Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233382e302f32342d3234203d3e20313336383431.roa
File: 3130332e37392e3233382e302f32342d3234203d3e20313336383431.roa (raw, json)
Hash identifier: MkfPt9TQffXhNKzxQ0JZcLbczDcqfbG61+f4PPOfZmM=
Subject key identifier: 57:60:99:A3:51:BC:D3:AB:BA:AC:B0:68:77:50:CC:ED:3A:C3:E6:ED
Certificate issuer: /CN=F027F0676E31F5D61FFCB99138BA71A6A6C2A888
Certificate serial: 6D7D8C342C01B0F1686B4BB9F57D1AA2EE8658AD
Authority key identifier: F0:27:F0:67:6E:31:F5:D6:1F:FC:B9:91:38:BA:71:A6:A6:C2:A8:88
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233382e302f32342d3234203d3e20313336383431.roa
Signing time: Wed 08 Jan 2025 05:00:00 +0000
ROA not before: Wed 08 Jan 2025 04:55:00 +0000
ROA not after: Wed 07 Jan 2026 05:00:00 +0000
asID: 136841
IP address blocks: 103.79.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:7d:8c:34:2c:01:b0:f1:68:6b:4b:b9:f5:7d:1a:a2:ee:86:58:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F027F0676E31F5D61FFCB99138BA71A6A6C2A888
Validity
Not Before: Jan 8 04:55:00 2025 GMT
Not After : Jan 7 05:00:00 2026 GMT
Subject: CN=576099A351BCD3ABBAACB0687750CCED3AC3E6ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:33:85:87:a8:75:46:bd:5a:63:60:00:67:ec:
f5:49:9c:26:ca:0f:a7:20:1c:9c:d1:f9:54:62:ed:
d8:99:f6:36:23:cd:3a:aa:f8:a6:d3:ab:7a:e9:da:
1c:39:7f:b3:9a:5b:bb:a5:6a:9f:29:bd:2a:1b:68:
87:15:21:ae:4d:d9:52:80:6b:24:c2:b5:7e:c4:f4:
05:63:8a:f1:9f:3a:28:30:41:2f:21:34:fa:2d:95:
bc:80:a1:fb:6e:5a:1e:4a:0b:cf:19:ad:ef:a5:55:
16:b4:29:b1:ad:e4:5d:f3:65:c9:ea:ab:b8:36:92:
5d:64:c2:43:c8:51:ed:4d:86:52:a2:5d:0d:c8:84:
55:79:bd:6a:8d:9b:c9:a7:d5:8b:d5:cd:3e:55:03:
19:99:97:74:8e:d1:2d:4e:9e:12:03:39:ce:fe:64:
86:ef:95:3f:53:2a:d6:3a:d4:7c:7e:05:8d:9a:b7:
2e:8d:21:b7:b3:4d:29:76:51:4f:51:d6:13:ae:a8:
f3:3d:6c:12:3a:d4:c8:da:b0:f0:45:72:1d:c1:68:
3a:78:eb:24:e0:a1:3b:03:43:7e:b3:51:7d:e4:c1:
f3:8a:92:9e:06:b5:26:c4:59:ce:71:d1:1d:ee:54:
f0:05:91:b9:15:4e:16:03:d2:0d:02:36:30:17:42:
7a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:60:99:A3:51:BC:D3:AB:BA:AC:B0:68:77:50:CC:ED:3A:C3:E6:ED
X509v3 Authority Key Identifier:
keyid:F0:27:F0:67:6E:31:F5:D6:1F:FC:B9:91:38:BA:71:A6:A6:C2:A8:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F027F0676E31F5D61FFCB99138BA71A6A6C2A888.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6df2691-db62-43b9-8a57-0e06da1acc64/0/3130332e37392e3233382e302f32342d3234203d3e20313336383431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.79.238.0/24
Signature Algorithm: sha256WithRSAEncryption
24:4d:93:13:27:56:ff:b0:df:00:b5:47:88:2e:d2:96:d9:77:
ae:d4:07:b4:5f:24:68:da:ee:db:3a:1c:b1:b4:67:c1:de:84:
dc:76:95:ca:95:79:11:b9:c2:93:56:93:eb:3f:06:41:b6:1b:
07:a9:c6:69:8b:ca:a1:2c:bb:52:8f:b2:e2:ff:2a:51:e8:de:
12:35:e5:79:ef:07:98:42:f8:ea:1a:70:7e:61:cc:1c:ba:34:
5b:51:2a:42:3a:3e:06:42:26:bc:53:f7:27:8c:db:c2:f0:5f:
bd:5a:3e:a0:aa:68:60:d5:4e:5d:a8:2c:39:25:c7:49:5b:df:
3b:7e:3e:2a:9d:23:cb:d2:74:d4:c9:a7:d4:76:ed:9e:b1:af:
a7:34:34:d2:7f:08:07:da:65:41:9e:cf:81:98:c6:73:eb:f2:
40:a8:a4:05:4e:14:51:72:f8:40:05:24:ec:a2:cf:b9:9f:51:
42:9d:46:71:9a:03:75:10:2f:c7:95:3f:df:d9:16:52:23:ff:
39:46:ed:8a:b6:ad:07:2b:c3:db:34:01:a7:74:1e:a6:91:f9:
71:f5:e0:36:3d:67:eb:b5:81:ae:f4:17:00:7d:f1:b1:0f:65:
3d:ad:e4:dd:0f:22:74:b9:b3:ea:a2:3e:62:b5:dd:df:8b:11:
8d:85:57:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:38:50 2025 by rpki-client