:41:84:01:99:8d:4a:08:50:52:d9:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D947E8BEAE01A6710E324CD416D3282ADDFBBFE9
Validity
Not Before: Feb 17 08:55:02 2025 GMT
Not After : Feb 16 09:00:02 2026 GMT
Subject: CN=74968E40D42C0681F759B3864A764575113B28DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cc:30:50:5d:ba:3b:8e:57:97:dc:5c:91:32:
9f:39:95:80:e2:16:51:97:1e:ca:0f:8b:90:03:55:
21:52:92:31:90:95:1c:51:42:76:e1:b1:d4:fe:26:
f0:4e:27:71:98:3c:dd:c8:2b:84:62:83:13:8b:97:
74:e6:49:3b:16:f0:42:9e:ed:7f:29:34:a6:21:8c:
80:72:8a:d3:0b:93:34:f3:48:61:41:fc:41:da:15:
ed:e1:6c:4b:ae:47:dc:08:36:26:ce:02:82:e8:d9:
fd:7d:85:c9:21:d2:8a:58:a0:74:13:e7:70:b3:e9:
87:89:48:bf:97:4a:25:09:16:ac:bd:d3:bf:66:1b:
aa:8f:a4:50:8e:e0:39:f3:44:e9:c0:02:81:d2:b9:
43:b3:eb:9a:c9:6d:56:44:69:da:c2:ee:d3:6a:b8:
95:57:79:43:4e:37:e7:c9:13:63:a4:23:55:4e:da:
a7:b6:aa:91:3a:5b:e8:6f:95:df:11:96:9c:56:83:
1e:8b:47:8d:1c:d7:e0:b7:0d:a7:33:4e:a6:7e:fd:
73:d8:9a:c5:10:47:85:15:fc:17:19:8a:c4:98:3f:
1c:28:ac:75:bc:2a:3d:4e:56:c7:b8:1f:ec:0e:7d:
e0:09:dc:9d:1a:88:e9:aa:f7:07:b1:fb:06:45:6f:
7a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:96:8E:40:D4:2C:06:81:F7:59:B3:86:4A:76:45:75:11:3B:28:DB
X509v3 Authority Key Identifier:
keyid:D9:47:E8:BE:AE:01:A6:71:0E:32:4C:D4:16:D3:28:2A:DD:FB:BF:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131372e302f32342d3234203d3e203435333035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.130.117.0/24
Signature Algorithm: sha256WithRSAEncryption
21:18:e7:9b:81:06:96:9c:6c:f5:fc:cb:ad:43:1f:9f:2c:fd:
d8:9a:30:9d:39:f7:2f:10:b3:7f:6e:a4:bb:fd:66:c5:e7:f7:
46:b1:ba:8a:e4:89:f0:b3:9f:9e:cf:51:df:0c:d1:0a:b9:bf:
77:b8:4f:60:e4:6f:37:50:1c:ba:1e:6f:67:aa:db:91:31:6d:
dd:a4:fd:9b:30:c1:b3:81:15:45:97:30:50:50:50:62:39:3f:
28:e8:1a:20:54:d7:51:88:b0:fe:7e:a5:c5:a5:33:5c:1f:1e:
9b:60:dc:e3:a9:c3:01:21:92:6e:d7:1e:c3:a2:90:01:dc:ef:
d9:64:b5:d7:8d:14:e8:05:4c:c5:32:88:d5:e1:a3:85:73:f6:
eb:05:20:9f:0d:1b:dc:67:6a:eb:08:e1:8c:e2:73:9c:90:13:
d7:fa:36:9a:cb:4b:21:76:f4:8c:92:ac:f0:0b:9c:43:97:e7:
85:e9:76:2b:7d:29:d6:8e:bb:e8:1d:0e:ff:c1:24:a4:4e:a9:
40:c6:38:b9:8a:a1:6b:bf:e3:7b:a5:0c:a7:6f:d5:79:38:8e:
2f:aa:ab:c4:d7:93:9f:a0:ba:6e:91:35:22:4e:45:1b:b2:26:
98:52:8a:4f:05:fb:99:25:b4:94:90:84:5f:0b:5d:c4:62:24:
52:83:11:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:41:41 2025 by rpki-client