Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35382e302f32342d3234203d3e20313439373034.roa
File: 3130332e3138362e35382e302f32342d3234203d3e20313439373034.roa (raw, json)
Hash identifier: rNChHCnrnyJLLY34G4kDGVsTPJQ1hGT5BO6DP+1g09Y=
Subject key identifier: 41:DE:83:FD:25:7F:8A:D6:D7:C3:9A:18:B5:C0:EB:57:3F:07:12:6A
Certificate issuer: /CN=AF7B938E0644E55FE020E79C53BF11FD4B14C9B7
Certificate serial: 3EA7CAC9E70244DDA7DAC9037DBE078E5ED21093
Authority key identifier: AF:7B:93:8E:06:44:E5:5F:E0:20:E7:9C:53:BF:11:FD:4B:14:C9:B7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35382e302f32342d3234203d3e20313439373034.roa
Signing time: Mon 10 Feb 2025 07:00:00 +0000
ROA not before: Mon 10 Feb 2025 06:55:00 +0000
ROA not after: Mon 09 Feb 2026 07:00:00 +0000
asID: 149704
IP address blocks: 103.186.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:a7:ca:c9:e7:02:44:dd:a7:da:c9:03:7d:be:07:8e:5e:d2:10:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF7B938E0644E55FE020E79C53BF11FD4B14C9B7
Validity
Not Before: Feb 10 06:55:00 2025 GMT
Not After : Feb 9 07:00:00 2026 GMT
Subject: CN=41DE83FD257F8AD6D7C39A18B5C0EB573F07126A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:db:8a:30:78:2b:e6:7d:92:b2:af:cc:87:71:
f8:9b:1d:cb:5e:33:36:cb:92:92:4e:58:13:bf:07:
58:3b:ba:90:ad:7b:44:13:c2:2c:56:25:02:d1:25:
7d:04:cd:0e:1a:2d:60:ef:c2:3f:89:f2:a8:21:97:
e3:8e:1a:a2:7f:45:f6:02:55:a6:ce:62:f2:5b:b4:
8e:1c:dd:4b:26:30:0b:59:f2:a6:aa:f9:c4:95:b3:
30:e5:e8:54:7a:b5:62:e6:bd:ee:51:ad:b7:b6:ba:
ed:fa:4a:d2:06:84:7f:13:bf:97:2e:d8:3e:0a:52:
cc:28:1e:46:98:91:b2:c8:41:58:0b:be:26:23:fa:
47:5e:54:96:00:84:33:1c:99:e6:16:29:ea:fb:17:
5c:8e:2a:c4:67:a8:80:26:f0:a3:6f:79:b2:33:7b:
a6:17:f6:f1:8c:9d:ae:af:3b:49:36:60:70:05:78:
b2:54:e2:de:63:15:c4:3d:f7:ab:32:c9:13:99:3d:
2e:75:ec:26:fd:d2:3f:02:12:45:be:3a:46:bf:63:
cf:a9:6e:3f:4d:a6:cd:97:0f:e8:ee:02:ff:0e:78:
c1:14:3b:35:38:69:82:f0:8c:47:9e:00:a3:ce:e6:
41:56:48:9f:c3:e6:0d:26:19:27:4c:25:ad:27:23:
54:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DE:83:FD:25:7F:8A:D6:D7:C3:9A:18:B5:C0:EB:57:3F:07:12:6A
X509v3 Authority Key Identifier:
keyid:AF:7B:93:8E:06:44:E5:5F:E0:20:E7:9C:53:BF:11:FD:4B:14:C9:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35382e302f32342d3234203d3e20313439373034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.186.58.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f6:8d:4b:d2:f1:65:d2:2f:94:97:75:b0:91:f2:ff:fd:72:
81:7d:e1:92:4e:8f:ea:a6:03:a4:bb:ea:81:4c:e9:f7:34:c1:
37:cc:a1:f6:6f:ea:43:d0:e2:43:e9:fd:16:2d:d4:51:04:f3:
17:9f:b4:f7:68:cc:d4:4f:43:62:44:f4:18:3e:f0:f7:f5:51:
03:cd:bd:40:bd:a7:c1:0b:a3:d5:98:2d:37:d2:f3:d0:55:03:
6a:0d:b3:5d:7e:ef:d7:04:39:83:ec:a2:de:6f:fe:37:6b:e6:
1c:5b:e2:de:49:44:e3:d0:d7:cf:50:86:75:a8:4d:63:e0:7b:
14:93:31:a2:6b:04:6f:c2:7f:a2:f3:d1:49:7b:b9:dd:6d:7a:
f0:70:01:ba:d7:4b:18:b5:ef:c3:f9:7d:e8:03:b4:a2:06:a6:
6f:13:53:4c:40:39:63:8d:e7:c5:07:e6:d0:e9:fa:d6:29:e3:
15:32:bb:80:93:00:0e:d0:90:e0:e6:55:a3:8e:55:7e:a1:46:
bf:e9:f2:d7:e7:f8:2e:bd:a5:93:9f:79:e5:9f:d8:dc:dc:73:
ba:9f:75:4e:6c:d5:f2:08:8d:a7:ee:de:99:9c:af:f9:3d:53:
4d:07:d0:bf:93:b1:80:b2:78:54:31:3a:26:57:c1:8b:f9:fe:
41:75:21:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:36:59 2025 by rpki-client