Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa
File: 3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa (raw, json)
Hash identifier: 8fXa1f7300/W5Av08Qun2AqlD/GOx9dx833zFohML8Q=
Subject key identifier: 30:80:D6:42:9C:C8:74:24:FE:DD:D5:73:F6:50:2E:70:A1:99:2E:C1
Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Certificate serial: 04F434991DE7495F8DF776071D9A95BB7DBCF563
Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa
Signing time: Mon 01 Jul 2024 01:03:11 +0000
ROA not before: Mon 01 Jul 2024 00:58:11 +0000
ROA not after: Mon 30 Jun 2025 01:03:11 +0000
asID: 137363
IP address blocks: 103.116.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:f4:34:99:1d:e7:49:5f:8d:f7:76:07:1d:9a:95:bb:7d:bc:f5:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Validity
Not Before: Jul 1 00:58:11 2024 GMT
Not After : Jun 30 01:03:11 2025 GMT
Subject: CN=3080D6429CC87424FEDDD573F6502E70A1992EC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:52:6d:95:16:90:86:56:44:69:44:4d:aa:62:
df:36:9a:7a:60:23:49:1c:71:2e:fa:6f:e2:57:fe:
91:61:07:10:f9:55:b4:52:59:b9:64:4b:8b:79:23:
67:7f:ad:78:f8:94:d7:77:70:13:eb:b4:de:1e:50:
bb:ad:82:87:e6:ea:d7:39:f2:79:1b:22:42:56:ce:
51:9e:e1:3a:26:25:ab:8a:fb:c4:63:b4:a0:4c:4f:
ce:6f:35:02:10:ed:a6:5b:16:b6:19:57:39:47:ff:
41:9b:83:16:29:13:fc:3d:5d:4b:3a:07:65:44:fb:
08:da:ab:28:7e:74:ac:a0:9c:82:5c:fb:27:82:a3:
07:59:2b:22:f5:df:f1:5f:3d:bd:9a:a8:f1:62:1b:
1b:06:2e:7d:3d:5d:58:58:1c:fb:f2:d8:e9:cc:e9:
1f:73:33:52:64:83:83:6a:58:51:e5:1c:5c:58:a4:
39:58:fd:76:c4:59:74:06:a8:9e:28:60:57:fd:7d:
0c:9a:93:06:ce:64:7e:9d:b8:62:f4:e4:1e:ee:2d:
d6:8b:dd:05:6b:97:e6:25:c4:cb:80:ce:2d:28:e1:
90:52:8d:21:e6:a4:87:80:fc:fc:f6:98:bd:7d:f0:
c6:37:c0:08:9e:27:a3:1b:23:d4:71:0e:fa:5f:2a:
d6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:80:D6:42:9C:C8:74:24:FE:DD:D5:73:F6:50:2E:70:A1:99:2E:C1
X509v3 Authority Key Identifier:
keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.116.172.0/22
Signature Algorithm: sha256WithRSAEncryption
13:97:e6:03:0f:4b:24:dd:6f:a5:93:a8:1a:54:2f:e6:79:3e:
35:a1:09:c8:13:c8:5b:dd:60:8d:47:c3:0d:db:8c:c0:9f:58:
79:e0:ef:ea:94:58:aa:2e:1b:8c:72:a6:ee:ab:0a:a1:9b:36:
df:38:c2:3b:08:e3:82:6b:b2:14:16:24:98:5d:20:c0:69:c4:
40:73:14:55:0f:06:f0:76:78:8b:50:a9:0c:39:1c:0e:be:39:
36:85:35:61:02:b3:54:91:f9:09:da:8a:6d:a0:fb:03:05:bb:
51:5e:d9:07:6e:29:42:ef:f5:05:e8:f4:ce:0e:0e:11:ac:6f:
72:bb:ca:4b:6a:85:a3:56:a7:56:7c:01:85:78:48:56:62:6d:
9a:95:4a:a5:35:c2:fb:31:60:ad:9a:38:88:60:e7:9b:33:7e:
f9:35:85:fd:5c:28:c5:c7:d8:ca:04:d6:9f:5f:cb:2c:4d:ee:
eb:58:82:91:25:b3:a3:83:40:22:cf:69:ee:c3:97:dd:aa:74:
87:f0:8e:bf:9d:2d:94:bc:11:44:b9:69:3e:e8:b8:31:ae:6b:
9e:04:7f:ba:3e:dd:54:24:49:f6:38:a6:5f:b5:d1:37:b8:2f:
1f:04:a4:6e:3b:d5:c7:61:2e:3a:52:35:df:09:89:8a:0f:a5:
5d:65:bc:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:40:47 2025 by rpki-client