Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa
File: 3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa (raw, json)
Hash identifier: 8iuxlfUHlShVLXZPa/rNG/34daU402Tq6bUHq+eNs5k=
Subject key identifier: 7C:3B:FB:51:99:E1:40:61:A6:2C:BD:ED:1E:5E:10:BD:04:77:2C:3A
Certificate issuer: /CN=8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD
Certificate serial: 6056703053D4C966607CC060494AFD2562A98D75
Authority key identifier: 8B:E4:A7:01:F2:92:4B:4B:FB:8A:98:3A:1B:0B:D5:C8:86:3B:F3:FD
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa
Signing time: Mon 01 Jul 2024 01:04:08 +0000
ROA not before: Mon 01 Jul 2024 00:59:08 +0000
ROA not after: Mon 30 Jun 2025 01:04:08 +0000
asID: 138131
IP address blocks: 103.121.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:56:70:30:53:d4:c9:66:60:7c:c0:60:49:4a:fd:25:62:a9:8d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD
Validity
Not Before: Jul 1 00:59:08 2024 GMT
Not After : Jun 30 01:04:08 2025 GMT
Subject: CN=7C3BFB5199E14061A62CBDED1E5E10BD04772C3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:99:22:89:c3:7f:ca:b3:3d:57:17:3e:b0:f6:
47:3d:7c:53:e4:0b:a7:32:b3:0b:f1:45:b0:7d:ac:
de:7f:77:ee:8d:5d:fe:60:38:b3:0e:fc:1f:1a:e8:
e9:4a:de:26:26:d4:fd:51:a5:bb:80:c9:ab:e4:88:
c5:34:52:84:c5:26:30:12:6d:b1:ce:51:1b:ce:2c:
42:09:c0:a3:16:5f:ee:12:30:b1:54:84:74:92:bd:
a0:41:79:01:02:e4:76:c0:85:38:c3:83:c7:6e:35:
6e:3b:d4:e9:93:f4:16:4f:34:f3:5e:8f:be:d2:ff:
93:a8:0e:df:53:04:74:07:6c:67:ce:09:99:99:24:
0b:dc:dc:26:0e:e2:52:ce:fb:8c:34:0d:39:d3:f4:
5c:9c:da:50:d0:f4:6f:e7:34:4a:99:3b:f1:3a:75:
f2:da:12:c5:c2:ef:d6:f1:a5:9a:e8:d9:43:ed:16:
10:e9:14:be:6e:d0:db:10:af:a4:43:89:cd:00:91:
30:ec:72:73:8e:3c:6d:d4:47:dd:e7:fb:59:5a:e6:
60:c3:0b:2b:4b:cf:15:93:d7:0e:f2:27:7f:5e:50:
81:cc:89:31:c3:59:78:fb:30:fd:dc:a3:d2:8a:32:
78:b5:b0:e5:c5:ef:47:ab:96:8d:42:a4:f7:45:e4:
d5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3B:FB:51:99:E1:40:61:A6:2C:BD:ED:1E:5E:10:BD:04:77:2C:3A
X509v3 Authority Key Identifier:
keyid:8B:E4:A7:01:F2:92:4B:4B:FB:8A:98:3A:1B:0B:D5:C8:86:3B:F3:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE4A701F2924B4BFB8A983A1B0BD5C8863BF3FD.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d06347f4-ea26-4d4c-a568-1d863360e421/0/3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.121.122.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e1:3d:f9:0f:d5:5b:ec:5c:f1:f5:05:ca:98:c4:09:0c:44:
63:be:34:b9:d8:bd:a4:cc:11:93:2d:d8:4b:cf:68:e4:22:91:
a8:d8:50:dd:c5:0b:d6:f3:51:b4:24:5a:49:c3:92:f6:d8:25:
ac:a6:14:fa:1c:69:eb:f1:12:d1:17:5b:1b:a2:6b:f2:ab:63:
e2:d4:ad:fc:e5:c6:f8:72:07:ad:f6:b3:c6:8f:ee:15:df:a0:
a9:13:0d:20:6f:03:25:00:d6:fb:04:32:47:f4:68:13:e0:4c:
f2:83:b1:09:26:28:e1:76:7b:af:46:22:18:ce:48:00:d1:2c:
6e:a1:16:b6:cf:f1:a6:62:37:b7:0b:6c:17:27:2d:cb:54:e5:
cf:aa:9d:52:be:4b:70:9c:bd:55:41:ab:e0:4f:c5:27:a3:cb:
1a:3a:13:cf:e1:48:22:77:aa:0c:d5:41:04:a3:e8:ba:93:ed:
62:51:98:06:21:6b:69:9a:9e:09:16:cf:1a:5c:1c:f9:cb:8d:
1e:00:ef:7b:13:3b:72:d7:02:67:10:c1:6c:8b:49:6e:38:c9:
6e:d2:23:d9:a3:3d:38:3d:75:a3:4b:92:f3:41:c0:35:b4:ca:
73:38:d9:b1:30:3c:55:bf:4e:43:33:c6:c2:6c:ab:12:5e:14:
df:16:e7:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:34:07 2025 by rpki-client