Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35392e302f32342d3234203d3e20313439373034.roa
File: 3130332e3138362e35392e302f32342d3234203d3e20313439373034.roa (raw, json)
Hash identifier: Zn/mRLgJcAPw/B4LeoQNyY9Lq34HwGmBLP3JEPUrmtE=
Subject key identifier: E1:81:90:65:A1:91:88:27:F4:FD:57:0D:1C:01:1B:0F:C1:3A:EB:26
Certificate issuer: /CN=AF7B938E0644E55FE020E79C53BF11FD4B14C9B7
Certificate serial: 4B4E17C82FA4D1A7B4752F1A03132B882B00AC83
Authority key identifier: AF:7B:93:8E:06:44:E5:5F:E0:20:E7:9C:53:BF:11:FD:4B:14:C9:B7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35392e302f32342d3234203d3e20313439373034.roa
Signing time: Mon 10 Feb 2025 07:00:00 +0000
ROA not before: Mon 10 Feb 2025 06:55:00 +0000
ROA not after: Mon 09 Feb 2026 07:00:00 +0000
asID: 149704
IP address blocks: 103.186.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:4e:17:c8:2f:a4:d1:a7:b4:75:2f:1a:03:13:2b:88:2b:00:ac:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF7B938E0644E55FE020E79C53BF11FD4B14C9B7
Validity
Not Before: Feb 10 06:55:00 2025 GMT
Not After : Feb 9 07:00:00 2026 GMT
Subject: CN=E1819065A1918827F4FD570D1C011B0FC13AEB26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:96:d5:03:3f:c3:70:1b:f2:4d:33:1a:84:
ab:36:f7:9a:f6:98:b0:10:47:51:4f:7a:05:15:d6:
aa:82:ff:59:dd:50:a2:36:97:84:97:f6:2e:24:98:
24:c4:ec:f6:b6:cd:ee:5a:6a:7d:70:1d:fe:c2:b2:
26:ad:f7:f3:70:55:41:a9:0c:2a:93:41:87:b9:fd:
98:f5:6a:04:42:10:4d:dc:6f:ad:c3:49:3c:33:0a:
95:fe:c5:6f:df:cc:9a:33:2b:ab:9c:49:6f:5a:f0:
c7:61:aa:7d:2f:07:09:23:19:d4:72:c7:0b:28:59:
ff:45:df:01:2c:59:85:e2:84:c5:92:6f:a3:1c:81:
9c:0b:b3:c3:53:3f:4a:43:3e:43:2c:65:76:3a:96:
5a:05:75:dc:c2:e3:22:b0:69:bb:28:77:c5:43:c8:
d7:73:ac:c4:b3:12:1d:00:1f:83:32:81:76:bc:79:
75:8b:e8:3f:d0:d0:bc:5c:0c:b8:e8:1c:cd:8f:83:
d2:1d:dc:8f:fb:c7:3e:4b:d7:c7:6d:f7:a1:5b:23:
4b:0e:01:a0:17:dd:5d:a4:38:cd:b3:cb:24:49:13:
f3:7d:4e:ee:ac:d1:4f:62:36:f4:28:a1:cf:b2:8b:
1a:71:97:4d:1c:af:72:e1:0c:f3:79:33:03:21:23:
5e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:81:90:65:A1:91:88:27:F4:FD:57:0D:1C:01:1B:0F:C1:3A:EB:26
X509v3 Authority Key Identifier:
keyid:AF:7B:93:8E:06:44:E5:5F:E0:20:E7:9C:53:BF:11:FD:4B:14:C9:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF7B938E0644E55FE020E79C53BF11FD4B14C9B7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d10eddcd-7d38-4765-aa26-7e457670423c/0/3130332e3138362e35392e302f32342d3234203d3e20313439373034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.186.59.0/24
Signature Algorithm: sha256WithRSAEncryption
82:0a:86:ee:8f:0d:ac:ba:2a:70:f8:6b:09:d2:73:c0:51:d2:
4e:3c:2c:3c:81:9f:61:8f:9e:86:f6:f7:52:70:ef:ad:7c:91:
1b:a7:9b:83:9e:2d:34:e6:99:a9:79:72:6b:14:d7:38:30:3b:
84:9d:1b:54:90:a4:4e:7f:9e:dc:87:76:8e:03:f3:6d:b6:89:
90:96:3d:ab:eb:c3:4b:f6:63:d9:2e:da:bb:54:a5:1c:af:a1:
09:fd:b1:a0:3e:a6:0b:57:c9:bf:ca:4f:cd:57:d2:ae:e1:bf:
a2:db:ea:98:f8:32:62:e2:5a:d6:2d:9c:fe:7d:7a:d6:f9:e7:
60:56:cc:7e:b1:47:96:8c:88:02:b6:48:24:0e:26:28:1d:3a:
90:af:76:ad:03:5f:b2:83:6e:91:8a:77:4d:1e:e5:ef:f4:f4:
8c:3f:d3:a7:97:cc:6e:1e:66:72:97:25:8d:f2:8f:1b:25:c1:
c1:b8:01:cd:82:ae:6e:f5:84:eb:ed:41:58:c5:20:35:0f:5c:
3d:32:62:1c:8a:b4:3e:ca:57:40:2f:f7:d6:47:3b:51:c1:9d:
e5:74:5b:9a:3c:bb:cd:5d:8b:f9:df:9f:4b:80:71:ea:52:4c:
d2:f6:2b:55:7a:3d:96:ea:0e:14:cb:17:1d:fc:0a:86:f4:31:
6a:c6:7d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:37:06 2025 by rpki-client